Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/acidjLbRQr_Y_sU1q5CkzK8BFhc.roa
File: acidjLbRQr_Y_sU1q5CkzK8BFhc.roa (raw, json)
Hash identifier: wcZNDXPbfPRTxQOUEL0YMVq43fxUSd1bfDemE7eEsQI=
Subject key identifier: 69:C8:9D:8C:B6:D1:42:BF:D8:FE:C5:35:AB:90:A4:CC:AF:01:16:17
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0184AE470EBB18ED28B9A516C2FB90415ECB
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/acidjLbRQr_Y_sU1q5CkzK8BFhc.roa
Signing time: Fri 25 Nov 2022 10:13:23 +0000
ROA not before: Fri 25 Nov 2022 10:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15731
IP address blocks: 80.71.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:47:0e:bb:18:ed:28:b9:a5:16:c2:fb:90:41:5e:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Nov 25 10:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69c89d8cb6d142bfd8fec535ab90a4ccaf011617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:06:7b:92:0a:f1:db:71:c7:90:00:96:3b:
15:9e:e0:47:1a:06:fa:3f:bd:4d:e6:cf:64:d6:60:
83:fe:ae:59:4f:c0:9d:8a:93:11:bc:04:fd:3d:d0:
86:4a:0a:6f:26:de:51:b5:05:d9:22:91:d5:b5:dd:
bf:43:5c:11:af:25:a5:52:af:ab:34:c5:c5:6b:55:
59:b1:59:68:48:9d:e3:3a:7f:59:66:ea:d8:59:76:
68:39:cd:94:0c:6e:c2:27:e5:eb:c4:9d:05:a0:81:
2d:b1:74:8a:e6:cf:3f:5f:d9:3a:58:a3:08:b1:9d:
bd:1d:c8:f0:a1:59:bb:fd:87:0f:d1:82:e2:ce:58:
1a:6c:5c:b0:8f:81:95:e4:c3:0c:2b:99:2f:8b:5a:
56:0e:79:1c:67:b0:f0:6b:ff:5c:9f:71:0f:33:2b:
2c:4f:6e:74:d9:7c:c5:9f:06:ca:c0:86:74:34:d9:
8e:66:0b:e0:74:65:ec:9f:ef:5b:c3:ee:60:4a:58:
9e:55:d4:b2:11:8f:6d:2d:7a:51:74:4f:8b:e5:d8:
db:84:c5:7c:6e:88:e4:bd:7d:fd:2d:58:66:c4:ea:
c8:2e:e8:a4:0b:fa:7c:75:3f:87:bf:32:60:21:13:
a9:43:cc:8c:ca:98:7a:8a:1b:ca:d2:7a:84:57:92:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C8:9D:8C:B6:D1:42:BF:D8:FE:C5:35:AB:90:A4:CC:AF:01:16:17
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/acidjLbRQr_Y_sU1q5CkzK8BFhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.229.0/24
Signature Algorithm: sha256WithRSAEncryption
60:39:9c:c2:2e:4d:cc:38:ab:2c:8d:f8:21:e7:af:05:45:1e:
60:c8:18:be:0b:63:d9:d9:1e:97:d8:22:64:8e:c5:c9:e9:9b:
68:da:0a:4d:81:fe:b6:79:45:45:a3:27:78:cd:a9:51:02:ef:
40:d4:64:fa:46:9f:ad:a8:8e:b4:34:3c:0f:96:b6:87:09:f3:
f2:c6:e7:51:88:bb:d8:02:8a:51:38:56:c3:bf:93:5c:39:f1:
29:54:29:6c:12:a4:05:d0:2f:c4:82:00:f0:45:3c:97:07:d9:
50:a2:7b:7f:67:b3:f8:b1:ad:8c:fa:9a:7d:a4:cb:01:2b:77:
94:08:e5:94:4c:b8:2a:06:26:a9:b3:85:8a:04:08:d2:62:e6:
dc:fb:c2:ca:47:b5:39:e3:80:57:cd:e9:12:d5:61:27:31:ae:
2f:ed:24:c1:bb:5c:37:f0:31:64:0a:67:fd:ab:ef:83:78:18:
6b:af:6c:17:70:ab:6e:82:d5:29:ec:66:e0:c5:9a:5c:83:13:
90:2f:9e:67:d1:2c:61:20:65:e4:0b:4f:39:c0:5c:06:f4:85:
12:03:79:d6:25:9f:37:dd:d8:eb:0a:c6:63:c7:7a:b2:5a:eb:
9b:c8:84:12:47:f1:78:e7:b5:54:18:d1:9f:e7:20:27:cd:23:
78:b0:2e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org