Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/sau7cOV4cXnfZSOHXyJB_jk9oEo.roa
File: sau7cOV4cXnfZSOHXyJB_jk9oEo.roa (raw, json)
Hash identifier: CZVm0tI2wUvwyprwL9G+I6Jopk7xeTWGiKuhkCzpCsQ=
Subject key identifier: B1:AB:BB:70:E5:78:71:79:DF:65:23:87:5F:22:41:FE:39:3D:A0:4A
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 37A48DE1
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/sau7cOV4cXnfZSOHXyJB_jk9oEo.roa
Signing time: Tue 04 Jan 2022 09:31:23 +0000
ROA not before: Tue 04 Jan 2022 09:31:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35356
IP address blocks: 80.93.144.0/21 maxlen: 21
80.93.144.0/20 maxlen: 20
80.93.147.0/24 maxlen: 24
80.93.146.0/24 maxlen: 24
80.93.154.0/24 maxlen: 24
80.93.155.0/24 maxlen: 24
80.93.159.0/24 maxlen: 24
80.93.156.0/24 maxlen: 24
80.93.157.0/24 maxlen: 24
83.142.252.0/23 maxlen: 23
83.142.248.0/22 maxlen: 22
83.142.254.0/24 maxlen: 24
83.142.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933531105 (0x37a48de1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Jan 4 09:31:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1abbb70e5787179df6523875f2241fe393da04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:0a:26:ea:ef:54:d2:49:c0:63:b0:0b:b2:
2f:cb:78:4e:e5:96:52:48:d8:ee:96:32:21:fe:f2:
fc:b9:c1:7c:5c:ba:88:b2:33:e5:dd:ad:7f:7c:c8:
4d:54:1d:28:74:aa:48:36:ad:f3:ae:bc:e9:7b:08:
27:d4:a5:8f:c7:be:35:68:9d:45:e4:77:b6:3c:65:
c3:2c:21:ef:11:d3:01:89:b0:6b:b9:0b:4c:c2:2e:
08:84:0c:e0:1c:5b:1f:e3:d5:15:1c:29:27:c0:a2:
df:ce:34:e6:54:76:b4:7e:e8:53:d5:41:e1:8a:3f:
20:36:74:62:4f:e6:50:31:36:e8:c6:28:a5:19:12:
e8:32:da:c8:84:ad:ff:b9:65:47:74:98:aa:3b:43:
c8:c8:24:0f:0b:5c:b9:43:01:51:87:3a:59:c3:e8:
d6:f5:e7:3e:6b:18:10:6a:4f:12:87:fd:8c:09:83:
6f:e3:ef:a3:7f:dd:3c:92:10:7b:96:7e:c9:c1:cb:
8d:23:64:20:05:c6:5b:11:cd:c4:8e:c8:de:49:b6:
d3:3a:3a:e6:ce:02:55:71:4d:a8:bb:82:69:9a:0f:
23:67:b5:4d:14:b1:64:12:4e:55:9f:ee:18:28:bf:
9b:26:35:e0:1c:a1:e9:94:89:d0:de:ce:c2:ad:d5:
19:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AB:BB:70:E5:78:71:79:DF:65:23:87:5F:22:41:FE:39:3D:A0:4A
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/sau7cOV4cXnfZSOHXyJB_jk9oEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.144.0/20
83.142.248.0/21
Signature Algorithm: sha256WithRSAEncryption
53:10:b8:d5:02:da:a5:fe:ca:e7:43:69:01:08:cd:99:ea:c9:
26:b6:47:1f:d1:a1:fb:7b:a4:f9:49:45:31:0c:93:78:1d:f9:
94:08:28:9f:5d:be:5a:28:2b:b7:28:f2:a6:ba:32:0d:b4:60:
66:86:42:0d:6a:0c:f5:c8:7e:40:62:9b:88:2c:e3:85:6d:73:
da:8a:22:1f:7a:d5:9e:23:5c:73:53:a8:6a:06:32:0f:ca:41:
d3:2a:3b:cc:c4:88:f5:89:88:3e:f9:c1:d5:3b:5c:f0:46:f8:
5d:7c:ff:97:83:f1:0c:69:1b:ad:de:96:c9:64:a3:4d:86:33:
54:7c:53:29:c4:27:4e:c2:1c:ea:60:25:8d:70:04:93:32:25:
10:b1:cf:67:11:0d:15:ee:d0:13:b4:c0:d0:dc:ff:3d:74:01:
2f:b2:b7:fe:4e:ce:2c:62:de:27:b1:77:e0:d9:00:71:80:29:
0f:9a:2f:76:a1:d5:7e:71:d0:44:db:ae:1f:3f:7d:5b:32:54:
ed:4d:01:6a:7b:80:77:2b:d9:a1:40:12:eb:8f:45:2f:ec:8e:
c2:a7:8a:59:22:ad:00:42:26:c9:2c:3e:ef:f7:e2:c5:ba:39:
f7:1d:71:2e:c8:ff:67:65:7a:01:2b:b0:18:cf:5f:30:41:7f:
03:de:05:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-ams.rpki-client.org