Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6n8XfrDdr-Mu-MaUKEYRLwBoWL4.roa
File: 6n8XfrDdr-Mu-MaUKEYRLwBoWL4.roa (raw, json)
Hash identifier: QB8KTthkuajFy5kaCMwITZdHuCfUqL6jRPj230HO6ME=
Subject key identifier: EA:7F:17:7E:B0:DD:AF:E3:2E:F8:C6:94:28:46:11:2F:00:68:58:BE
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 08E3CBDE
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6n8XfrDdr-Mu-MaUKEYRLwBoWL4.roa
Signing time: Sat 01 Jan 2022 08:05:13 +0000
ROA not before: Sat 01 Jan 2022 08:05:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8808
IP address blocks: 80.95.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149146590 (0x8e3cbde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 1 08:05:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea7f177eb0ddafe32ef8c6942846112f006858be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c7:44:02:fd:ba:fe:fe:be:34:9c:f1:47:61:
04:99:8a:e8:9b:30:33:35:77:e0:85:eb:75:3d:63:
50:c7:0b:d4:59:89:01:93:a2:e9:35:bb:a0:0e:12:
9b:bd:1f:02:bf:53:3a:e1:b5:c2:0f:ac:32:e9:0f:
ca:6d:dd:50:a5:01:8e:55:83:b6:c1:1f:93:ec:05:
c4:cd:26:7a:f3:86:ef:c6:8f:77:23:31:e3:1e:77:
5a:b3:62:b3:ce:e2:d0:35:b6:65:09:cf:94:a0:e7:
1e:6d:3b:f4:fc:53:60:4d:a5:de:b0:12:89:b1:78:
6f:d4:06:1f:0e:f9:75:7c:86:e1:bd:ec:cd:b2:12:
99:bb:fb:ea:38:f8:97:eb:96:3b:18:e6:5c:a9:df:
62:a2:85:c5:10:c4:fd:63:b6:b8:03:29:a0:23:74:
82:97:b5:a0:2c:34:de:03:f0:e3:6a:2d:b0:a2:25:
93:a3:d6:3b:ae:30:69:3a:12:9c:e7:70:c3:bf:64:
df:c0:e6:3c:cf:c5:0b:5a:43:44:bd:f4:4f:d7:69:
cf:0d:71:1e:b4:88:ee:a8:eb:95:95:e8:8c:09:84:
89:ef:f1:a8:b3:96:7d:4a:f6:10:b0:f9:22:4b:67:
61:de:1a:fd:65:e1:bc:f2:fb:01:b2:2e:fa:58:1c:
fb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7F:17:7E:B0:DD:AF:E3:2E:F8:C6:94:28:46:11:2F:00:68:58:BE
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6n8XfrDdr-Mu-MaUKEYRLwBoWL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.21.0/24
Signature Algorithm: sha256WithRSAEncryption
96:6a:65:b5:cb:16:7b:83:df:6d:2c:4b:59:34:65:d1:52:d4:
97:d1:1a:45:87:1a:86:76:9f:19:dc:bb:75:34:01:72:96:77:
6b:e0:5f:0c:b7:b3:07:06:6d:8d:56:5b:a4:a7:d9:1c:1a:c7:
f2:cc:cc:ca:0c:f4:e2:75:7e:71:91:25:7d:a4:3d:7e:9a:30:
d1:0f:6a:8f:da:c2:b2:b4:c0:97:fa:fe:99:f3:30:b8:a8:97:
d1:d7:be:e3:8f:80:0f:0b:ca:1d:a2:67:e0:f8:c5:81:ce:3f:
5d:64:fe:02:c3:33:51:00:4c:90:f4:0d:cb:d4:1f:c2:a1:8a:
cc:fe:c0:17:c0:ed:6a:d4:fb:f3:45:46:6b:af:cf:29:b0:9a:
e8:1f:4c:bb:8c:22:3f:77:e4:88:6c:a4:9d:81:06:28:80:e5:
40:8a:01:06:4c:34:45:b2:5f:b9:0a:85:93:b6:c3:37:bf:de:
02:ad:88:f2:82:e2:d9:74:d6:57:0f:80:21:a5:9d:84:22:ce:
74:09:d4:fd:ed:6b:fd:9e:6b:fd:be:5b:d0:78:df:63:45:82:
ab:16:a3:05:65:ff:d4:d4:68:22:62:b5:79:a0:21:a3:40:8d:
8f:bf:32:1b:dc:ba:bc:59:e9:da:f8:f5:7c:b8:77:62:46:2f:
ca:78:76:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-fra.rpki-client.org