Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/75ad67-6f48-49c5-bf4a-faa74127dc78/1/fRfGyqUEe0ypkLwmTvQEGDRWQvM.roa
File: fRfGyqUEe0ypkLwmTvQEGDRWQvM.roa (raw, json)
Hash identifier: g11BzNPy0H/zDciOctGbN/K1+znYUfvEoUeH8A5SE+o=
Subject key identifier: 7D:17:C6:CA:A5:04:7B:4C:A9:90:BC:26:4E:F4:04:18:34:56:42:F3
Certificate issuer: /CN=11d27711906e41d0bfd7ae01bc0a38d3e79e2601
Certificate serial: 16740F31
Authority key identifier: 11:D2:77:11:90:6E:41:D0:BF:D7:AE:01:BC:0A:38:D3:E7:9E:26:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdJ3EZBuQdC_164BvAo40-eeJgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/75ad67-6f48-49c5-bf4a-faa74127dc78/1/fRfGyqUEe0ypkLwmTvQEGDRWQvM.roa
Signing time: Sat 01 Jan 2022 15:03:23 +0000
ROA not before: Sat 01 Jan 2022 15:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60981
IP address blocks: 185.80.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376704817 (0x16740f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d27711906e41d0bfd7ae01bc0a38d3e79e2601
Validity
Not Before: Jan 1 15:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d17c6caa5047b4ca990bc264ef40418345642f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:36:10:e2:41:98:8d:06:63:2d:d7:ba:24:c1:
be:5d:ac:30:e2:29:01:ad:3b:bf:4f:f2:cb:4e:36:
b3:0f:10:5c:50:17:2b:7a:3a:a5:f0:2e:99:36:29:
6f:46:5e:8d:6c:60:5a:89:71:aa:25:fd:2b:39:4b:
e7:da:49:b7:f6:55:16:7e:1b:86:2b:7e:ef:ea:58:
2c:33:2b:b1:3b:49:38:db:56:a1:fa:a4:7e:84:3b:
92:47:dc:65:de:42:fc:79:07:71:b3:b9:82:a2:29:
90:d8:41:bd:ae:36:76:b2:3e:65:0b:6b:39:7a:d8:
62:b6:59:19:20:c1:cf:ee:25:f9:dd:c5:b2:e6:e2:
dd:1d:61:3d:62:7b:be:d3:91:02:5c:bf:de:92:54:
62:2f:c5:ff:a6:34:5a:2b:a8:64:ec:75:1d:03:6c:
79:a9:d1:7d:26:92:fb:dc:cc:6e:2f:12:a1:a7:cd:
bc:72:58:5d:78:b5:f8:65:78:9b:67:68:cc:2c:16:
84:08:d6:ae:31:0f:d3:93:99:9d:3e:39:9d:36:b1:
a7:ed:d9:30:72:62:73:01:11:fa:84:02:46:9e:f4:
f8:1d:6f:b1:90:71:e1:14:e0:6e:62:a8:b2:17:90:
b2:7a:06:15:64:bb:ff:29:de:ee:04:99:60:20:05:
c0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:17:C6:CA:A5:04:7B:4C:A9:90:BC:26:4E:F4:04:18:34:56:42:F3
X509v3 Authority Key Identifier:
keyid:11:D2:77:11:90:6E:41:D0:BF:D7:AE:01:BC:0A:38:D3:E7:9E:26:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdJ3EZBuQdC_164BvAo40-eeJgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/75ad67-6f48-49c5-bf4a-faa74127dc78/1/fRfGyqUEe0ypkLwmTvQEGDRWQvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/75ad67-6f48-49c5-bf4a-faa74127dc78/1/EdJ3EZBuQdC_164BvAo40-eeJgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.84.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:2e:4e:e8:cf:03:7b:b6:fa:d5:46:4b:e9:fa:ab:03:e4:16:
8c:ee:e7:ac:9d:1b:b0:18:90:7e:12:29:3a:d6:6b:23:de:ab:
ee:32:6a:19:7d:6a:18:c4:18:be:d4:52:23:c2:85:6d:ff:2b:
79:ea:13:45:94:18:8a:94:01:41:d6:12:40:72:bc:10:34:01:
29:c0:fe:36:15:b7:5a:2b:8d:97:de:39:f4:66:49:e5:4d:31:
4c:f4:10:84:30:f4:6c:07:b4:4f:2e:36:b8:df:21:d1:9d:8e:
00:b5:f3:6b:03:2c:ff:e3:2a:97:0b:0a:3d:d1:a0:7e:13:ca:
67:da:5f:31:38:e4:ee:10:b9:60:fa:97:55:b1:1b:29:bd:bb:
e7:8b:47:ca:fb:48:54:9a:24:16:c5:54:f7:22:a8:cd:e6:19:
fb:63:a7:d0:44:4b:fc:bf:a5:09:73:4d:47:75:27:2e:91:03:
c7:86:3c:03:4e:db:ce:65:2f:ca:8d:1a:0b:87:d2:dd:16:3a:
c0:02:20:e4:80:08:13:97:e4:83:8b:69:62:71:c5:77:b2:6b:
9b:77:80:e7:01:f3:48:af:f5:93:d2:10:d2:57:0a:6d:12:14:
6b:cc:a5:39:9c:94:79:9a:0a:c0:3a:d5:41:b7:a0:71:ae:5c:
5d:24:e2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-ams.rpki-client.org