Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/kzOD7-iHvFNUNc3Zs4L0hwOwu58.roa
File: kzOD7-iHvFNUNc3Zs4L0hwOwu58.roa (raw, json)
Hash identifier: g8yczTqaGY8NNF2E1ckokXEo6SR1vKyEL+i6WMlPLaA=
Subject key identifier: 93:33:83:EF:E8:87:BC:53:54:35:CD:D9:B3:82:F4:87:03:B0:BB:9F
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 018570706829E7519428B1219A8954E4DA5D
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/kzOD7-iHvFNUNc3Zs4L0hwOwu58.roa
Signing time: Mon 02 Jan 2023 03:04:52 +0000
ROA not before: Mon 02 Jan 2023 03:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60795
IP address blocks: 185.80.32.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:68:29:e7:51:94:28:b1:21:9a:89:54:e4:da:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 2 03:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=933383efe887bc535435cdd9b382f48703b0bb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:3d:48:f4:66:3a:d4:64:e8:2e:11:f3:d2:
eb:2b:e5:58:dd:8c:c2:22:be:96:24:39:76:9f:8a:
1b:4e:28:d1:cd:6b:2c:cd:58:43:64:f6:89:ca:2a:
07:5a:d9:a9:25:93:56:97:ff:02:ec:5c:cc:90:63:
c9:35:ea:07:67:61:bd:0e:ab:90:e7:d3:17:cb:be:
56:d6:3d:7d:de:b3:e4:09:50:59:6b:a6:b7:b6:91:
4c:a9:49:d1:cb:06:e9:d5:1a:c6:ad:d5:98:62:ce:
94:96:c9:b6:17:ca:c7:35:d2:bc:8a:c7:0c:6e:a3:
57:e2:6c:e9:ef:05:19:e6:a7:90:76:6b:4d:71:34:
66:bb:4b:ad:11:cd:82:d5:21:cc:0d:c2:06:4f:fa:
89:8c:c0:76:7a:dd:0b:56:b7:66:83:a0:b1:43:83:
55:4c:32:67:4e:35:e9:dc:29:28:a0:f6:b5:11:97:
9f:3e:9c:36:ae:72:a7:3d:7c:25:b3:e4:00:b7:13:
4d:51:74:ed:00:e3:28:32:62:31:c1:df:20:12:61:
40:32:93:d5:0f:67:e7:f8:ff:23:93:5f:a2:da:95:
9c:c7:c4:b1:79:dc:c5:87:e9:b1:e5:a0:5e:a5:09:
82:fb:73:b7:95:c6:97:95:d9:32:1d:6a:4f:47:11:
c4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:33:83:EF:E8:87:BC:53:54:35:CD:D9:B3:82:F4:87:03:B0:BB:9F
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/kzOD7-iHvFNUNc3Zs4L0hwOwu58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.32.0/24
Signature Algorithm: sha256WithRSAEncryption
75:85:6f:9d:4f:1f:9c:e4:51:2f:e2:ce:53:78:88:46:d8:f9:
2a:55:24:91:dd:99:57:7a:23:af:46:57:85:f0:07:a6:e9:3c:
39:25:b8:f2:4e:a2:75:f9:e9:70:be:97:c3:af:10:f3:03:d4:
9e:6b:9b:96:26:4b:38:8e:ad:63:a3:83:b8:81:0c:0a:3c:9c:
57:c2:17:f8:1f:5b:c4:6d:09:64:27:55:ec:37:f0:8d:74:fc:
f0:a0:78:86:ae:cd:56:0c:bd:fd:5b:6f:f7:c8:66:f2:b8:1c:
01:b6:e2:c5:5a:84:33:68:8c:e8:52:3c:74:74:de:4b:55:66:
47:c5:a6:f9:14:0a:91:3e:75:44:55:9b:82:6c:fc:67:f8:5f:
59:0b:80:5d:31:c3:43:2b:b7:ee:f4:dc:03:77:06:c0:ab:1b:
13:73:cd:3f:c6:13:66:af:ec:88:e8:dc:32:18:cf:4c:a4:80:
56:43:7a:94:75:0b:e8:dc:0c:77:61:25:45:6c:ec:1f:80:96:
17:99:e1:85:3a:56:0d:84:b6:df:84:40:83:4f:aa:d2:6e:82:
de:36:61:86:a2:9f:97:95:0a:21:4a:da:ee:60:0a:d6:66:7d:
6c:49:fe:eb:0d:87:8d:b5:65:26:de:56:b1:ad:75:52:d4:80:
5a:9a:79:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:14 2025 by rpki-client