Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/uLqRVR4OXXSZGni8s7wwGYNc3a8.roa
File: uLqRVR4OXXSZGni8s7wwGYNc3a8.roa (raw, json)
Hash identifier: DlnmsEPPyD9tl5t25U/fy+adpGlVwJsvelrQ/lXu1HE=
Subject key identifier: B8:BA:91:55:1E:0E:5D:74:99:1A:78:BC:B3:BC:30:19:83:5C:DD:AF
Certificate issuer: /CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Certificate serial: 119EDC
Authority key identifier: 13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/uLqRVR4OXXSZGni8s7wwGYNc3a8.roa
Signing time: Mon 20 Jun 2022 09:17:47 +0000
ROA not before: Mon 20 Jun 2022 09:17:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50889
IP address blocks: 185.136.71.0/24 maxlen: 24
80.84.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154780 (0x119edc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a0f7143ffa22113442dc8589ee1352ebe3daa3
Validity
Not Before: Jun 20 09:17:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8ba91551e0e5d74991a78bcb3bc3019835cddaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:78:70:36:f9:ac:8b:4f:d4:0b:27:97:3f:72:
47:ff:10:ef:6c:f9:dc:b4:9c:22:03:49:18:a6:da:
18:6b:4d:cf:f4:2a:58:09:bd:48:36:87:08:76:c4:
66:0b:61:9b:12:85:4e:d9:98:9a:8c:34:a1:a8:ae:
14:ee:4e:e9:aa:54:7b:2c:36:ea:ce:a8:aa:de:f7:
2d:3d:b6:a0:ec:0d:70:a5:f7:ca:e6:9c:73:b6:bf:
ef:7f:ae:99:d1:6c:91:5c:6d:98:93:56:9f:4b:7b:
59:cd:e9:1e:83:65:47:66:a1:46:9c:7e:45:99:f9:
1e:8a:5a:43:45:7a:ad:5d:40:8b:89:be:1d:67:1a:
34:17:36:78:9d:87:a4:c0:ee:9d:f0:b5:9e:05:10:
9f:b3:f9:05:3d:5b:84:54:a6:52:ea:b9:b5:e9:ad:
6a:76:4e:00:55:29:2f:6a:52:ee:57:f0:92:a7:e0:
31:41:3c:b8:46:45:ba:13:b7:50:da:7c:97:7d:88:
e1:e1:3d:d4:d0:8e:b7:4f:fb:0d:80:a8:28:9b:1c:
61:8e:47:e7:0e:54:55:a9:3f:fd:d2:a5:76:dd:72:
ce:95:1e:cd:05:d6:89:48:84:50:90:6a:84:e4:81:
3c:07:03:29:30:30:94:88:e5:0c:9a:a2:e1:8b:cb:
82:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BA:91:55:1E:0E:5D:74:99:1A:78:BC:B3:BC:30:19:83:5C:DD:AF
X509v3 Authority Key Identifier:
keyid:13:A0:F7:14:3F:FA:22:11:34:42:DC:85:89:EE:13:52:EB:E3:DA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6D3FD_6IhE0QtyFie4TUuvj2qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/uLqRVR4OXXSZGni8s7wwGYNc3a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/443f87-4ae0-4198-bcb8-104a33437665/1/E6D3FD_6IhE0QtyFie4TUuvj2qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.167.0/24
185.136.71.0/24
Signature Algorithm: sha256WithRSAEncryption
70:68:38:85:7d:f8:68:54:c6:17:1a:ff:14:f8:69:20:f9:57:
fa:68:84:2e:de:c9:60:59:cd:62:cd:cf:56:bd:f5:bc:06:35:
f8:da:0e:5b:6c:2b:56:a4:c8:5f:db:07:81:bc:fc:e7:19:47:
0d:2c:c0:c9:27:e0:70:58:e5:49:db:5b:8d:87:ed:96:d1:58:
1c:43:a0:2d:de:c5:c9:8b:77:63:0c:df:a0:2f:39:8b:9c:b7:
83:da:ca:53:95:b3:c7:9e:ce:db:86:8f:63:46:5b:ec:1d:3e:
be:1d:76:5c:c5:56:23:50:31:4f:93:03:03:87:49:60:df:23:
ea:99:f8:c2:95:4a:77:66:04:4c:8e:4d:64:ca:c3:b1:1d:62:
05:85:ab:42:14:22:a1:c7:07:cf:01:42:1f:d7:d4:b6:82:d1:
f9:72:db:b5:96:a5:68:92:6c:0f:76:0e:1c:bc:f5:57:d8:23:
a7:9d:62:6a:96:24:64:5b:1a:0c:f8:dc:e5:6b:ba:4e:2d:a8:
b6:7e:32:97:96:3d:69:e8:dd:9c:55:17:af:fd:66:c4:f3:e0:
b0:f5:a0:a7:8c:9a:0b:36:a5:b7:7a:b8:c0:20:00:06:9d:68:
89:85:99:f5:9e:d9:42:35:9f:3c:82:94:40:d1:ce:d6:2f:a0:
c1:50:c2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:54 2023 by rpki-client on console-fra.rpki-client.org