Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1-wKlLgapAshBkWQSZZblAni9qSY.roa
File: 1-wKlLgapAshBkWQSZZblAni9qSY.roa (raw, json)
Hash identifier: XPStbJTTy+uw5Pfm4G2gCAZLEQQ8FBGx6MjLsB9onzY=
Subject key identifier: FB:02:A5:2E:06:A9:02:C8:41:91:64:12:65:96:E5:02:78:BD:A9:26
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8CFBD647FBEB8E6F30E44CFDA67B30
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1-wKlLgapAshBkWQSZZblAni9qSY.roa
Signing time: Wed 20 Jul 2022 07:40:23 +0000
ROA not before: Wed 20 Jul 2022 07:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34905
IP address blocks: 80.120.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8c:fb:d6:47:fb:eb:8e:6f:30:e4:4c:fd:a6:7b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb02a52e06a902c8419164126596e50278bda926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:00:51:95:4c:76:18:f6:d7:79:94:7a:99:f0:
98:89:83:bb:7f:ec:13:b7:d8:aa:37:e1:28:85:25:
27:60:b2:2e:0f:a7:8b:6e:c9:8d:0b:6e:ce:7a:2b:
a3:54:15:d1:9d:14:7a:9c:5a:8b:10:6d:5c:d0:8a:
d0:c1:b4:d0:b6:58:1d:df:93:62:01:15:fe:8c:7d:
67:a2:70:77:c0:a3:52:2c:79:0b:37:fd:77:a2:64:
31:bf:9d:3a:81:ab:01:f5:35:51:96:03:24:cf:76:
48:1d:95:fc:01:00:d8:ea:1a:a9:f7:f3:37:cf:b5:
99:c5:fb:61:2e:16:d7:c9:c2:ad:c5:28:55:41:67:
d4:af:cb:95:a5:ac:73:74:85:74:6a:10:02:cd:f1:
c7:78:66:db:b2:59:97:b4:be:e8:38:4c:fc:7d:a8:
08:91:cd:3b:68:53:93:5d:2d:2f:c0:49:1f:2a:3f:
78:f6:b3:87:20:ba:5c:05:13:70:5c:80:c4:18:96:
d4:ba:95:87:22:c7:69:9d:e3:0b:25:39:32:00:f5:
5d:d7:5d:cb:73:ee:6f:20:45:db:a7:a6:7b:ab:b4:
a1:5f:e4:c2:d0:b0:81:b5:7a:8a:69:3e:50:ca:a2:
19:27:f8:b0:91:79:fe:41:26:c8:60:3e:38:fe:f7:
37:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:02:A5:2E:06:A9:02:C8:41:91:64:12:65:96:E5:02:78:BD:A9:26
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/1-wKlLgapAshBkWQSZZblAni9qSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.120.58.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:23:cb:ab:64:d2:6e:85:dc:d1:63:9f:58:69:7b:ca:05:53:
de:f6:37:2a:37:8f:06:6b:9d:13:30:99:26:ad:b4:6b:98:d0:
fc:e3:c9:fe:df:0b:8c:9c:38:a3:dc:e5:d4:43:53:67:95:d1:
75:1e:cd:f6:a0:e2:df:71:a3:e6:1d:49:27:6d:3e:a2:e9:20:
5e:73:ba:d3:94:49:06:40:d6:7b:eb:c6:21:42:47:28:09:d1:
ac:aa:a9:48:50:30:f9:a2:74:7e:b8:b8:67:96:ae:ba:96:44:
5c:2a:29:db:61:8b:bd:50:e1:c9:20:81:cb:51:79:27:b8:c3:
08:7e:c0:72:4d:d6:26:2b:77:2e:4b:77:c3:af:e4:08:6b:d8:
e7:fb:cf:93:a8:83:0e:c5:30:23:12:d2:fa:f6:55:e2:dd:1d:
ee:30:23:02:3a:ed:a3:b2:b2:d1:79:d2:70:c3:0c:5c:73:bb:
6b:3e:c9:cb:a7:03:fd:09:02:d9:8d:b3:e4:fd:2c:21:8f:4a:
d3:a7:ed:f4:c9:64:19:b5:f6:16:f3:ec:e5:4a:58:6d:57:7c:
8e:fd:ed:62:3f:9d:41:c4:86:ba:ed:ff:06:8e:8e:3e:06:db:
66:bf:e3:bd:60:9c:be:1e:94:31:b4:15:65:f8:c1:99:1c:5d:
de:39:c1:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-ams.rpki-client.org