Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/r2ecvjWOptW0FERG5spcXQVinio.roa
File: r2ecvjWOptW0FERG5spcXQVinio.roa (raw, json)
Hash identifier: 9Bd8nSBN0u4IQb8YGUnyhnH6ZwV2vayxK3byRe9Yw0U=
Subject key identifier: AF:67:9C:BE:35:8E:A6:D5:B4:14:44:46:E6:CA:5C:5D:05:62:9E:2A
Certificate issuer: /CN=e24a32278ce7b4cb205dfccad786014a3b0ae323
Certificate serial: 0E455C
Authority key identifier: E2:4A:32:27:8C:E7:B4:CB:20:5D:FC:CA:D7:86:01:4A:3B:0A:E3:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koyJ4zntMsgXfzK14YBSjsK4yM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/r2ecvjWOptW0FERG5spcXQVinio.roa
Signing time: Tue 01 Mar 2022 08:08:39 +0000
ROA not before: Tue 01 Mar 2022 08:08:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8535
IP address blocks: 80.252.0.0/20 maxlen: 20
193.42.228.0/22 maxlen: 22
194.149.228.0/22 maxlen: 22
2a02:bd8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935260 (0xe455c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a32278ce7b4cb205dfccad786014a3b0ae323
Validity
Not Before: Mar 1 08:08:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af679cbe358ea6d5b4144446e6ca5c5d05629e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:e2:c6:e5:ed:19:c7:8c:5b:0d:25:47:43:
a6:ac:54:34:8c:aa:a2:ce:62:89:14:a7:f0:7c:f8:
49:ca:b4:8a:4f:73:53:34:41:dc:87:ba:39:66:d4:
2c:32:97:a1:3e:36:cb:a4:64:5b:c0:21:35:37:f0:
c8:63:fb:fc:8d:4b:0c:47:9a:07:be:37:66:b3:8e:
2a:6e:c7:a6:a8:3f:c7:a5:04:1c:8a:64:2c:6a:86:
81:c8:33:2a:53:a5:35:99:85:7c:6d:22:e9:cb:15:
3a:00:61:10:86:4e:46:f0:58:77:0d:9b:05:cc:c0:
28:50:89:c9:df:85:f0:84:0d:73:63:67:27:11:8f:
33:36:be:89:05:7f:8e:f3:a4:68:04:d1:53:71:4d:
76:b4:0c:98:62:65:13:1c:6f:77:51:21:21:7f:37:
b7:bb:ab:c1:ee:b3:e8:17:06:f5:32:6d:b0:49:4c:
3e:d3:e9:44:da:d8:0f:80:4e:3f:61:59:56:fa:46:
ba:79:7c:51:8b:9b:75:75:9e:73:db:a9:f7:3c:04:
b0:8f:a1:81:ea:7a:81:86:6f:b6:c3:76:75:48:e1:
1d:b5:78:af:fa:a3:44:a6:35:fb:ce:a2:1d:39:db:
7b:f8:e2:9a:5b:57:34:96:fb:ec:17:f3:8d:4c:42:
07:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:67:9C:BE:35:8E:A6:D5:B4:14:44:46:E6:CA:5C:5D:05:62:9E:2A
X509v3 Authority Key Identifier:
keyid:E2:4A:32:27:8C:E7:B4:CB:20:5D:FC:CA:D7:86:01:4A:3B:0A:E3:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koyJ4zntMsgXfzK14YBSjsK4yM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/r2ecvjWOptW0FERG5spcXQVinio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/36486b-b7b7-43a2-bb27-77ab05e0cf62/1/4koyJ4zntMsgXfzK14YBSjsK4yM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.252.0.0/20
193.42.228.0/22
194.149.228.0/22
IPv6:
2a02:bd8::/32
Signature Algorithm: sha256WithRSAEncryption
7e:7c:eb:6b:a6:dc:a7:b1:e2:93:23:55:ef:ac:71:64:78:c5:
c5:70:e6:65:70:6b:3b:bc:c6:2d:23:ef:7b:92:0f:e6:04:97:
79:39:7c:af:7a:2a:d0:02:c9:4c:c9:1f:32:40:51:7e:ff:07:
97:93:a0:e1:97:22:4f:5a:b7:e8:c8:fb:59:52:81:f4:37:1c:
e0:e7:fb:93:cc:8f:8e:42:50:39:30:7a:4e:c2:79:ed:68:df:
39:c2:4b:85:d5:82:98:0b:b7:fc:23:ad:c8:cc:52:4b:e2:9a:
d6:df:12:3a:32:7d:6d:8a:2e:a7:3e:43:72:71:00:ad:2d:83:
47:f5:ff:5b:b0:41:39:c0:ba:ca:1c:32:1f:94:40:14:c2:a4:
8d:8c:7d:1f:8d:1e:be:7f:cb:29:0a:22:89:e8:17:ba:0a:e4:
0b:db:21:4a:af:f5:fa:5b:26:c0:30:b1:7b:cd:9d:79:e7:a8:
38:52:3a:8d:52:67:97:57:d4:2d:d1:bd:c6:8f:0a:40:42:25:
47:4d:cc:24:13:61:34:88:50:d8:e3:ab:92:67:20:70:63:88:
c3:3c:8d:89:ae:8f:8a:d4:2d:0a:aa:87:7f:7a:58:8d:eb:ee:
90:e7:75:9a:94:0a:c6:6c:9c:14:fd:40:64:94:16:3a:6b:f4:
4a:4c:d3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-ams.rpki-client.org