Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nY4YGwR22IoNk7MJPz-0R6Bhm0g.roa
File: nY4YGwR22IoNk7MJPz-0R6Bhm0g.roa (raw, json)
Hash identifier: I3+C1w5GUnU8B080LkEoVNLkxFCD/xRwDXhpbb1cxCg=
Subject key identifier: 9D:8E:18:1B:04:76:D8:8A:0D:93:B3:09:3F:3F:B4:47:A0:61:9B:48
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0182B4FC15ED1C28A9D69E00AB3A9EE24A56
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nY4YGwR22IoNk7MJPz-0R6Bhm0g.roa
Signing time: Fri 19 Aug 2022 07:23:15 +0000
ROA not before: Fri 19 Aug 2022 07:23:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17447
IP address blocks: 80.71.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b4:fc:15:ed:1c:28:a9:d6:9e:00:ab:3a:9e:e2:4a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Aug 19 07:23:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d8e181b0476d88a0d93b3093f3fb447a0619b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:10:f0:01:66:1f:e2:61:8f:4a:99:5a:aa:6d:
be:51:e5:2e:60:07:2c:b0:20:e9:87:8c:e6:8c:43:
50:f1:03:09:1d:a7:0c:d7:7e:d8:93:c7:28:6b:e8:
9a:b6:ef:d1:2f:a3:8f:75:bf:f0:16:ed:7a:13:ac:
c9:ac:24:ff:a2:4a:5d:72:56:b0:c2:6d:99:42:59:
a8:41:89:b4:20:94:e5:ba:a4:ec:b1:52:7b:b1:14:
24:f1:83:17:fd:2a:2f:ce:e5:a1:e9:86:e5:19:6b:
b7:01:d9:0a:8c:92:63:2a:22:57:9e:fb:dc:e9:d3:
3f:2f:b1:78:33:0a:74:ef:61:00:64:b1:8e:d6:3f:
db:df:05:ab:6d:b3:39:c2:f4:9a:e9:a0:1d:85:18:
d9:88:a0:cc:93:17:df:6c:34:76:5c:ee:52:51:c2:
8f:fe:ba:21:e8:d5:c0:b0:33:53:ce:f4:dd:66:24:
42:e1:0a:a0:4a:82:a9:0b:d4:5f:b7:2e:85:73:50:
e1:3a:1a:65:5e:df:c9:0f:20:4f:74:3f:5f:19:d0:
92:ee:f0:13:14:66:1c:ec:ef:da:b4:af:3d:d9:6d:
e8:59:a8:38:54:41:7c:ab:d6:53:01:bc:bb:7b:ef:
55:41:af:05:0c:2d:a3:b9:e6:5d:62:b2:69:1d:3a:
b4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8E:18:1B:04:76:D8:8A:0D:93:B3:09:3F:3F:B4:47:A0:61:9B:48
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/nY4YGwR22IoNk7MJPz-0R6Bhm0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:55:79:c5:62:a7:9b:87:7b:91:dd:33:07:69:a2:d5:90:1d:
91:7e:fc:f1:fc:d0:a0:e8:ca:ab:51:93:8f:d5:c0:62:bb:c6:
38:57:6e:15:41:1c:0f:38:af:01:05:9f:5c:9a:5d:93:ad:97:
6c:8f:f9:4d:66:f5:4f:3c:7c:1d:7e:2f:73:6a:b3:44:48:30:
08:ac:89:8b:68:73:43:fc:fd:9a:c9:74:9a:9c:92:ad:82:51:
96:57:d9:f1:4e:f1:ee:d7:ef:e6:17:7c:3a:82:eb:b7:e5:2f:
be:4d:e4:56:5a:c8:10:72:39:bb:d5:a3:8d:84:f1:a9:a3:ec:
d7:3d:18:46:24:bc:93:c8:1e:d3:15:90:e0:76:cf:ab:6b:4b:
83:d3:b8:fd:78:2b:26:6b:57:c7:d5:ee:23:81:28:ac:85:86:
1c:9f:88:61:b4:37:f8:6a:a5:63:ea:6b:20:68:72:6b:16:ba:
82:2a:cc:e1:fb:78:25:4c:79:d9:2f:9e:4e:68:56:b0:93:50:
29:a2:e8:e5:ef:2a:ef:41:0a:75:94:46:cb:35:81:c4:98:92:
77:b5:50:1d:90:52:1c:6b:70:cf:d9:05:af:25:16:c1:7b:46:
9d:46:01:ba:21:01:0c:d4:8a:38:9d:20:bf:c5:d6:81:24:79:
e8:5d:35:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:56 2023 by rpki-client on console-fra.rpki-client.org