Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/cb0032-855f-4422-b813-8366df0f4438/1/3T_Z1nbpQ2CnI6xh_nczCupLbf0.roa
File: 3T_Z1nbpQ2CnI6xh_nczCupLbf0.roa (raw, json)
Hash identifier: fyvFsdyGWzXkDgFlUsKc1rRTrItG5dMRDBLdDoSMdfA=
Subject key identifier: DD:3F:D9:D6:76:E9:43:60:A7:23:AC:61:FE:77:33:0A:EA:4B:6D:FD
Certificate issuer: /CN=7a83b3271c02df32db3c51fc40a9538368834f0b
Certificate serial: 0958925C
Authority key identifier: 7A:83:B3:27:1C:02:DF:32:DB:3C:51:FC:40:A9:53:83:68:83:4F:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eoOzJxwC3zLbPFH8QKlTg2iDTws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/cb0032-855f-4422-b813-8366df0f4438/1/3T_Z1nbpQ2CnI6xh_nczCupLbf0.roa
Signing time: Fri 27 May 2022 21:16:14 +0000
ROA not before: Fri 27 May 2022 21:16:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400384
IP address blocks: 80.76.34.0/24 maxlen: 24
80.76.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156799580 (0x958925c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a83b3271c02df32db3c51fc40a9538368834f0b
Validity
Not Before: May 27 21:16:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd3fd9d676e94360a723ac61fe77330aea4b6dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ba:3a:49:ac:fb:8a:4c:1c:2b:00:8c:b3:af:
6b:36:ae:ec:bb:a2:6b:4a:18:38:8d:d6:2e:55:1a:
46:e4:f1:34:02:53:2a:8c:87:4c:0f:e8:0e:49:67:
a7:7b:c4:00:6c:cf:74:24:df:6f:24:95:fd:84:a9:
fc:60:a2:2f:a8:f4:78:99:e9:e1:32:9d:20:b9:f6:
9d:78:b4:c2:7b:bd:25:b2:7e:d7:25:6a:1f:75:a3:
08:36:43:ae:d6:8a:7c:e2:a1:d3:f5:6b:9b:5e:9f:
ce:a5:ad:ed:fa:04:20:3e:10:8b:2b:5f:85:1f:55:
20:91:5e:bf:3b:46:32:b5:11:cd:d9:6d:ad:79:bc:
ea:21:ee:a6:b1:df:20:13:23:24:2f:99:42:98:e5:
21:bf:e0:9a:e9:dd:79:7f:a4:84:e0:78:7f:59:9b:
7e:eb:ef:92:ea:71:a7:dd:3a:69:34:9b:f9:1f:65:
c5:3d:b2:41:cb:8e:8f:20:3b:13:6d:b7:87:fa:12:
fd:c0:02:d4:ba:d6:62:ce:8c:8f:a3:7a:49:da:98:
be:06:7a:42:61:ce:42:bc:be:42:c1:ae:5a:5d:54:
8b:cd:c3:9f:dc:83:cc:19:63:e9:df:2d:38:d7:9f:
cf:f0:05:81:36:c0:2e:0c:fd:0c:ab:fa:8e:f7:7c:
67:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3F:D9:D6:76:E9:43:60:A7:23:AC:61:FE:77:33:0A:EA:4B:6D:FD
X509v3 Authority Key Identifier:
keyid:7A:83:B3:27:1C:02:DF:32:DB:3C:51:FC:40:A9:53:83:68:83:4F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eoOzJxwC3zLbPFH8QKlTg2iDTws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cb0032-855f-4422-b813-8366df0f4438/1/3T_Z1nbpQ2CnI6xh_nczCupLbf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/cb0032-855f-4422-b813-8366df0f4438/1/eoOzJxwC3zLbPFH8QKlTg2iDTws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.34.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:5c:43:97:1d:33:66:19:e7:b6:76:83:16:61:e6:79:a5:f5:
92:71:0f:55:4c:13:cd:5e:9a:f1:3d:e3:f7:de:e8:34:a6:01:
c5:00:36:80:d1:85:b2:e0:cb:ff:d1:f3:88:ff:8a:86:f7:5b:
69:b5:67:df:5b:88:63:77:67:a7:45:a0:28:49:25:47:07:10:
c0:0e:d4:82:4b:90:f6:73:f1:8e:f7:ec:4e:fd:7c:b3:49:d1:
a9:88:b1:a6:fa:e0:90:ef:9f:43:16:6a:60:67:a1:c9:02:c4:
ba:4c:8e:c2:47:f4:4d:c1:5a:42:5f:cd:69:d5:12:33:60:79:
0a:f4:8b:cd:1a:33:21:fa:18:e3:8f:4a:31:ef:46:68:a9:03:
8f:5c:89:f7:a2:5f:6a:9d:84:8b:07:ab:ea:8c:aa:8e:c8:40:
20:4e:30:1b:e6:a5:f1:e1:ef:df:60:a4:54:02:3d:03:3e:c3:
af:10:9d:ed:99:62:8e:5b:f2:4c:62:10:05:06:06:d1:db:51:
4f:29:74:b6:89:1f:ad:63:31:a1:56:3c:7d:e3:38:96:db:a7:
36:0a:f6:6e:05:b2:44:b0:b3:03:93:34:ae:f1:c6:26:6b:9d:
0f:3d:d6:57:9a:de:b0:a5:ae:ec:cf:9a:2e:0e:ac:23:1c:1e:
ca:62:0f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-ams.rpki-client.org