Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/d6lu6gEuVCV5ZXvri275q2Ae760.roa
File: d6lu6gEuVCV5ZXvri275q2Ae760.roa (raw, json)
Hash identifier: 3xAlXuLoWt6SH3Kvzm+7eM0AornEQpeVsuBd+YM273M=
Subject key identifier: 77:A9:6E:EA:01:2E:54:25:79:65:7B:EB:8B:6E:F9:AB:60:1E:EF:AD
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0182D5BF704B1700A6406A6EBB002E6457C5
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/d6lu6gEuVCV5ZXvri275q2Ae760.roa
Signing time: Thu 25 Aug 2022 16:04:29 +0000
ROA not before: Thu 25 Aug 2022 16:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 80.71.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:bf:70:4b:17:00:a6:40:6a:6e:bb:00:2e:64:57:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Aug 25 16:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77a96eea012e542579657beb8b6ef9ab601eefad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:05:08:ec:1e:2a:88:64:b9:f3:67:04:2d:97:
46:15:da:31:9a:5a:a7:49:47:27:f4:0e:cc:52:1f:
06:d1:76:7f:c2:dc:95:58:c8:3c:56:71:1c:79:7f:
b6:f4:51:c2:64:67:81:3b:56:7b:83:c3:21:a0:d7:
57:e9:ea:d4:95:10:bc:d0:56:c3:44:ec:e9:f7:24:
2e:9f:08:cb:30:68:cf:00:fc:db:6a:e3:d8:2b:28:
ae:17:72:d2:5f:75:e6:45:91:29:fa:7d:54:f3:64:
a2:17:76:91:cf:bf:d5:8a:13:fe:bb:75:fd:cf:a7:
73:b1:57:0b:92:62:7a:42:39:8e:24:d2:57:f7:83:
bc:99:d9:7e:ae:79:6a:e3:8d:3f:a8:6d:d7:b7:1d:
4f:5f:ce:77:7c:dc:5d:55:69:ad:b8:f7:a7:94:48:
02:7d:e1:ea:2c:50:dd:15:a0:da:ff:6c:d5:9c:b6:
d0:11:c9:b4:6d:2f:33:fa:1f:01:56:7e:3f:91:ac:
d7:49:df:57:26:da:3e:30:c8:17:0e:a6:57:22:29:
da:20:50:a2:8d:9a:e6:c6:42:0e:0d:07:15:42:c5:
ac:9a:a1:64:3d:14:cc:90:b6:fb:83:a4:24:3b:9a:
ff:36:e5:a8:0e:14:76:96:52:01:07:6f:db:01:c6:
af:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A9:6E:EA:01:2E:54:25:79:65:7B:EB:8B:6E:F9:AB:60:1E:EF:AD
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/d6lu6gEuVCV5ZXvri275q2Ae760.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.232.0/24
Signature Algorithm: sha256WithRSAEncryption
10:0a:72:9f:b6:de:28:4b:92:c9:f2:f5:a7:ac:29:8b:aa:9f:
39:69:24:a9:d2:bc:92:d7:b9:3d:3a:4e:6a:00:93:b2:3c:32:
d0:a8:5d:f2:df:c6:77:43:15:17:8b:cb:a2:97:e7:fd:44:d9:
84:4e:4e:d4:75:07:38:39:85:70:5b:86:33:e4:fe:20:8b:7e:
b1:b9:b5:b2:ff:f0:f9:a9:77:b6:e9:47:fd:25:e5:86:00:31:
a9:c2:ef:c0:fa:f7:bd:b3:5e:72:84:9c:8a:66:04:52:d2:02:
6e:25:90:a8:22:f9:87:40:85:c9:dd:97:14:1b:5b:ec:90:37:
37:95:9b:1d:95:65:24:ec:4a:1b:69:e9:9f:df:49:34:ae:43:
f8:db:8a:9c:36:01:96:f0:61:2b:65:91:8b:7e:16:54:3f:f6:
d9:c7:2b:53:d9:aa:b7:12:88:ca:16:54:22:e2:97:f3:d1:fb:
c2:2f:86:c5:e9:01:bb:ec:e9:5e:e0:ca:7a:7f:3e:ed:19:0b:
f7:0a:fe:b3:8a:6f:6b:cd:86:a4:60:5f:a3:f3:e6:78:6f:2b:
6b:1f:20:c5:17:be:b9:7d:22:06:25:ce:15:a8:20:48:75:8a:
6a:b2:77:08:88:98:b0:c0:d6:5a:b7:94:d3:db:2b:61:a3:8e:
75:4f:78:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLVv3BLFwCmQGpuuwAuZFfFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjIwODI1MTYwNDI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2E5NmVlYTAxMmU1NDI1Nzk2NTdiZWI4YjZlZjlhYjYwMWVlZmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgQUI7B4qiGS582cELZdGFdoxmlqn
SUcn9A7MUh8G0XZ/wtyVWMg8VnEceX+29FHCZGeBO1Z7g8MhoNdX6erUlRC80FbD
ROzp9yQunwjLMGjPAPzbauPYKyiuF3LSX3XmRZEp+n1U82SiF3aRz7/VihP+u3X9
z6dzsVcLkmJ6QjmOJNJX94O8mdl+rnlq440/qG3Xtx1PX853fNxdVWmtuPenlEgC
feHqLFDdFaDa/2zVnLbQEcm0bS8z+h8BVn4/kazXSd9XJto+MMgXDqZXIinaIFCi
jZrmxkIODQcVQsWsmqFkPRTMkLb7g6QkO5r/NuWoDhR2llIBB2/bAcav/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHepbuoBLlQleWV764tu+atgHu+tMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvZDZsdTZnRXVWQ1Y1Wlh2cmkyNzVxMkFlNzYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfoMA0G
CSqGSIb3DQEBCwUAA4IBAQAQCnKftt4oS5LJ8vWnrCmLqp85aSSp0ryS17k9Ok5q
AJOyPDLQqF3y38Z3QxUXi8uil+f9RNmETk7UdQc4OYVwW4Yz5P4gi36xubWy//D5
qXe26Uf9JeWGADGpwu/A+ve9s15yhJyKZgRS0gJuJZCoIvmHQIXJ3ZcUG1vskDc3
lZsdlWUk7Eobaemf30k0rkP424qcNgGW8GErZZGLfhZUP/bZxytT2aq3EojKFlQi
4pfz0fvCL4bF6QG77Ole4Mp6fz7tGQv3Cv6zim9rzYakYF+j8+Z4bytrHyDFF765
fSIGJc4VqCBIdYpqsncIiJiwwNZat5TT2ytho451T3hu
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org