Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DYNfsvNPn2-LIgVQKG0EMPpwJbc.roa
File: DYNfsvNPn2-LIgVQKG0EMPpwJbc.roa (raw, json)
Hash identifier: 3r8awtPeBXcKegAUdLWzcyl/aA7u7ZCskYGcKhHtpIE=
Subject key identifier: 0D:83:5F:B2:F3:4F:9F:6F:8B:22:05:50:28:6D:04:30:FA:70:25:B7
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0183EA0E56BCA427E86205881080460D93EA
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DYNfsvNPn2-LIgVQKG0EMPpwJbc.roa
Signing time: Tue 18 Oct 2022 07:45:51 +0000
ROA not before: Tue 18 Oct 2022 07:45:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 80.71.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:0e:56:bc:a4:27:e8:62:05:88:10:80:46:0d:93:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 18 07:45:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d835fb2f34f9f6f8b220550286d0430fa7025b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:87:1c:fe:cd:e0:c0:bc:4a:82:a8:79:59:d4:
24:1f:03:56:87:36:80:74:9d:7e:d0:8a:84:8f:66:
0f:f7:3d:9a:b9:da:12:98:8b:18:0b:c3:0f:37:a8:
d6:d1:94:dd:00:79:08:c2:82:e4:75:8f:46:cf:8e:
b8:c5:fd:1d:1d:da:a7:4f:bd:f6:97:64:5a:ea:7e:
ae:7d:11:02:05:30:26:7b:99:be:ed:45:6a:a3:e5:
74:1d:24:41:99:33:8e:05:b1:c8:87:5b:e1:43:d7:
fb:2c:31:8b:76:e4:b2:25:f8:1c:ee:32:b3:8a:3b:
07:ac:eb:c7:ce:1f:87:63:fc:8f:96:85:0a:5b:7f:
ea:2c:bc:cf:42:91:9e:6c:61:08:e0:da:49:83:68:
3b:1d:28:5d:ee:53:4f:e5:2b:50:6b:61:8f:36:11:
07:51:68:46:4e:5b:d8:ae:33:53:57:1f:a8:91:81:
b5:94:26:9d:e3:ae:50:fb:7d:de:7c:86:45:7b:6e:
e8:d4:ab:4e:12:d6:73:63:13:17:a5:70:7c:bf:b4:
62:ef:2c:67:a5:e1:33:64:97:9a:44:67:45:0b:1c:
03:38:c4:fa:7f:5f:83:cb:66:fa:a3:4a:61:32:0c:
61:fc:a5:cb:4a:d1:a5:9f:c8:6e:b4:ed:78:91:9b:
f8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:83:5F:B2:F3:4F:9F:6F:8B:22:05:50:28:6D:04:30:FA:70:25:B7
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/DYNfsvNPn2-LIgVQKG0EMPpwJbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:92:85:53:25:85:e1:59:8c:98:c3:2d:de:d6:88:2e:10:4c:
a2:3a:ca:b3:0d:5b:51:4f:3b:43:c9:c3:63:a3:19:4f:3b:3f:
2b:ff:49:bc:10:9c:05:d6:67:13:f7:84:19:97:02:11:12:73:
6a:f1:1a:33:a9:a6:cd:19:e4:cb:bd:fd:97:ec:4e:8d:82:48:
9b:01:2c:47:01:11:c2:b4:06:12:7d:5e:86:9d:b8:26:8d:8f:
0b:bb:91:18:45:95:28:36:71:4b:f1:6d:98:b0:08:9f:cc:83:
11:70:66:44:47:67:ef:08:0c:79:74:a8:70:e0:dd:18:95:ab:
7c:04:59:b9:e0:be:94:dc:b8:fa:7c:bd:db:00:a4:2f:94:26:
43:d8:e1:9e:10:84:82:9b:40:64:bd:32:b4:b1:d5:93:b6:a9:
d8:c2:66:d9:9a:f5:9a:c8:3f:7a:6c:8c:ef:30:59:a7:11:b0:
e6:70:5f:73:01:9e:73:4d:68:7f:d8:19:0c:3c:7c:ec:db:ea:
e2:ea:89:35:dd:a0:b5:2d:e2:54:9a:72:cf:79:24:6b:91:4d:
6d:1e:49:c9:5a:2e:35:6f:d9:05:f4:3c:1c:ca:74:06:d2:5b:
4a:7f:78:a1:1c:43:8f:71:ad:d2:37:77:cb:dc:ad:6a:1a:bb:
c0:72:d7:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPqDla8pCfoYgWIEIBGDZPqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjIxMDE4MDc0NTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDgzNWZiMmYzNGY5ZjZmOGIyMjA1NTAyODZkMDQzMGZhNzAyNWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4cc/s3gwLxKgqh5WdQkHwNWhzaA
dJ1+0IqEj2YP9z2audoSmIsYC8MPN6jW0ZTdAHkIwoLkdY9Gz464xf0dHdqnT732
l2Ra6n6ufRECBTAme5m+7UVqo+V0HSRBmTOOBbHIh1vhQ9f7LDGLduSyJfgc7jKz
ijsHrOvHzh+HY/yPloUKW3/qLLzPQpGebGEI4NpJg2g7HShd7lNP5StQa2GPNhEH
UWhGTlvYrjNTVx+okYG1lCad465Q+33efIZFe27o1KtOEtZzYxMXpXB8v7Ri7yxn
peEzZJeaRGdFCxwDOMT6f1+Dy2b6o0phMgxh/KXLStGln8hutO14kZv4YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA2DX7LzT59viyIFUChtBDD6cCW3MB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvRFlOZnN2TlBuMi1MSWdWUUtHMEVNUHB3SmJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfqMA0G
CSqGSIb3DQEBCwUAA4IBAQAtkoVTJYXhWYyYwy3e1oguEEyiOsqzDVtRTztDycNj
oxlPOz8r/0m8EJwF1mcT94QZlwIREnNq8RozqabNGeTLvf2X7E6NgkibASxHARHC
tAYSfV6GnbgmjY8Lu5EYRZUoNnFL8W2YsAifzIMRcGZER2fvCAx5dKhw4N0Ylat8
BFm54L6U3Lj6fL3bAKQvlCZD2OGeEISCm0BkvTK0sdWTtqnYwmbZmvWayD96bIzv
MFmnEbDmcF9zAZ5zTWh/2BkMPHzs2+ri6ok13aC1LeJUmnLPeSRrkU1tHknJWi41
b9kF9DwcynQG0ltKf3ihHEOPca3SN3fL3K1qGrvActdf
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-ams.rpki-client.org