Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/uIt71bUg5tKTzvUAOMZRT4CRLEc.roa
File: uIt71bUg5tKTzvUAOMZRT4CRLEc.roa (raw, json)
Hash identifier: 3wNvZ8E4eJ2Gzxo5fj1PnRsXGYaCJk0SVdmPWS/9MpY=
Subject key identifier: B8:8B:7B:D5:B5:20:E6:D2:93:CE:F5:00:38:C6:51:4F:80:91:2C:47
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 0487D256
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/uIt71bUg5tKTzvUAOMZRT4CRLEc.roa
Signing time: Sat 01 Jan 2022 12:06:37 +0000
ROA not before: Sat 01 Jan 2022 12:06:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199440
IP address blocks: 80.92.228.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76010070 (0x487d256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jan 1 12:06:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b88b7bd5b520e6d293cef50038c6514f80912c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c2:46:3c:8d:27:dd:2c:5c:04:95:49:84:23:
1b:7c:bd:37:1a:7b:db:91:23:34:a0:48:26:d6:af:
c2:d3:6f:56:b9:83:e7:af:d3:dc:07:ad:2b:46:98:
26:c7:30:d3:de:3a:c2:c8:c8:6e:dc:a8:74:de:99:
7b:d4:4a:47:42:11:a8:46:c5:1c:38:50:20:81:3f:
42:00:a5:eb:dd:bf:e1:94:a2:a9:d4:a3:14:f5:b0:
11:61:3a:64:c8:7f:29:15:24:0c:e5:a5:63:27:7c:
82:f7:b0:31:bf:b6:e1:94:bf:53:c2:d4:8a:18:5f:
e7:84:ac:ac:aa:76:7e:c3:d9:81:c3:3d:eb:f0:82:
e8:43:05:b0:8f:43:f4:e7:9f:0a:82:f0:d2:d7:8d:
22:83:f5:15:29:6a:95:bd:ef:2b:45:34:fd:54:be:
bb:1e:b2:3b:51:eb:d3:36:d3:0e:5b:52:80:f9:03:
16:f4:50:17:2d:42:14:46:6a:95:b3:7d:86:3a:5a:
8a:21:8d:f1:8b:88:56:8f:ac:37:6a:88:4d:51:1e:
1d:8a:e3:b8:39:a8:b8:9c:5b:bd:f2:d7:fd:4c:9b:
2e:aa:8b:48:0a:96:1d:61:15:fe:96:33:5f:e5:1d:
cb:0e:18:70:c1:cb:58:40:51:db:5b:b3:aa:e5:c3:
0e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8B:7B:D5:B5:20:E6:D2:93:CE:F5:00:38:C6:51:4F:80:91:2C:47
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/uIt71bUg5tKTzvUAOMZRT4CRLEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.92.228.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f8:6a:a3:26:39:4f:57:f5:cb:bf:cc:ce:7f:af:4b:95:46:
70:e9:e5:33:47:78:22:b7:1b:fc:63:b8:a2:46:b2:4b:1c:ba:
c1:4b:89:52:32:d0:04:bc:2c:03:e5:25:f3:d1:7e:63:b4:08:
85:a9:06:54:ed:63:67:45:c7:ba:77:f2:81:33:00:c9:85:e8:
a8:dd:f9:72:da:20:fa:56:b2:c3:6a:9c:a9:a4:62:8f:75:9c:
59:5d:83:a1:88:90:14:0c:b5:88:27:ad:22:fd:b2:f5:5b:5a:
1d:6b:65:73:1c:61:22:79:08:1b:02:78:6b:2d:ac:42:54:71:
30:94:74:49:f2:ba:42:71:08:98:bf:25:76:8f:ea:f9:1d:17:
0a:ea:d2:d2:b5:e4:cc:7e:01:88:2e:48:70:23:56:6b:f6:14:
20:27:8e:44:93:5b:ce:47:ae:5a:8b:a4:2b:d8:ff:50:d0:a2:
e1:66:04:ff:b1:e1:a4:c4:81:b3:71:67:aa:bb:7a:92:6a:e1:
db:be:a9:59:6f:c2:f0:1d:ac:8e:c0:b0:32:59:f8:d8:cd:6a:
ff:c5:dc:ed:73:ee:c3:64:a3:2f:06:b2:05:db:a3:35:8f:c4:
38:66:ee:e5:67:6b:d1:58:5e:98:df:ee:be:5f:e0:44:1e:1e:
b9:46:f8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org