Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/8kMMib9AU7Am9lpaxz6D31cBBL0.roa
File: 8kMMib9AU7Am9lpaxz6D31cBBL0.roa (raw, json)
Hash identifier: mL7F8D4GybSdCqobvcaTBEP6wHpBCI3yrNV418x4H6A=
Subject key identifier: F2:43:0C:89:BF:40:53:B0:26:F6:5A:5A:C7:3E:83:DF:57:01:04:BD
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 0182EB23C61E7B14EECD857F8DF2F45FA77F
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/8kMMib9AU7Am9lpaxz6D31cBBL0.roa
Signing time: Mon 29 Aug 2022 19:46:06 +0000
ROA not before: Mon 29 Aug 2022 19:46:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 80.90.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:eb:23:c6:1e:7b:14:ee:cd:85:7f:8d:f2:f4:5f:a7:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Aug 29 19:46:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2430c89bf4053b026f65a5ac73e83df570104bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:83:b9:48:90:27:c7:5f:4e:dc:16:c5:0a:31:
b9:ad:96:dc:6b:ef:16:d7:04:a7:92:d9:d4:c5:1d:
90:84:6e:b7:5c:8f:14:cd:93:fe:c9:c5:49:1f:9f:
ff:5d:9a:f2:7d:7a:ac:29:8f:48:a4:aa:18:07:99:
7f:6b:40:13:94:88:34:7d:ee:9f:00:3a:06:86:89:
40:b0:4b:af:96:ea:a2:3e:c4:4b:be:d8:24:05:83:
5a:7b:5d:50:2d:f1:00:78:8a:48:d9:ac:f9:78:0a:
3e:2e:15:ec:ee:9f:4f:17:93:b6:da:98:75:3a:04:
2d:d5:32:5e:61:05:fb:35:83:71:86:09:3d:6c:8d:
50:c4:bc:70:65:39:e0:49:1b:f1:8b:bc:02:87:b7:
52:64:5e:cd:29:87:76:a7:db:67:b1:1b:55:8d:1b:
a9:0c:45:2b:d6:0f:63:3a:39:dd:8a:fb:fa:80:72:
8f:86:d8:63:0d:46:9b:bd:f9:99:dd:e2:d1:d8:ec:
6b:e7:ba:51:f5:a6:f3:29:4f:68:d5:d2:f7:05:e7:
c0:d7:f8:83:6e:25:38:19:e0:26:70:e1:be:51:46:
8f:94:37:e2:a2:bc:ee:31:19:ce:b3:d1:05:65:ba:
cc:ff:f4:43:c2:6d:a4:03:7e:06:73:e0:74:bc:e7:
2b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:43:0C:89:BF:40:53:B0:26:F6:5A:5A:C7:3E:83:DF:57:01:04:BD
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/8kMMib9AU7Am9lpaxz6D31cBBL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.180.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:52:88:3f:a9:37:f2:3f:1f:85:31:a9:57:16:09:0b:93:ae:
b4:9b:e0:c5:3d:e6:10:9f:f8:9b:6c:64:4f:44:9b:ac:c4:2c:
c5:7c:3d:eb:23:f5:91:4d:65:34:d6:c1:ad:39:84:98:4d:25:
65:4f:ea:1c:86:3b:b5:bd:0c:cd:4c:4a:92:df:ca:a0:07:d5:
31:d1:05:c9:f0:5b:a2:e6:7c:68:12:f1:9b:9e:6c:ee:c0:f7:
71:75:4a:52:25:33:12:65:32:e0:71:29:0e:a3:18:48:82:9a:
35:14:df:8e:8d:d8:41:45:df:b1:1d:57:bd:20:e7:a1:4a:00:
0e:80:93:1f:96:3b:a6:fd:c4:a3:9b:d6:2f:b1:71:1f:4c:d3:
45:d7:0b:cd:db:cd:cb:fe:b6:5a:e9:71:e2:93:e7:90:1a:67:
ea:b2:b4:09:2d:2f:51:ec:51:88:d0:6f:e5:d1:98:fb:a2:3d:
18:3c:d5:57:88:c8:22:c9:f4:ba:fe:95:aa:6e:c6:31:de:42:
3c:8c:4c:6b:5e:c0:e3:24:35:5c:eb:96:59:99:bb:3f:f1:16:
6f:0d:57:2d:ab:3f:1d:f1:81:7b:f5:ef:71:f0:af:6b:9d:3a:
3c:e4:65:22:ec:7f:a8:94:96:b0:4d:35:86:96:ed:11:40:56:
10:98:0f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:23 2024 by rpki-client on console-ams.rpki-client.org