Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/ICuxgW06wZiB4AlyXnoFLEOsJcQ.roa
File: ICuxgW06wZiB4AlyXnoFLEOsJcQ.roa (raw, json)
Hash identifier: 1zTtMnkbzDeVSJIuh2xIbuV0AuxvYaqmporIDTZYo8E=
Subject key identifier: 20:2B:B1:81:6D:3A:C1:98:81:E0:09:72:5E:7A:05:2C:43:AC:25:C4
Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Certificate serial: 18E63752
Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/ICuxgW06wZiB4AlyXnoFLEOsJcQ.roa
Signing time: Fri 10 Jun 2022 14:39:04 +0000
ROA not before: Fri 10 Jun 2022 14:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211531
IP address blocks: 80.245.87.0/24 maxlen: 24
149.3.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417740626 (0x18e63752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Validity
Not Before: Jun 10 14:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=202bb1816d3ac19881e009725e7a052c43ac25c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8d:c3:6c:70:5d:24:fc:de:a9:bb:a1:ee:d4:
34:90:10:fc:0f:c6:70:fe:a3:a7:fc:e6:fe:0e:e6:
1a:88:4a:13:a4:fa:7c:46:15:97:69:33:64:49:18:
d4:3d:57:c8:52:03:22:87:02:f3:21:d8:0d:d4:d5:
08:7a:9b:a6:e0:f4:71:ce:9b:e0:82:40:46:a8:fe:
c3:a1:76:6f:49:1b:ae:77:c7:5c:6c:da:b0:c7:6c:
8c:5e:f7:df:da:7f:c5:7e:f2:4f:57:75:64:10:46:
95:f8:5e:04:d5:08:84:cf:a9:13:04:0c:e1:2c:e9:
c1:54:7b:90:c2:e1:97:d2:5a:03:0c:cb:19:dc:3d:
4e:d9:b8:ff:d0:a3:ca:9b:91:5c:6c:66:fa:dc:ba:
02:04:0d:af:5c:be:04:b4:d7:8b:23:13:78:40:2c:
fb:74:97:12:b4:c7:43:23:e7:c0:81:74:a8:1e:2b:
0d:87:6c:a0:f9:94:ef:2e:ac:da:d7:b3:32:49:18:
52:9f:ee:1d:e1:ad:53:2f:3f:fb:18:7a:d3:6b:eb:
4f:e8:b1:69:19:fa:45:fa:37:81:0d:d3:e4:a7:c4:
b3:6f:87:52:bf:d2:58:10:8a:6b:49:c1:00:21:ce:
dd:00:37:46:ee:35:3d:2f:d9:c4:78:80:fa:4d:41:
af:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2B:B1:81:6D:3A:C1:98:81:E0:09:72:5E:7A:05:2C:43:AC:25:C4
X509v3 Authority Key Identifier:
keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/ICuxgW06wZiB4AlyXnoFLEOsJcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.245.87.0/24
149.3.184.0/24
Signature Algorithm: sha256WithRSAEncryption
20:6b:74:2a:67:7b:69:f9:34:01:ff:2f:77:5b:b1:bf:e3:62:
46:95:8a:48:5d:08:1d:0f:a9:df:bb:fb:fe:1f:a8:3c:ca:53:
4e:32:bd:65:a3:77:ae:e3:1f:2b:51:47:16:e5:91:32:f7:ec:
9b:c5:41:59:78:5b:f8:1c:31:14:1a:f0:40:79:58:92:62:ee:
ee:28:b1:49:3a:d5:56:92:1e:af:c6:a1:04:c4:de:dd:6d:ef:
b7:3e:31:81:7a:70:bd:2c:ed:25:0c:36:6f:a3:f5:b5:92:28:
47:1b:cb:90:81:a3:d5:a7:90:40:d9:05:d8:8d:f3:17:6b:ad:
c3:59:ff:62:2a:12:7d:b6:8e:ee:7c:df:2a:ae:cb:b9:7b:3f:
99:d5:ed:7e:60:f5:be:7e:d7:55:3c:30:0c:d3:d1:5e:1c:36:
9e:65:59:03:22:d2:31:dd:ac:c0:77:c7:c3:2c:6c:03:fc:70:
2f:1d:91:6a:5f:4c:e2:1b:ae:3d:eb:96:1f:8b:94:ea:71:ee:
8f:1d:8d:c8:cc:c9:04:57:6f:ee:43:03:9d:ed:53:ae:45:a8:
db:00:ba:d6:2b:de:9a:96:24:59:c9:a1:9c:77:8b:63:38:46:
69:04:e2:12:92:6c:09:48:d4:1b:83:aa:9a:0b:13:3c:ef:c6:
c7:12:0e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org