Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/irSxSkqqYSWun3MG-TUZ_9upmlI.roa
File: irSxSkqqYSWun3MG-TUZ_9upmlI.roa (raw, json)
Hash identifier: ESEp84prPP7uy6SQjOAYKSXGv4xxh8EiKRqA6hjGEQ8=
Subject key identifier: 8A:B4:B1:4A:4A:AA:61:25:AE:9F:73:06:F9:35:19:FF:DB:A9:9A:52
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A8CFD3C270FC96219A8C7B93D3A9902
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/irSxSkqqYSWun3MG-TUZ_9upmlI.roa
Signing time: Wed 20 Jul 2022 07:40:23 +0000
ROA not before: Wed 20 Jul 2022 07:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51187
IP address blocks: 80.120.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:8c:fd:3c:27:0f:c9:62:19:a8:c7:b9:3d:3a:99:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ab4b14a4aaa6125ae9f7306f93519ffdba99a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:af:cc:ea:83:73:0d:99:ef:cc:64:f7:be:00:
18:f3:3e:7f:e1:c1:de:a0:76:63:f0:64:5a:ed:98:
7e:8e:93:a6:b8:ed:31:a3:25:88:f1:61:05:49:44:
59:95:ac:59:0a:82:33:d8:fb:40:e2:ef:92:3f:ff:
cf:be:05:f2:d0:4d:e1:b9:d2:43:87:94:38:6d:8f:
22:7a:bb:dd:1c:c3:53:b9:f5:f8:bf:c3:95:d7:13:
02:72:44:0c:a1:7f:18:14:ad:e2:73:ca:fa:b0:d4:
c1:30:71:cb:45:fa:12:4e:4a:6a:f8:3f:63:c1:2a:
82:9e:f8:51:21:33:f1:d7:14:7f:20:3d:dc:df:b6:
48:69:4d:c7:a0:08:25:4d:b3:12:f5:09:3e:62:ee:
ba:36:e9:8e:8f:4b:38:07:78:14:d9:13:38:29:37:
02:06:8a:b7:4a:66:b5:96:1e:55:24:41:34:67:40:
22:aa:34:11:4a:ec:fb:ab:94:30:44:57:8b:8e:68:
c4:b2:11:07:d5:91:72:e3:cf:cb:2a:e5:f5:7d:d8:
91:bd:2d:91:ba:eb:a7:75:6f:3e:24:98:92:45:5e:
3d:46:39:6d:f5:1e:b8:9f:82:e7:0c:e2:3d:b1:5c:
55:c8:f4:6e:44:39:34:cc:9b:af:51:14:5a:79:53:
c2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B4:B1:4A:4A:AA:61:25:AE:9F:73:06:F9:35:19:FF:DB:A9:9A:52
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/irSxSkqqYSWun3MG-TUZ_9upmlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.120.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:34:e4:1f:48:52:9f:e6:8d:a5:56:b5:25:d3:5a:01:b2:4d:
08:7d:f9:27:a5:f6:96:3b:79:0d:80:87:b9:a9:d1:d0:a7:f0:
15:f1:b3:cc:15:f2:73:08:d5:76:24:90:ca:e6:8b:b5:1f:df:
57:e3:ce:a7:0d:e2:a9:51:3e:0d:6f:dd:8c:df:a2:a7:30:15:
8f:10:d3:d6:cb:25:7a:fa:44:db:ca:97:08:bc:b1:38:bc:4c:
df:33:a1:5b:44:49:7c:dd:7d:c1:1e:84:7f:64:d8:8e:99:fa:
50:40:b3:43:8f:b2:f2:c1:34:1c:fb:13:05:f1:c1:d6:3f:21:
e8:ba:ed:58:0f:0e:41:0d:24:46:c9:52:bd:3e:73:fe:10:a7:
32:e2:03:22:66:28:63:e4:7d:76:19:8d:f2:79:62:8e:03:b6:
b1:24:b6:36:e6:b5:be:5d:87:da:2b:ac:4f:87:66:3d:88:40:
03:b4:88:4b:bb:fd:80:d9:50:ba:cc:9d:a5:ac:67:bd:b9:db:
67:df:46:79:2d:57:85:fb:7f:22:30:05:1f:4f:40:43:b1:dc:
6b:66:54:00:37:f3:5c:99:68:45:98:31:ec:67:c4:af:15:3c:
a1:9b:49:a1:dd:49:85:fe:d4:67:b7:73:95:5f:d8:d6:73:58:
42:13:63:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org