Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xczKGn8_9Z9kyv_UEqNzSUKVp1o.roa
File: xczKGn8_9Z9kyv_UEqNzSUKVp1o.roa (raw, json)
Hash identifier: 04Ls+f02f1tFadvneP2WsNJlxn/PIxavGawpdWzRmB8=
Subject key identifier: C5:CC:CA:1A:7F:3F:F5:9F:64:CA:FF:D4:12:A3:73:49:42:95:A7:5A
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: CD245B
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xczKGn8_9Z9kyv_UEqNzSUKVp1o.roa
Signing time: Sat 01 Jan 2022 06:58:35 +0000
ROA not before: Sat 01 Jan 2022 06:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211826
IP address blocks: 80.83.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13444187 (0xcd245b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Jan 1 06:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5ccca1a7f3ff59f64caffd412a373494295a75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e0:bb:f4:a0:03:73:d9:9e:36:8c:1e:f4:be:
59:bc:51:1e:d8:1c:f0:ec:35:88:b3:4e:94:f0:8d:
fe:c8:13:dd:6e:99:0a:f3:83:69:d0:88:cd:14:cf:
0b:fc:b0:4e:13:28:09:88:97:fa:19:ab:88:78:91:
16:6f:9f:0c:46:8c:25:da:f1:38:7d:0d:0a:ba:18:
a6:78:69:08:c6:38:f8:c0:e5:57:42:8c:4d:df:6c:
a3:b1:bc:9d:fb:a2:ce:88:5a:67:e1:72:2b:de:67:
4d:e2:dd:02:f9:26:8a:d6:63:a5:f4:a4:f8:6a:b9:
7b:45:33:ea:3e:72:af:f0:f1:7f:43:0b:35:ff:b5:
63:31:16:6b:ec:e3:3a:f7:f4:7d:fd:21:d3:77:9b:
6a:25:70:ca:e3:8f:b7:e1:ec:65:fe:f9:f4:40:32:
f2:6c:13:9c:ca:33:36:a4:f4:c2:5a:b9:4f:50:2f:
7a:96:0f:1a:1f:cd:ae:31:ae:e0:f8:ab:c7:81:bd:
f5:a0:44:6e:9f:f4:c2:e2:33:b2:7f:d7:88:30:c9:
45:94:bf:0a:10:46:0e:df:9a:5a:c5:3f:0f:11:f9:
14:82:cd:b1:2f:3b:16:54:82:0b:05:29:ba:90:32:
42:17:51:e9:93:08:3e:67:95:47:c4:9e:1c:1d:a4:
aa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CC:CA:1A:7F:3F:F5:9F:64:CA:FF:D4:12:A3:73:49:42:95:A7:5A
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/xczKGn8_9Z9kyv_UEqNzSUKVp1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.83.91.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:f8:61:c2:aa:ca:c2:4c:31:fd:2e:cb:7f:b7:d4:79:c3:23:
c7:f2:0c:31:2b:38:0f:94:39:b7:c6:d4:e7:e2:49:a8:ce:d8:
3a:7e:cb:7f:ff:cc:e9:d8:d7:b8:05:e3:6f:f1:8b:b6:6e:cb:
42:03:54:3a:99:08:d2:55:8c:7d:0d:4a:38:c8:37:a8:7d:75:
4e:6f:16:7c:60:43:c6:d6:5a:36:3e:3a:58:f8:fc:44:db:25:
20:cc:28:fa:7a:cd:6a:e7:06:ca:da:4f:79:5d:ce:85:ec:1d:
40:cf:0e:4e:1e:ed:2e:fa:a6:ce:70:06:c9:2e:e1:53:43:af:
d8:b3:ff:2d:e0:d9:b0:44:a8:5e:cc:c8:c0:f5:b5:65:8a:08:
32:9f:77:71:33:75:05:90:5f:38:8c:d0:0e:2f:5c:f7:db:99:
89:4b:ef:12:cc:a3:77:52:93:26:d5:92:67:48:09:5a:05:f0:
cb:e5:17:30:c6:02:68:81:cd:e8:54:b2:57:d8:30:97:82:b9:
68:b5:9d:f9:60:54:71:d1:de:6d:4f:e1:2a:99:5c:7f:f1:3a:
2d:03:e2:54:91:fb:66:0a:8e:46:14:33:fe:bd:cc:e2:06:b6:
ac:ae:ee:6b:35:c0:ee:14:b8:f1:8c:04:6b:65:18:7c:08:28:
ef:74:d6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:10 2023 by rpki-client on console-fra.rpki-client.org