Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/I4RqD1GptpHnA6RYmP45qgO1GL4.roa
File: I4RqD1GptpHnA6RYmP45qgO1GL4.roa (raw, json)
Hash identifier: NlWjb4UpxuQh1FePtIu8pnJ76kI7ael/Yr3JxNbLQ9s=
Subject key identifier: 23:84:6A:0F:51:A9:B6:91:E7:03:A4:58:98:FE:39:AA:03:B5:18:BE
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A9190E291915E91DC8AD247E2675B1D
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/I4RqD1GptpHnA6RYmP45qgO1GL4.roa
Signing time: Wed 20 Jul 2022 07:45:23 +0000
ROA not before: Wed 20 Jul 2022 07:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12810
IP address blocks: 80.75.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:91:90:e2:91:91:5e:91:dc:8a:d2:47:e2:67:5b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23846a0f51a9b691e703a45898fe39aa03b518be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:09:64:a4:e8:ac:99:56:10:53:0c:0d:bf:12:
18:64:84:93:e0:3b:6f:d5:8f:f6:a3:94:09:40:06:
e3:af:7f:3a:19:e2:4e:94:a3:8a:f4:87:8f:c3:6d:
5b:65:b7:4d:c2:8d:e3:e3:51:93:e3:a9:93:cc:df:
52:24:c5:68:72:6e:0b:04:5f:87:58:2f:da:4f:81:
7a:53:32:98:fa:47:93:14:04:3d:47:97:4c:68:ec:
e2:09:ad:cd:34:ce:8b:0a:e4:53:fb:10:dc:ad:2f:
e6:6f:17:8b:10:a1:cb:b4:9b:bd:b3:b4:24:a1:42:
f1:9b:55:aa:39:85:de:62:d9:ed:f1:64:b0:08:15:
48:d6:9e:b5:32:9e:10:70:f5:5a:f4:6c:3d:e1:f4:
ac:64:de:00:78:0a:5b:57:24:92:75:a3:45:d2:c0:
b3:ca:ec:ad:86:89:c9:ba:b6:43:41:bb:35:84:2a:
24:76:0e:7f:d0:ec:31:62:9d:4c:e2:a3:c7:96:38:
c0:01:8c:e0:0d:04:a5:c5:75:5e:6d:57:c0:d4:45:
70:87:29:31:74:e3:3d:41:b0:78:cc:e8:8b:f1:fa:
49:60:7b:8a:04:61:cd:8c:a7:57:69:c6:71:55:67:
ec:84:97:88:f1:1c:83:aa:e7:03:50:1f:8f:1c:99:
8a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:84:6A:0F:51:A9:B6:91:E7:03:A4:58:98:FE:39:AA:03:B5:18:BE
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/I4RqD1GptpHnA6RYmP45qgO1GL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.52.0/22
Signature Algorithm: sha256WithRSAEncryption
24:54:96:cf:66:75:b1:d9:45:7b:92:1c:1b:ca:64:f5:36:53:
ab:43:bb:bf:55:63:e1:09:f4:a8:7b:01:a9:1b:c3:7c:4c:0f:
07:9e:5c:9f:fe:b2:78:23:78:fa:25:ef:3b:ce:c5:ba:92:1b:
aa:0d:0e:9c:c7:c2:b8:06:6a:e6:ed:72:df:e8:cd:a4:06:69:
0b:b8:f1:ee:e7:7a:df:51:de:1e:85:c6:6e:7a:1f:78:6c:0d:
a2:23:cf:6c:92:f6:9b:fb:eb:97:3a:fb:5c:a0:8c:2f:27:a8:
a0:f8:c3:5b:e2:7a:37:59:13:76:3b:00:e8:18:93:e5:4f:f6:
1b:ef:b6:71:f5:4d:da:e6:b6:cf:0d:79:bd:a0:2f:35:e8:bd:
75:52:0b:e0:77:a6:58:6b:d1:ea:fe:15:3a:b2:e3:6d:7e:2a:
e6:ac:d8:e2:4f:71:b9:77:9e:9b:fc:a7:eb:d1:c2:25:92:05:
93:88:cf:e0:b1:07:fd:3e:e0:f1:90:67:7d:d7:1b:6b:6f:64:
52:a1:52:aa:90:0c:ca:77:24:18:dc:43:3b:3d:31:8d:39:9d:
b4:56:65:47:e7:df:d6:0a:fb:d9:3b:d6:e3:8a:65:e7:52:6d:
1f:97:06:53:15:a7:b3:3b:f0:ff:1f:69:db:dd:42:8f:67:f4:
36:1f:46:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org