Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/XbXDMislPhJQmjqSlxaBuaZZbhY.roa
File: XbXDMislPhJQmjqSlxaBuaZZbhY.roa (raw, json)
Hash identifier: K0xdI1bMl3S7qzNZXBjLD4IFOitOvmyKJq8BXR17dO0=
Subject key identifier: 5D:B5:C3:32:2B:25:3E:12:50:9A:3A:92:97:16:81:B9:A6:59:6E:16
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018291D21A5D14A6E9F8FF89C11E4A48196B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/XbXDMislPhJQmjqSlxaBuaZZbhY.roa
Signing time: Fri 12 Aug 2022 11:30:41 +0000
ROA not before: Fri 12 Aug 2022 11:30:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 80.71.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:91:d2:1a:5d:14:a6:e9:f8:ff:89:c1:1e:4a:48:19:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Aug 12 11:30:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5db5c3322b253e12509a3a92971681b9a6596e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:44:6f:e3:97:c1:36:1a:21:9b:1f:a0:bd:5a:
f6:05:88:2e:32:8f:2c:7a:aa:0d:9c:9c:ae:8d:42:
4f:2c:e6:b1:7a:d5:c6:7f:67:a3:7b:31:24:36:e2:
41:84:69:b5:24:67:2f:3d:bf:fe:53:21:60:9b:c9:
c4:91:da:79:ac:98:dc:7c:68:cc:69:d8:81:c2:9c:
62:76:6c:85:d4:9c:6a:79:40:33:84:25:ab:69:bb:
b5:72:50:60:ba:d3:a3:6c:b6:e3:01:b7:34:5a:83:
84:11:fd:f0:15:6e:21:2f:ad:81:e7:d3:1e:4d:89:
e5:f5:00:99:f5:50:a8:50:b4:76:24:67:e6:61:99:
cc:ad:af:cc:38:39:b2:79:73:16:84:ce:34:75:7c:
08:ed:59:82:fb:a8:67:d3:38:e2:a4:6c:b0:cc:0f:
1c:7c:86:e7:c7:85:a4:00:5e:b4:8a:78:58:8c:2f:
54:00:fb:e1:b4:7f:b4:0c:c1:61:9e:8a:0f:84:c4:
1b:b2:67:b0:5b:2c:49:6f:dd:a3:93:ca:aa:d1:34:
8e:5f:c0:9e:9e:27:08:45:1c:dc:fa:9a:fe:6b:00:
e7:68:b1:24:97:44:4b:a5:b7:e5:ff:37:94:60:06:
3f:09:3f:10:aa:97:fa:b4:f8:bf:0f:33:c3:36:d5:
59:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B5:C3:32:2B:25:3E:12:50:9A:3A:92:97:16:81:B9:A6:59:6E:16
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/XbXDMislPhJQmjqSlxaBuaZZbhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.224.0/24
Signature Algorithm: sha256WithRSAEncryption
03:39:8a:03:28:17:c7:4b:08:f3:c2:47:f3:e2:cd:07:c6:bc:
07:2d:00:27:bc:52:c5:1a:52:82:fb:06:67:32:7b:11:50:8a:
56:12:1c:22:a8:8d:39:a8:d9:a4:62:28:77:97:da:2a:ea:46:
6e:4e:b6:59:a2:78:a6:19:5d:a2:99:4c:b2:a0:ee:e0:f0:ec:
31:e7:cf:0f:45:e1:7d:ba:77:96:25:6c:c0:b0:d4:22:a8:68:
89:d7:19:5f:80:97:4b:18:b9:b1:12:4e:8a:34:5e:15:42:29:
04:30:dc:3b:25:cb:82:05:f9:0e:ad:96:46:cc:4b:9d:25:72:
14:c8:ef:02:6b:5e:e9:22:79:d6:94:16:4f:3f:8f:6c:3d:8d:
be:61:57:be:67:e3:2e:c8:e3:5a:93:9f:b0:a6:fd:88:00:92:
06:3d:ba:d0:bb:e2:bd:4b:82:70:13:78:8a:0f:dc:f7:eb:d8:
e5:2c:00:f2:76:02:45:ae:d9:ab:a5:71:e7:57:a1:26:ed:cb:
e4:bb:21:d9:4d:7a:7a:9b:3c:45:a4:0e:48:51:43:21:8a:d6:
67:f3:2c:24:bd:ec:7a:5b:91:96:21:e4:09:b5:d9:7d:e7:f0:
16:79:17:d7:e2:57:59:65:bd:f1:91:18:7d:89:ef:57:91:f6:
e4:7a:d2:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKR0hpdFKbp+P+JwR5KSBlrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjIwODEyMTEzMDQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGI1YzMzMjJiMjUzZTEyNTA5YTNhOTI5NzE2ODFiOWE2NTk2ZTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkRv45fBNhohmx+gvVr2BYguMo8s
eqoNnJyujUJPLOaxetXGf2ejezEkNuJBhGm1JGcvPb/+UyFgm8nEkdp5rJjcfGjM
adiBwpxidmyF1JxqeUAzhCWrabu1clBgutOjbLbjAbc0WoOEEf3wFW4hL62B59Me
TYnl9QCZ9VCoULR2JGfmYZnMra/MODmyeXMWhM40dXwI7VmC+6hn0zjipGywzA8c
fIbnx4WkAF60inhYjC9UAPvhtH+0DMFhnooPhMQbsmewWyxJb92jk8qq0TSOX8Ce
nicIRRzc+pr+awDnaLEkl0RLpbfl/zeUYAY/CT8Qqpf6tPi/DzPDNtVZoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF21wzIrJT4SUJo6kpcWgbmmWW4WMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvWGJYRE1pc2xQaEpRbWpxU2x4YUJ1YVpaYmhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfgMA0G
CSqGSIb3DQEBCwUAA4IBAQADOYoDKBfHSwjzwkfz4s0HxrwHLQAnvFLFGlKC+wZn
MnsRUIpWEhwiqI05qNmkYih3l9oq6kZuTrZZonimGV2imUyyoO7g8Owx588PReF9
uneWJWzAsNQiqGiJ1xlfgJdLGLmxEk6KNF4VQikEMNw7JcuCBfkOrZZGzEudJXIU
yO8Ca17pInnWlBZPP49sPY2+YVe+Z+MuyONak5+wpv2IAJIGPbrQu+K9S4JwE3iK
D9z369jlLADydgJFrtmrpXHnV6Em7cvkuyHZTXp6mzxFpA5IUUMhitZn8ywkvex6
W5GWIeQJtdl95/AWeRfX4ldZZb3xkRh9ie9XkfbketLT
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org