Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jtKkrRVnzUpcicX2CAINqljHyUo.roa
File: jtKkrRVnzUpcicX2CAINqljHyUo.roa (raw, json)
Hash identifier: g9rhgX6SkxnqaEuiEaLFYwYMu9GH73b996raVKcikas=
Subject key identifier: 8E:D2:A4:AD:15:67:CD:4A:5C:89:C5:F6:08:02:0D:AA:58:C7:C9:4A
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0182CEAF104CF67E4BEEDC0405EC9001137D
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jtKkrRVnzUpcicX2CAINqljHyUo.roa
Signing time: Wed 24 Aug 2022 07:09:15 +0000
ROA not before: Wed 24 Aug 2022 07:09:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 80.71.231.0/24 maxlen: 24
80.71.236.0/24 maxlen: 24
80.71.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ce:af:10:4c:f6:7e:4b:ee:dc:04:05:ec:90:01:13:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Aug 24 07:09:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ed2a4ad1567cd4a5c89c5f608020daa58c7c94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9b:52:fb:3b:13:11:14:46:26:8b:b9:10:8b:
f4:45:42:a1:a5:a7:d6:e9:68:20:3f:50:de:1f:53:
34:05:80:34:a6:dc:9a:42:0a:16:8c:a9:72:62:81:
84:cd:da:1a:bf:68:bc:d8:54:b8:3b:b9:11:f7:06:
86:eb:49:fd:35:3f:ec:be:72:a1:c8:15:07:9c:85:
bf:f2:c1:ad:29:9f:3f:08:6b:6b:5c:9b:1c:a9:72:
e0:89:a7:06:af:8c:b3:26:e5:01:d1:14:52:de:c1:
e4:88:2e:a4:2e:26:5c:2e:b0:cc:d1:a5:90:45:b7:
16:8f:d6:28:54:7e:ac:b1:51:9b:9a:2a:db:8a:3b:
08:02:8d:3f:dc:1c:0e:15:be:97:01:1e:31:d4:af:
dc:cb:0b:ca:56:2e:b7:17:7f:c9:23:22:74:b8:ba:
fb:ed:10:cb:39:50:a9:0e:8c:79:20:73:82:4f:6f:
0d:5e:3f:0f:54:46:9d:f3:ba:ce:16:c7:e9:b0:f0:
f2:08:6c:80:53:1e:f0:2f:be:57:fa:5f:d0:9c:be:
f2:10:15:48:fc:ee:16:ec:7e:47:9e:43:40:88:f2:
b6:5a:0e:47:04:f9:a4:24:a2:a9:00:de:88:2f:62:
29:b0:cd:80:2f:7d:87:f1:c2:01:07:d1:1d:3b:10:
5e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D2:A4:AD:15:67:CD:4A:5C:89:C5:F6:08:02:0D:AA:58:C7:C9:4A
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/jtKkrRVnzUpcicX2CAINqljHyUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.231.0/24
80.71.234.0/24
80.71.236.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:e8:49:08:a0:a8:9c:f7:a7:da:1b:8d:a1:39:d3:5e:9e:50:
e7:a4:9f:4f:71:77:23:83:e0:e3:e4:3c:dc:24:91:0d:38:a7:
7c:b0:78:18:1f:82:8b:95:97:a3:4d:a6:13:9c:65:75:65:a4:
a8:c6:d4:22:b7:f7:9f:3d:ae:c3:f3:03:ff:29:a4:04:0d:90:
c2:25:b4:9e:4d:89:02:d0:ad:24:3e:a1:0a:e3:12:bf:a6:f7:
a1:6d:70:77:5b:40:8a:d2:2e:d2:37:e4:d3:8f:42:0a:01:6e:
0c:f1:34:af:15:a8:cc:81:fe:72:a1:14:33:7b:e0:9b:88:eb:
f8:76:4b:f3:d2:a5:06:6e:4e:21:4c:f3:fa:af:d9:24:2b:b7:
ca:6b:55:5d:b7:df:aa:03:12:71:99:d7:08:41:74:5a:e9:42:
5f:3a:87:84:0f:2b:36:80:37:fa:16:51:ce:86:66:15:60:7e:
b5:74:e8:f7:d8:82:56:5e:56:57:d1:0e:98:fa:1b:65:0e:37:
8e:b8:ee:b3:f0:ec:6d:ef:d7:78:ae:77:63:2f:c1:f5:e4:28:
23:81:1e:0c:2c:9b:66:13:25:87:c8:ae:a0:1f:aa:1b:f1:2a:
43:bd:f5:07:c1:b7:d8:03:3d:0a:d0:35:25:06:1d:11:c4:31:
dc:69:7c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org