Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/En_AHRXBWAJFxItE1G2zEpXtTzc.roa
File: En_AHRXBWAJFxItE1G2zEpXtTzc.roa (raw, json)
Hash identifier: 8FBQg64EZvkBcI23dXu6cikX4D3pOjY4SIee262PBNQ=
Subject key identifier: 12:7F:C0:1D:15:C1:58:02:45:C4:8B:44:D4:6D:B3:12:95:ED:4F:37
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0183CC02C5877E3C35CE5ED12B696DEE14F5
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/En_AHRXBWAJFxItE1G2zEpXtTzc.roa
Signing time: Wed 12 Oct 2022 11:44:37 +0000
ROA not before: Wed 12 Oct 2022 11:44:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17447
IP address blocks: 80.71.226.0/24 maxlen: 24
80.71.225.0/24 maxlen: 24
81.29.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:02:c5:87:7e:3c:35:ce:5e:d1:2b:69:6d:ee:14:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 12 11:44:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=127fc01d15c1580245c48b44d46db31295ed4f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:0a:3f:10:02:67:62:c0:5d:c6:81:95:9a:
ed:16:ca:bf:3a:ef:4c:5b:9e:52:38:01:97:fe:04:
55:99:36:6f:64:bf:1a:4c:d2:15:f0:ec:88:6d:80:
0b:73:3c:35:f5:7f:ce:ba:2c:d8:32:64:bb:36:0d:
46:ed:62:48:7a:1d:8a:e1:f8:cf:46:e2:e2:fe:35:
d5:da:3d:a4:04:cf:2a:b3:16:5c:2a:ed:b5:a6:56:
94:52:7d:1b:49:bc:70:9e:ae:ae:86:cd:39:61:c2:
1a:0b:43:a6:b8:0a:16:bd:54:3b:2a:13:e5:3d:3e:
5a:6d:7c:46:93:1f:49:a5:f0:ac:2f:91:91:01:2f:
34:1d:73:a8:0b:65:74:be:e4:32:ec:2f:5c:7d:14:
db:04:81:95:ea:54:20:ed:5d:e6:a2:fa:42:8a:fb:
9b:aa:b9:42:06:e9:59:74:61:b0:50:19:8f:0e:93:
0d:d7:0f:a4:e0:69:ce:d9:74:e5:a7:30:81:d2:35:
85:b1:5e:ae:62:c5:24:7d:0c:b2:a7:52:c0:48:ba:
93:fb:8e:de:10:2a:88:5b:c6:85:c1:4e:c8:66:43:
8d:c8:eb:ff:dd:8b:c1:a4:eb:65:de:af:9a:d7:f9:
94:d1:ab:eb:e2:ff:4d:74:cf:90:d9:84:db:b6:cc:
8f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7F:C0:1D:15:C1:58:02:45:C4:8B:44:D4:6D:B3:12:95:ED:4F:37
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/En_AHRXBWAJFxItE1G2zEpXtTzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.225.0-80.71.226.255
81.29.153.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:c0:76:3d:14:76:c0:c3:14:8f:16:82:7e:22:84:04:99:9f:
77:ed:5c:9f:bd:16:a6:0b:84:ac:03:57:55:78:74:52:6f:c6:
fa:42:45:e3:b2:1f:ef:98:bd:da:e8:20:4a:59:73:cf:9a:36:
c4:d6:cd:75:31:44:db:18:d9:0e:e9:a2:01:77:0c:f5:5e:64:
4c:7b:a5:66:2c:27:21:9b:06:c6:70:27:fb:14:92:85:68:97:
0a:6b:ad:03:0c:cd:46:c4:2d:af:5d:07:60:a0:8c:50:72:9c:
82:c7:dc:1d:cf:ce:eb:64:4c:19:0e:35:0b:3a:4b:dc:31:ed:
cf:e2:f7:9f:92:ba:ae:63:dc:81:a4:07:8c:3e:a3:d4:50:d3:
22:b9:f5:7d:d7:86:92:3a:c7:b3:d5:ec:11:bb:a5:0b:48:1c:
8a:8d:4a:8d:ee:1d:ae:03:58:5a:ee:5d:48:d2:bf:d8:83:db:
a1:ac:67:3e:02:94:08:9c:1d:44:ae:ef:08:94:da:f3:d9:2a:
75:60:d9:f3:73:97:7d:f3:85:c7:57:2d:79:8e:30:cd:6a:d2:
48:e8:6c:85:3d:8d:36:4f:1d:01:6e:eb:a5:fc:25:9e:65:ed:
ba:70:ce:39:42:7c:be:d3:86:61:f5:bd:70:75:41:0f:4f:d2:
25:5a:78:88
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org