Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/kvKFslVifaEtt2T-7SMGfuyKR8Y.roa
File: kvKFslVifaEtt2T-7SMGfuyKR8Y.roa (raw, json)
Hash identifier: +ZeYboUVfUvf0boniIlST8vMdpuuXOQEev6i4pbT758=
Subject key identifier: 92:F2:85:B2:55:62:7D:A1:2D:B7:64:FE:ED:23:06:7E:EC:8A:47:C6
Certificate issuer: /CN=c9769bfa59865d0c9593262881807db13f4bb87a
Certificate serial: DEA9E6
Authority key identifier: C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/kvKFslVifaEtt2T-7SMGfuyKR8Y.roa
Signing time: Sat 01 Jan 2022 05:01:47 +0000
ROA not before: Sat 01 Jan 2022 05:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 80.71.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14592486 (0xdea9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9769bfa59865d0c9593262881807db13f4bb87a
Validity
Not Before: Jan 1 05:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92f285b255627da12db764feed23067eec8a47c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:76:53:42:b3:7a:36:ee:54:08:b9:37:49:ef:
19:f6:a2:c3:f1:7a:4d:b7:00:b9:22:a8:ec:e2:7f:
49:6a:d5:d0:c4:3e:4c:82:22:1c:4e:2d:0a:c9:c0:
f8:b7:1e:83:4f:82:46:85:26:37:77:5b:62:ba:7d:
c1:1a:46:dc:26:a9:22:b3:2c:e1:c4:ea:5f:94:f9:
3e:1a:32:c2:ee:2c:f4:b9:14:26:ec:16:7a:9c:2b:
50:a1:37:73:f8:48:37:79:63:06:18:1e:74:2e:36:
42:e3:11:af:e7:27:28:f1:4d:b9:a3:7d:b7:b2:e2:
39:c7:c8:92:56:1a:16:4a:cc:32:9f:fb:3e:42:bf:
a9:82:02:13:f7:d4:ee:a5:f7:db:9f:8e:ea:21:26:
1d:9e:35:68:63:21:24:26:86:17:fa:e4:5a:36:e1:
7c:27:9f:95:4a:34:71:c8:cf:5e:8c:92:28:aa:a1:
26:64:e3:bb:0b:28:db:43:0a:b7:ff:b7:a0:e7:4d:
e3:4f:65:2f:e3:fb:cd:7c:ba:7f:13:6a:1e:df:f7:
d5:b6:cd:d0:d4:07:22:65:14:48:7c:1b:62:32:7d:
3d:9a:3f:50:a7:bc:2b:09:27:96:b6:65:cf:d0:22:
91:dd:61:49:3b:2d:1c:0f:96:92:03:91:a1:15:b4:
ce:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F2:85:B2:55:62:7D:A1:2D:B7:64:FE:ED:23:06:7E:EC:8A:47:C6
X509v3 Authority Key Identifier:
keyid:C9:76:9B:FA:59:86:5D:0C:95:93:26:28:81:80:7D:B1:3F:4B:B8:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXab-lmGXQyVkyYogYB9sT9LuHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/kvKFslVifaEtt2T-7SMGfuyKR8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bb7507-2261-4eda-a592-f7ec40e6a049/1/yXab-lmGXQyVkyYogYB9sT9LuHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.144.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e5:87:bd:bb:58:8d:87:88:fb:ee:b2:80:da:cb:7a:d8:00:
0a:5a:80:3f:de:f0:d4:ea:c8:af:63:ed:ed:21:e3:b0:67:92:
a8:dd:e1:dd:6b:a2:3a:4e:d4:0c:8f:cc:d1:9a:1d:83:2e:cd:
a8:3b:ff:a5:9f:9c:15:7f:4d:4d:a7:89:e0:b7:f4:f5:bc:ef:
4a:8c:a1:98:bd:80:f0:0e:41:bf:95:dd:b7:9c:09:5f:37:38:
2b:17:69:df:55:30:5f:94:0f:6a:a1:c3:35:74:06:ea:a6:4d:
bd:ba:21:11:6f:a3:d9:b6:7d:7a:a4:6d:42:2e:29:cc:05:50:
19:16:9c:01:61:f6:f8:89:3c:c6:d5:89:34:cf:e9:87:99:82:
99:5e:90:5a:39:8c:1a:87:93:ea:72:5b:7e:6c:bb:d7:e5:48:
d0:0a:c0:47:19:a9:25:c0:8d:09:b4:2c:6c:48:b5:49:2c:6c:
45:87:6d:8a:16:0c:da:e0:fa:93:d8:78:b0:d8:5b:8a:1f:a5:
36:1e:d5:53:83:1a:86:fe:5e:97:f3:21:0f:75:22:b6:d3:ff:
0e:d6:a2:ee:77:52:3b:36:f4:ad:e3:15:7a:91:8a:96:c2:9b:
e3:2c:85:56:4d:4b:95:86:79:d6:ed:b9:83:a8:c3:79:3d:61:
aa:ff:70:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:04 2023 by rpki-client on console-fra.rpki-client.org