Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WCnEpnsC4kpCzz3FkE8IWKT9h-Q.roa
File: WCnEpnsC4kpCzz3FkE8IWKT9h-Q.roa (raw, json)
Hash identifier: tM55NKj2d6PbU2//uydUVcVbLX39DnfvHFSdUv/enxs=
Subject key identifier: 58:29:C4:A6:7B:02:E2:4A:42:CF:3D:C5:90:4F:08:58:A4:FD:87:E4
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0182A604E5DBB337C538E8522FD3D49EAA58
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WCnEpnsC4kpCzz3FkE8IWKT9h-Q.roa
Signing time: Tue 16 Aug 2022 09:38:34 +0000
ROA not before: Tue 16 Aug 2022 09:38:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 80.71.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:04:e5:db:b3:37:c5:38:e8:52:2f:d3:d4:9e:aa:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Aug 16 09:38:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5829c4a67b02e24a42cf3dc5904f0858a4fd87e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:59:2d:02:34:47:09:1d:22:54:1f:f9:37:59:
43:71:e9:04:f8:20:dd:ee:6d:93:ea:c9:d1:43:24:
28:b7:80:90:0a:7a:21:ad:a9:b9:09:da:36:1d:e2:
09:b6:a5:72:4a:96:05:a0:04:5a:14:df:85:02:16:
b9:f1:48:11:81:1e:d1:bd:c9:41:1f:aa:7f:32:f2:
d6:aa:d5:68:1a:f5:02:ba:71:71:fd:8a:44:ed:20:
9b:f7:b8:6f:ca:65:00:8d:66:06:57:05:ac:b0:15:
93:df:d2:7b:4c:1c:1a:14:11:50:30:b6:20:a8:1c:
f4:16:15:8d:b8:d3:6c:af:2d:58:14:5e:59:2f:f5:
a7:c5:12:98:79:29:ec:e7:98:06:bb:2c:29:c3:1f:
72:dd:d1:43:fe:7d:ab:7c:53:d4:be:23:4b:ef:f7:
34:d8:5f:e3:5d:b0:b2:3d:e1:61:66:ca:ac:55:7a:
a3:ae:db:e1:cf:46:be:a5:82:97:d9:25:e6:f9:43:
d9:7a:86:e2:0a:7a:21:6a:3e:46:c3:14:95:9a:4b:
3a:73:53:68:4c:6f:57:1f:ec:5a:57:26:96:e5:93:
64:16:95:03:8d:f7:f8:48:98:9d:35:8a:83:d8:3e:
6c:b9:90:19:1b:be:73:12:34:5e:b5:90:7d:85:78:
c4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:29:C4:A6:7B:02:E2:4A:42:CF:3D:C5:90:4F:08:58:A4:FD:87:E4
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/WCnEpnsC4kpCzz3FkE8IWKT9h-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.236.0/24
Signature Algorithm: sha256WithRSAEncryption
28:bc:a2:23:88:72:70:bd:ce:d7:21:63:4d:91:b0:06:06:9d:
e7:7f:b3:09:22:97:74:db:de:28:1b:8d:64:8d:d3:19:f1:7b:
e4:53:7b:9c:fa:7a:16:f8:dd:11:6a:44:0e:ce:7f:2c:4f:08:
11:58:27:80:0b:4f:cf:22:c9:01:6c:26:13:ee:8c:7e:2e:51:
8f:ff:f7:60:a0:0d:49:f7:17:e5:a4:4e:e7:d4:00:51:7b:30:
e1:d5:95:35:3f:a4:4b:96:8c:65:8e:ec:5f:0a:7f:b0:bb:95:
e9:62:89:f1:56:6d:9e:c0:64:c3:23:a7:15:09:41:b9:66:56:
a2:04:8e:74:7c:f7:4d:e0:09:4f:b8:2a:a1:88:6e:d8:80:3d:
eb:41:50:3c:c3:45:73:2b:7f:4c:1b:63:60:d3:06:2e:88:c4:
39:da:14:a0:b5:4f:16:f9:1f:e6:03:d7:cf:0b:3c:8b:6e:a8:
5b:7d:77:09:6d:6a:94:be:f4:52:8b:a8:dd:20:43:90:38:95:
1d:3d:10:51:e9:98:76:d7:8e:18:c3:aa:a6:57:3a:38:8c:97:
ce:cf:ea:69:e6:7c:6b:65:fa:00:7f:86:eb:d0:b6:35:f8:ac:
95:4f:3e:5d:52:c2:f7:6e:28:1b:d3:4c:1f:06:94:8c:33:61:
b6:65:3d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org