Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/UCirWObm9cKYZgzhuZXRGchi1pk.roa
File: UCirWObm9cKYZgzhuZXRGchi1pk.roa (raw, json)
Hash identifier: 691DX2ChN1T1aa2GgMha01A/PppttG5iEJictWHAK+E=
Subject key identifier: 50:28:AB:58:E6:E6:F5:C2:98:66:0C:E1:B9:95:D1:19:C8:62:D6:99
Certificate issuer: /CN=a71e0eee590de2fd8dec4a67e87bc896ffc8b2b5
Certificate serial: 1696B3E5
Authority key identifier: A7:1E:0E:EE:59:0D:E2:FD:8D:EC:4A:67:E8:7B:C8:96:FF:C8:B2:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/px4O7lkN4v2N7Epn6HvIlv_IsrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/UCirWObm9cKYZgzhuZXRGchi1pk.roa
Signing time: Sat 01 Jan 2022 12:07:00 +0000
ROA not before: Sat 01 Jan 2022 12:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201261
IP address blocks: 185.80.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378975205 (0x1696b3e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71e0eee590de2fd8dec4a67e87bc896ffc8b2b5
Validity
Not Before: Jan 1 12:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5028ab58e6e6f5c298660ce1b995d119c862d699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8c:04:25:b7:05:33:2b:a7:b9:31:f6:f4:fd:
45:44:98:6b:ad:61:3d:9f:9f:09:2b:33:45:53:be:
a6:05:47:f7:4d:20:fc:e4:1b:e4:33:3a:8b:fe:96:
02:6b:92:65:ba:72:d5:d9:67:a2:04:13:d3:e4:4c:
38:b3:1d:cb:be:ac:79:de:16:e0:8c:46:7a:ad:9b:
4b:36:9e:8d:71:f6:04:0c:7a:70:58:42:d3:ff:8f:
3b:93:45:a0:41:2a:16:87:1c:ef:f2:b0:85:ce:5f:
6a:3d:2b:9a:84:1a:b5:f6:69:5d:2b:44:b3:cf:23:
b8:ff:13:60:c4:0e:5c:0e:b0:d2:99:d3:7b:5b:4a:
cd:b6:fc:be:a8:41:e9:12:b0:20:62:d2:25:28:0c:
b2:bd:60:5a:ba:9e:e5:ba:f2:2d:10:c8:7d:72:e2:
f9:47:a6:e9:ea:67:04:55:a6:8d:b7:3f:dd:2a:05:
54:e5:cf:db:98:49:02:2b:ec:4f:eb:e9:6b:cb:1a:
fa:72:0c:cd:3e:e2:93:9e:01:24:fc:50:0c:cf:f4:
ba:31:90:84:97:ec:31:60:49:57:35:90:1f:1f:c1:
28:81:30:af:f5:4e:d6:c2:b5:9f:da:a9:81:b3:22:
b2:7f:fd:20:8a:34:6e:5a:88:5f:cf:df:99:83:f4:
ae:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:28:AB:58:E6:E6:F5:C2:98:66:0C:E1:B9:95:D1:19:C8:62:D6:99
X509v3 Authority Key Identifier:
keyid:A7:1E:0E:EE:59:0D:E2:FD:8D:EC:4A:67:E8:7B:C8:96:FF:C8:B2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/px4O7lkN4v2N7Epn6HvIlv_IsrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/UCirWObm9cKYZgzhuZXRGchi1pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/c51fd6-3d08-4205-b747-b80530a5e042/1/px4O7lkN4v2N7Epn6HvIlv_IsrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.132.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:2b:1f:92:1b:52:c9:37:99:45:fe:f7:10:9c:60:cc:0c:a0:
66:11:94:69:a3:90:18:bb:4d:40:ed:4c:91:e3:b5:dd:09:46:
10:59:3b:7d:ad:ee:ec:63:51:54:68:29:24:e6:ff:40:cd:94:
f6:0f:af:cb:ad:42:f3:5c:59:54:7c:fd:29:4c:f9:75:f1:6b:
48:ea:8d:6e:88:c9:39:ee:97:56:94:b4:f0:de:fe:32:74:ec:
63:23:33:d8:a3:2b:ba:b4:fd:dd:d8:de:0c:a7:ca:d2:de:38:
24:ce:99:2e:d4:d3:88:7e:d0:9a:51:c7:99:08:8a:24:5b:da:
16:68:e8:f0:48:49:ab:f7:3b:8b:f5:bd:9e:24:00:cc:4c:33:
1f:41:6f:a8:62:23:57:f5:9b:31:23:20:da:19:3a:06:fd:26:
d9:59:e3:38:46:ef:16:0d:63:ec:ca:e1:b2:b4:4a:ed:93:b7:
70:c7:ef:fc:82:4d:cb:40:88:80:06:e7:4b:cb:f5:be:0f:66:
f9:66:59:0b:26:d4:eb:f1:41:a1:d1:75:36:cf:6a:12:59:13:
90:11:69:83:89:81:87:de:46:26:fe:21:c2:c3:a1:89:3a:85:
e4:a5:b6:1b:f5:bf:10:9d:69:b8:f2:ea:81:4a:4c:27:dd:01:
bd:7d:4c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:24 2024 by rpki-client on console-ams.rpki-client.org