Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/ebbd2c-bf5a-46da-86fb-80c3ea4fd000/1/Yd4719IOQ1HPUoqvAknqwIesPTo.roa
File: Yd4719IOQ1HPUoqvAknqwIesPTo.roa (raw, json)
Hash identifier: UHXLqblKQ8rBR/vUdcorq1uKDe4P2E031TuQn/WTyBQ=
Subject key identifier: 61:DE:3B:D7:D2:0E:43:51:CF:52:8A:AF:02:49:EA:C0:87:AC:3D:3A
Certificate issuer: /CN=5ca053dfe7712ee63dbff640fae07308d66ce748
Certificate serial: 0183F46436F18DB28B56B646DF4989BA114A
Authority key identifier: 5C:A0:53:DF:E7:71:2E:E6:3D:BF:F6:40:FA:E0:73:08:D6:6C:E7:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKBT3-dxLuY9v_ZA-uBzCNZs50g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/ebbd2c-bf5a-46da-86fb-80c3ea4fd000/1/Yd4719IOQ1HPUoqvAknqwIesPTo.roa
Signing time: Thu 20 Oct 2022 07:55:51 +0000
ROA not before: Thu 20 Oct 2022 07:55:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 80.67.96.0/20 maxlen: 24
92.54.0.0/18 maxlen: 18
185.10.168.0/22 maxlen: 22
2a02:a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:64:36:f1:8d:b2:8b:56:b6:46:df:49:89:ba:11:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca053dfe7712ee63dbff640fae07308d66ce748
Validity
Not Before: Oct 20 07:55:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61de3bd7d20e4351cf528aaf0249eac087ac3d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:58:71:3f:db:ff:43:cc:b5:88:6c:c7:82:94:
c6:32:68:45:b8:26:70:19:5d:9b:37:25:e6:7e:39:
85:e2:10:14:13:67:8b:6b:ec:37:82:02:10:66:cd:
db:40:31:22:00:73:c0:86:61:a5:54:64:f0:92:7d:
11:64:46:3c:45:ca:1f:02:e1:00:cb:71:0b:7e:5b:
7d:05:f2:de:ec:58:0f:0a:e0:b1:1d:71:f4:f0:fd:
ef:e5:74:33:45:59:bf:10:03:3d:f7:7a:1a:a4:a4:
96:5a:0d:08:7f:5c:e2:5e:0f:ea:95:0a:b6:eb:49:
69:85:f9:53:81:71:85:74:d2:7b:6d:e3:9f:ff:d7:
1b:21:12:3a:80:a8:f1:62:22:5c:43:5a:db:2e:4c:
3f:76:81:e3:d7:6a:fc:3b:13:4b:48:6b:20:f2:73:
6f:ea:f0:2d:5b:3f:fe:86:2c:4d:86:f2:0e:9e:1f:
b8:b2:a4:92:27:2e:21:60:18:49:1e:a3:75:86:45:
16:3a:8c:8a:21:d0:52:6d:8b:63:2c:6d:9b:81:f2:
b5:53:fd:eb:7d:a7:e9:f3:dd:b5:8d:df:c0:53:a7:
a5:5d:d8:f0:4c:78:03:7e:4c:ab:a4:68:83:0c:0b:
e6:5a:fa:71:c6:96:08:38:76:1b:63:6b:c0:5e:bd:
ef:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DE:3B:D7:D2:0E:43:51:CF:52:8A:AF:02:49:EA:C0:87:AC:3D:3A
X509v3 Authority Key Identifier:
keyid:5C:A0:53:DF:E7:71:2E:E6:3D:BF:F6:40:FA:E0:73:08:D6:6C:E7:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKBT3-dxLuY9v_ZA-uBzCNZs50g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ebbd2c-bf5a-46da-86fb-80c3ea4fd000/1/Yd4719IOQ1HPUoqvAknqwIesPTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ebbd2c-bf5a-46da-86fb-80c3ea4fd000/1/XKBT3-dxLuY9v_ZA-uBzCNZs50g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.96.0/20
92.54.0.0/18
185.10.168.0/22
IPv6:
2a02:a0::/32
Signature Algorithm: sha256WithRSAEncryption
8e:3c:41:4f:e6:fc:4d:ff:dc:4a:f1:87:da:96:7c:77:d9:7b:
04:4f:ed:81:2a:8b:80:5c:b9:37:97:5f:0e:54:0c:95:72:27:
dd:35:44:82:0f:8b:dd:32:53:89:ff:bd:3b:a2:c9:e6:6a:7c:
6a:06:f4:3c:f6:30:77:61:b1:8d:74:2d:71:f9:88:09:a7:6f:
3b:6a:31:d9:84:1d:cd:3f:37:b4:1f:41:d8:82:db:3f:42:b3:
2d:ce:a5:3b:0b:e7:b7:12:f5:45:ab:c6:20:9d:8e:e0:3b:f7:
f8:44:d0:5e:09:26:aa:45:98:0b:6b:7e:47:e6:d1:c6:73:ff:
14:95:59:37:51:5a:ac:f9:eb:40:ba:cd:c9:c6:70:76:65:96:
aa:72:3b:ef:fd:0e:d0:cf:32:9f:31:66:22:ad:d4:96:e1:6c:
72:a2:92:ca:6b:68:0f:36:88:eb:40:4f:cd:48:54:19:2e:33:
f2:cf:9b:b3:4c:48:fa:23:0b:8a:95:d0:61:7f:7d:e0:e5:8a:
73:04:a7:ec:f5:5b:68:2f:e1:27:ae:90:3e:5a:04:ce:e7:50:
62:a1:b1:0b:e9:d2:81:f7:f9:94:61:fd:d6:b3:a2:13:a8:35:
7e:98:89:2a:e5:08:23:bc:64:2d:4f:22:59:5e:b2:c9:43:8a:
c9:08:bb:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:10 2024 by rpki-client on console-ams.rpki-client.org