Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/3l03HPgVOBa7H3YtJEjwgGrQ5SQ.roa
File: 3l03HPgVOBa7H3YtJEjwgGrQ5SQ.roa (raw, json)
Hash identifier: 7T0+synK4JNkpHi0g7/e+sCrDedjAw+XAFNMeZN/KYE=
Subject key identifier: DE:5D:37:1C:F8:15:38:16:BB:1F:76:2D:24:48:F0:80:6A:D0:E5:24
Certificate issuer: /CN=c9769bfa59865d0c9593262881807db13f4bb87a
Certificate serial: DEDED2
Authority key identifier: C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/3l03HPgVOBa7H3YtJEjwgGrQ5SQ.roa
Signing time: Sat 01 Jan 2022 05:01:48 +0000
ROA not before: Sat 01 Jan 2022 05:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 80.71.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14606034 (0xdeded2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9769bfa59865d0c9593262881807db13f4bb87a
Validity
Not Before: Jan 1 05:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de5d371cf8153816bb1f762d2448f0806ad0e524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e9:5f:de:06:f2:f1:b8:ce:1b:04:da:8b:31:
b8:ab:13:9a:6a:ca:2c:c6:1b:6f:42:a3:88:96:10:
02:ea:04:a6:22:28:7b:ba:81:dc:5f:41:33:6c:e9:
86:e6:09:9a:56:cb:ff:f3:fd:92:78:01:a6:74:0a:
ae:75:1e:8d:79:be:7d:79:be:a1:29:46:5a:66:33:
b3:a3:1c:a6:8c:c9:05:5b:c1:15:ff:cb:4e:5e:95:
b4:80:0e:8c:2f:bd:03:91:08:89:9c:00:47:9f:5a:
91:bd:a5:84:09:bc:6f:63:0a:43:17:b8:06:e5:7d:
f4:ea:65:96:2b:c0:ac:2d:94:5a:f1:e5:f3:0a:39:
1a:12:d7:69:ca:b3:ee:6f:e9:14:07:91:2c:43:6f:
27:18:47:60:af:90:a2:b8:15:f3:b8:08:e9:7f:5e:
cc:e0:7a:b3:32:27:02:56:46:2e:1a:53:ff:d1:a4:
02:bc:a9:30:a4:bb:a7:5a:c7:d7:22:d3:3b:62:6e:
06:5d:3c:3b:ed:ac:cf:a4:f4:fc:e7:40:22:67:78:
07:2a:05:cd:b5:47:9a:ce:b7:01:48:92:e1:eb:98:
4f:e4:f1:3d:d4:88:73:49:41:6a:4c:10:a4:ef:7d:
28:ba:71:73:2a:6c:6c:92:31:de:8d:28:a5:4f:2e:
e5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5D:37:1C:F8:15:38:16:BB:1F:76:2D:24:48:F0:80:6A:D0:E5:24
X509v3 Authority Key Identifier:
keyid:C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/3l03HPgVOBa7H3YtJEjwgGrQ5SQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/yXab-lmGXQyVkyYogYB9sT9LuHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.144.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ce:49:7d:13:5a:e8:73:27:15:43:c6:78:26:d9:a4:e6:22:
4a:aa:11:33:96:73:b8:b1:48:0a:70:d0:9f:1b:3d:5e:3d:c9:
f1:4d:85:b5:e0:28:d0:72:c2:58:f7:8c:c5:62:94:1c:b9:b4:
a5:ce:90:83:1f:29:61:23:50:19:9e:25:07:4c:fc:5f:b8:98:
ad:e2:05:50:87:db:6f:1b:08:42:6c:c2:4a:a0:f6:e7:a8:0f:
2b:0f:80:2e:29:fc:31:40:cb:b8:c2:21:09:f9:65:f1:df:24:
de:f4:d3:c1:a8:49:f9:7b:c9:e7:b3:5c:51:49:be:36:76:96:
51:6e:9f:e6:b0:eb:2a:9f:af:8a:21:03:cb:0f:34:80:5e:4f:
b6:b1:06:65:91:7b:cc:3b:9b:05:9c:fe:a5:d6:3e:c0:dc:39:
12:46:db:2c:7b:ca:32:71:ac:cd:be:c3:1d:07:aa:75:fc:c4:
6b:a8:84:e3:7d:13:08:28:a0:26:ea:f3:70:fe:1e:03:fa:14:
c4:b3:78:17:0d:b6:12:0b:0c:6f:ac:9b:0c:9e:86:de:a4:26:
73:9d:ed:34:76:93:54:f3:61:12:f7:a1:7e:96:8f:61:34:14:
9c:9c:9c:49:ee:15:b8:6b:e1:e4:2b:6f:93:9b:04:70:51:e2:
a3:60:0c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:43 2023 by rpki-client on console-ams.rpki-client.org