Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/CosVxVDpiPxqLCeAuzPhfhIGDBM.roa
File: CosVxVDpiPxqLCeAuzPhfhIGDBM.roa (raw, json)
Hash identifier: I1Erxe5gzq6CEfub9FgRA31UEakQiJvL4PRziIcMWi4=
Subject key identifier: 0A:8B:15:C5:50:E9:88:FC:6A:2C:27:80:BB:33:E1:7E:12:06:0C:13
Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Certificate serial: 33620EB3
Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/CosVxVDpiPxqLCeAuzPhfhIGDBM.roa
Signing time: Sat 01 Jan 2022 13:58:24 +0000
ROA not before: Sat 01 Jan 2022 13:58:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201973
IP address blocks: 80.246.96.0/20 maxlen: 20
2a03:f8c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 862064307 (0x33620eb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9
Validity
Not Before: Jan 1 13:58:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a8b15c550e988fc6a2c2780bb33e17e12060c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7f:46:ca:e7:c0:8d:b6:75:c1:75:b2:2f:cc:
81:2d:08:ca:f2:aa:f1:20:87:bb:4f:47:31:f8:81:
0b:64:3d:e7:4a:2d:a4:61:9a:02:94:12:9a:69:03:
85:f8:ff:3e:e2:6c:51:62:40:47:3e:a3:2e:a6:8d:
71:15:20:d6:7e:ae:8a:95:21:9a:bd:a3:87:b2:fd:
6f:cc:90:6a:e0:d8:ba:84:ca:88:3d:22:8a:98:5e:
5d:3d:c4:33:5e:a9:9c:e0:24:00:4a:77:9b:ef:62:
68:65:eb:09:5e:44:ae:4f:c3:d6:ed:4e:cd:c6:41:
ad:75:29:e1:7f:96:2c:b8:48:63:e2:bc:3e:4b:45:
1b:8e:43:f9:6e:d8:fa:7c:53:c4:74:52:7b:a2:d2:
e5:f8:ff:7f:29:4d:df:60:a0:40:0c:ef:62:4c:bc:
90:51:17:db:48:8b:30:57:31:ca:44:dd:e3:0c:b6:
49:4a:22:7d:7b:3d:aa:88:63:3d:8d:53:7b:d4:a9:
77:15:47:b9:a5:06:4c:b3:5a:f5:fd:8d:b1:52:e3:
ee:23:3d:1f:18:5d:95:bf:5b:fc:c2:c7:58:3c:25:
93:18:11:8e:95:89:3d:c7:54:b5:96:c8:17:e0:3a:
2c:3e:38:f8:ab:cc:64:5f:db:11:45:e1:f9:98:6c:
77:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8B:15:C5:50:E9:88:FC:6A:2C:27:80:BB:33:E1:7E:12:06:0C:13
X509v3 Authority Key Identifier:
keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/CosVxVDpiPxqLCeAuzPhfhIGDBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.96.0/20
IPv6:
2a03:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
82:46:de:75:11:00:bf:9e:fe:b6:4f:f3:e9:31:81:c5:9e:8d:
5d:a9:49:5b:fe:95:65:b9:3d:b3:a1:ec:29:e2:ab:9f:37:98:
a6:6b:1e:df:e4:d6:78:48:50:4c:24:ba:f3:f7:86:90:86:24:
e4:7c:b1:ef:96:87:27:1e:30:c8:c2:fc:8d:7b:59:9f:0f:41:
70:fa:26:a4:1f:ad:13:6b:67:ba:a3:ae:c6:e7:59:bf:34:b5:
e1:95:54:52:dd:64:52:b0:50:30:4b:1b:ec:35:4c:54:ec:50:
10:f5:11:3a:4a:d8:80:d8:64:ad:de:f7:1b:5f:c0:79:58:cb:
4a:9b:47:4c:24:42:79:9b:61:79:40:b7:f5:47:94:3b:1a:96:
42:31:5c:cd:8e:68:52:f0:c8:5e:74:f8:62:5c:bb:94:bd:ae:
20:05:1d:19:17:79:ce:3f:54:30:f6:78:9f:1c:db:b6:d1:cb:
46:40:e0:56:ab:91:4d:e8:d7:63:92:87:d2:6d:aa:e9:e3:57:
d9:e2:b2:99:48:dd:35:e4:7e:3c:59:d1:6d:df:ca:43:4f:a8:
e5:be:78:46:df:99:51:42:0a:3b:1e:f1:ef:a6:4a:56:82:ae:
50:1b:b8:a0:88:b4:9b:0a:f6:1c:94:98:3e:a9:17:9e:c6:e7:
90:6c:3c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:29 2024 by rpki-client on console-ams.rpki-client.org