Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XRFiSuNpRf5RYqcBX4BCLrfAvS8.roa
File: XRFiSuNpRf5RYqcBX4BCLrfAvS8.roa (raw, json)
Hash identifier: q9xQ4/znVWQIUvcsHJ/AMcMnmm1g0z/a8NvfKOoB0Fs=
Subject key identifier: 5D:11:62:4A:E3:69:45:FE:51:62:A7:01:5F:80:42:2E:B7:C0:BD:2F
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8CFC7BD94298FD4E632D8643F4F951
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XRFiSuNpRf5RYqcBX4BCLrfAvS8.roa
Signing time: Wed 20 Jul 2022 07:40:23 +0000
ROA not before: Wed 20 Jul 2022 07:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49135
IP address blocks: 80.123.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8c:fc:7b:d9:42:98:fd:4e:63:2d:86:43:f4:f9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d11624ae36945fe5162a7015f80422eb7c0bd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:55:57:59:3e:34:16:2f:88:91:b3:74:6f:
8b:99:2e:d6:fe:b1:e4:38:09:fb:99:b2:eb:83:3b:
f0:a4:52:ca:b7:c3:9d:33:79:02:23:d2:73:bc:de:
ec:cd:0e:d7:69:a1:34:8c:10:24:f5:98:dc:3f:95:
64:dd:18:f3:f6:3a:8c:0b:86:36:63:8d:80:3a:72:
40:93:59:67:d8:f0:20:da:87:6e:48:96:7e:b8:39:
87:62:ff:a8:fb:6a:00:77:58:4d:14:03:85:a4:86:
e6:54:5f:3a:ef:cd:c1:a5:8e:25:69:45:97:31:3c:
ec:11:f1:41:b4:1e:3c:77:20:e2:7c:45:ee:0e:8d:
fc:65:e5:1a:ad:74:71:ac:0e:43:ee:06:b7:cd:ff:
15:db:1c:c6:84:bd:25:b0:01:c6:f8:63:ce:c5:4c:
e7:77:7c:cc:ee:b0:28:96:22:31:de:b9:05:4c:a7:
01:1c:35:ea:ec:b7:ff:f4:1f:91:73:d4:9f:22:08:
a0:98:97:dc:91:3c:c9:8b:23:5e:79:88:87:90:15:
83:5a:69:57:06:b8:0b:af:bc:1c:38:f1:c1:ef:6d:
a5:19:7a:03:4e:34:f9:88:23:9d:d1:48:69:91:8e:
82:e5:63:5d:e8:1d:44:b1:98:da:ad:10:b9:91:53:
7d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:11:62:4A:E3:69:45:FE:51:62:A7:01:5F:80:42:2E:B7:C0:BD:2F
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XRFiSuNpRf5RYqcBX4BCLrfAvS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.123.153.0/24
Signature Algorithm: sha256WithRSAEncryption
20:c4:72:c8:28:5a:5f:06:29:00:66:b6:89:14:78:93:9b:8e:
b7:be:02:e8:a1:80:93:9e:6c:26:52:32:de:92:25:97:74:fc:
a0:95:86:73:48:b4:a4:d2:54:10:e5:65:af:93:a2:bc:55:2c:
e0:5b:56:88:ca:6a:aa:bc:7e:4d:cc:c9:73:d7:50:d9:94:6b:
f9:3e:d6:5d:c9:92:8d:28:86:63:d0:43:5f:41:0e:62:53:65:
71:e2:b8:54:d3:67:e0:01:76:55:9f:c1:1c:e0:9d:71:95:6b:
bf:8c:74:c8:3d:11:b5:da:e1:44:ef:6e:84:d0:4f:13:c8:af:
62:b0:88:81:51:03:7c:57:b3:1e:16:ff:24:51:55:49:4a:98:
4b:b8:fd:be:9e:4f:9f:ac:ba:04:11:6a:45:b1:20:65:57:79:
59:f5:15:39:6f:76:ad:2d:8e:30:30:7a:85:b4:fe:bd:9a:8d:
8a:75:35:32:4b:73:dd:45:ff:27:94:85:83:6c:0a:6d:73:02:
32:f2:ec:79:77:56:60:aa:c3:48:7f:e0:da:37:1d:2d:da:26:
6f:2b:01:f4:82:b3:56:84:79:4e:c0:5b:2c:8a:94:42:20:c0:
10:13:77:64:c9:a6:ad:06:0f:c0:35:e3:90:df:09:5f:38:1c:
f6:19:6a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:16 2024 by rpki-client on console-ams.rpki-client.org