Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/RGTCVo722CoidwrKEaKoaTO-WWU.roa
File: RGTCVo722CoidwrKEaKoaTO-WWU.roa (raw, json)
Hash identifier: EImZujv06EmczDinAEJr2QfeS2Qso7G4QNkDBKDb0NQ=
Subject key identifier: 44:64:C2:56:8E:F6:D8:2A:22:77:0A:CA:11:A2:A8:69:33:BE:59:65
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8CFC21466F7647BB763164C6AC615C
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/RGTCVo722CoidwrKEaKoaTO-WWU.roa
Signing time: Wed 20 Jul 2022 07:40:23 +0000
ROA not before: Wed 20 Jul 2022 07:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39285
IP address blocks: 80.121.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8c:fc:21:46:6f:76:47:bb:76:31:64:c6:ac:61:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4464c2568ef6d82a22770aca11a2a86933be5965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:21:b3:28:3e:18:61:52:98:e0:c2:e6:ed:84:
af:eb:02:6c:cb:a1:ac:1a:43:6c:ef:9c:b4:a6:dc:
44:09:c3:01:a9:9d:60:01:95:f2:91:b0:ac:2d:73:
20:b7:b0:9e:f1:fa:a3:4c:2e:de:fc:24:1c:d0:65:
eb:a6:a8:77:d1:a5:8f:22:68:1e:0f:2a:09:b8:11:
2d:a0:8f:3b:c6:96:74:47:a3:c7:2e:08:1b:10:fc:
06:e2:96:39:06:15:8a:df:56:85:6d:7f:e6:6a:a8:
e4:98:b7:94:0e:6d:74:46:82:67:11:9d:11:8c:02:
64:d7:a6:1f:25:41:39:dc:4c:0d:aa:81:9c:a9:b8:
df:0c:8b:42:85:a3:f3:31:65:2f:68:8f:b5:c0:4f:
c9:91:a7:92:9a:c5:2c:61:17:1a:ef:26:9b:b0:68:
d9:27:bb:45:7c:66:f1:2a:5e:04:51:c8:2b:cc:e2:
e1:d2:6f:9a:a7:49:a5:df:8f:76:f0:c0:bf:22:ee:
c6:2e:79:9d:f4:ee:9b:85:ed:d2:8b:4f:66:d3:f0:
00:81:0e:06:75:e7:d6:2d:b7:16:96:92:de:9f:47:
16:5b:04:f8:ec:cd:ff:6f:92:97:34:6b:4a:50:f5:
bb:ee:33:4f:44:59:49:9b:7a:95:83:c6:0f:92:b4:
ff:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:64:C2:56:8E:F6:D8:2A:22:77:0A:CA:11:A2:A8:69:33:BE:59:65
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/RGTCVo722CoidwrKEaKoaTO-WWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.121.205.0/24
Signature Algorithm: sha256WithRSAEncryption
68:54:fb:fb:ba:a7:d2:0e:e8:c7:9e:ba:01:17:d1:fa:bb:7b:
4f:bd:63:5a:84:3d:57:4f:9d:42:8d:fe:e6:18:51:81:cc:aa:
83:54:5c:6e:00:11:c9:13:90:52:89:22:a0:2c:54:a4:43:0b:
58:b6:e2:05:03:f8:70:a5:49:34:85:cf:bf:09:41:d8:d8:ab:
98:0b:64:4d:cd:78:45:ac:ac:e9:55:74:28:02:50:1a:68:22:
bc:90:77:2e:aa:39:36:3b:86:51:fe:6a:d6:eb:ab:17:f1:e5:
9f:3f:80:4c:e0:7f:07:8e:47:1a:8f:07:c4:b6:72:6e:18:70:
67:5b:0c:ee:fe:70:ea:85:28:b0:0b:52:1f:2e:6f:46:7d:5a:
1d:c1:74:7b:2c:14:d8:41:dc:c7:32:75:59:1a:8c:76:18:c4:
4d:7d:9e:e8:28:bb:57:a6:12:d8:bb:73:c3:6b:72:a3:8c:8f:
13:24:b2:cb:bf:97:62:3a:21:cf:4e:52:94:76:13:fb:48:54:
3f:12:8a:82:c1:fa:b3:fe:73:ab:07:8b:01:ba:e1:1b:19:46:
4e:34:0b:21:67:ff:45:55:3f:fe:53:2c:2a:cc:f3:f7:96:0c:
2b:8b:d2:c8:ae:17:7f:f1:e1:f4:ab:40:13:64:92:40:73:2d:
d5:30:59:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org