Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EB3HgHZAkVZWNK9k4xVRQedUamQ.roa
File: EB3HgHZAkVZWNK9k4xVRQedUamQ.roa (raw, json)
Hash identifier: 2BKCFfMiXOITm0Bg/XDetIUSRMaYYdFZPpZvavsdOkI=
Subject key identifier: 10:1D:C7:80:76:40:91:56:56:34:AF:64:E3:15:51:41:E7:54:6A:64
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 01828C02141CC6D03B5305FF6152572A57F8
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EB3HgHZAkVZWNK9k4xVRQedUamQ.roa
Signing time: Thu 11 Aug 2022 08:25:22 +0000
ROA not before: Thu 11 Aug 2022 08:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210993
IP address blocks: 80.76.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:02:14:1c:c6:d0:3b:53:05:ff:61:52:57:2a:57:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 11 08:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=101dc780764091565634af64e3155141e7546a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:f9:82:f6:8b:5c:57:2a:88:b5:1c:55:ef:
1d:87:5d:78:96:74:0f:50:4d:56:95:14:0f:ee:f2:
34:18:21:dc:a3:9c:95:ac:60:10:6d:d3:0b:a5:e7:
c4:cc:48:d2:84:44:31:bc:d7:10:6d:b7:de:d5:52:
06:a9:fe:cf:20:20:07:c2:e9:6b:8a:58:9e:e5:b8:
a0:98:c7:13:7f:b1:48:b6:81:ea:cf:d8:90:b7:e5:
de:75:e8:c9:c5:61:9d:13:62:9f:87:69:01:32:c7:
39:c8:2c:f4:d3:92:f1:a1:cc:26:d9:df:80:d2:74:
e8:66:45:35:b6:4d:05:96:e6:2f:81:fb:14:17:a3:
4a:22:59:51:78:25:7a:ef:6c:f8:0d:85:64:fa:05:
ba:51:d1:e7:8f:02:6d:5e:8d:dc:78:68:5b:08:89:
fc:fc:79:3d:53:b5:e1:0c:56:73:a1:e5:58:a9:aa:
86:8c:f7:a0:a4:3a:3e:32:c2:1f:8f:27:27:0c:7a:
b6:e2:d0:78:1a:82:f9:ba:c8:75:ed:31:7f:21:34:
21:e4:f6:79:76:77:d7:17:24:2b:c3:4e:ed:5b:56:
2d:31:13:93:89:9b:fb:e2:14:1c:95:a7:24:df:ce:
10:70:85:5a:98:95:7d:3f:2a:11:9e:e2:aa:05:8d:
c7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1D:C7:80:76:40:91:56:56:34:AF:64:E3:15:51:41:E7:54:6A:64
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EB3HgHZAkVZWNK9k4xVRQedUamQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
52:72:f5:9d:b7:21:92:f5:49:cb:d7:fd:97:36:75:9c:93:b5:
11:65:f5:d6:5d:ec:9b:89:1d:d3:b2:bc:13:fb:50:8a:93:a0:
75:24:cb:04:8a:cf:d4:d2:ca:4d:7e:47:de:97:d6:52:9a:df:
89:47:73:c5:00:70:a2:6c:a2:fc:dd:dd:46:e2:59:e0:b4:ae:
20:82:9e:56:51:94:b4:6a:5e:a7:f9:23:98:aa:fb:be:95:ab:
55:4b:1f:73:a3:6b:95:dd:e7:eb:78:fd:b0:94:95:91:39:22:
e5:c4:20:16:3c:82:81:05:9b:8b:b1:dc:4b:58:8d:c0:2c:8f:
b6:8c:70:2b:79:44:37:c5:9a:bf:36:02:ce:67:99:1b:ec:ab:
7f:03:fc:fb:ac:7a:a0:bc:d9:1c:88:ab:3e:5a:1a:c7:99:eb:
ac:63:82:f0:d9:d3:92:8b:6f:2f:04:61:43:6f:31:e8:16:60:
3c:02:a5:dc:0b:78:51:01:81:ec:a2:58:d5:ea:db:4b:81:d7:
c3:14:2b:c2:fa:b6:ac:3b:dc:76:5f:4c:99:3b:02:82:07:f4:
a3:70:27:de:2b:be:66:d2:00:f4:01:a0:b6:99:9a:76:04:cc:
82:73:4c:40:45:6d:21:fa:8e:0d:7a:bb:77:60:ce:a1:bb:62:
81:67:f2:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org