Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/Od7zMd_WY7wBjnHvnXucG_PoH7M.roa
File: Od7zMd_WY7wBjnHvnXucG_PoH7M.roa (raw, json)
Hash identifier: sUo3vZCbmgasQQEnO1Xj0eMQJjIb6DcYcvm7fZjGdIw=
Subject key identifier: 39:DE:F3:31:DF:D6:63:BC:01:8E:71:EF:9D:7B:9C:1B:F3:E8:1F:B3
Certificate issuer: /CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Certificate serial: 2FE5B031
Authority key identifier: EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/Od7zMd_WY7wBjnHvnXucG_PoH7M.roa
Signing time: Sat 01 Jan 2022 10:55:15 +0000
ROA not before: Sat 01 Jan 2022 10:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34708
IP address blocks: 80.79.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 803582001 (0x2fe5b031)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Validity
Not Before: Jan 1 10:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39def331dfd663bc018e71ef9d7b9c1bf3e81fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:df:5a:fb:c0:b0:07:08:c6:04:59:84:3f:94:
73:14:bc:e3:9c:fc:be:5b:12:6b:eb:10:16:30:cf:
8b:75:1a:11:59:b6:2f:bc:ec:5d:f5:a9:39:bf:5f:
eb:42:91:42:b4:68:d4:37:de:c1:65:46:c1:98:ea:
38:36:f8:fd:63:4b:da:c1:9f:2c:97:d6:eb:b3:d7:
ce:e4:35:26:19:af:2c:8d:2d:8c:0f:4c:e5:27:1b:
94:00:15:0e:e2:01:d4:51:df:66:bd:43:73:9a:28:
52:bd:9d:bb:d2:e0:64:cf:d9:ee:63:57:b9:5e:27:
61:73:1c:26:4e:0a:d0:55:a4:fd:30:2e:71:38:14:
01:2e:54:14:3b:b7:3c:0b:94:c2:c8:57:36:5d:d8:
cb:0d:ab:93:83:14:71:3e:82:fc:5d:b3:c5:5c:b6:
96:c7:b4:a7:35:bd:e9:65:87:df:18:b5:8f:c0:89:
20:ee:c5:e6:02:16:ff:a6:d6:a2:53:68:66:02:ee:
57:87:3c:15:ce:80:41:13:53:89:a0:8a:20:91:a0:
2b:bc:ef:26:0f:9a:1a:a6:48:1e:1b:60:4b:2f:c5:
5d:c9:8d:76:1c:8c:de:ba:0b:37:ac:83:8c:5e:39:
11:4b:14:e2:5e:65:d8:7a:18:c6:1d:b2:ab:12:42:
20:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DE:F3:31:DF:D6:63:BC:01:8E:71:EF:9D:7B:9C:1B:F3:E8:1F:B3
X509v3 Authority Key Identifier:
keyid:EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/Od7zMd_WY7wBjnHvnXucG_PoH7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.144.0/24
Signature Algorithm: sha256WithRSAEncryption
11:bf:82:a4:77:d3:6b:9c:71:a1:3a:8d:ae:01:90:a2:4b:16:
94:ae:5b:d3:91:3f:21:96:27:16:08:3f:16:e5:d9:e9:aa:45:
42:46:f6:32:70:67:96:94:20:8a:55:21:b5:0e:fe:77:c0:f7:
c4:1a:3d:57:08:5e:e1:bb:af:bf:f1:e4:c8:0f:de:fc:04:65:
a7:35:01:3d:cc:97:9b:7b:71:09:39:b1:f7:d1:4f:7a:a9:d1:
1c:ce:16:38:db:b1:11:97:a9:f1:9b:f3:5f:56:c6:e3:88:90:
b2:c1:37:3e:0e:48:e6:05:e3:c6:b1:74:fc:e3:bc:80:94:88:
63:39:b8:c9:0c:2c:00:66:67:c8:09:84:14:37:20:0a:6a:00:
09:60:eb:0e:8c:9d:80:19:76:9d:60:1f:6b:52:13:38:79:8a:
89:cd:76:52:74:9a:91:43:6a:84:1b:1a:04:2a:31:05:5b:1d:
3b:16:c5:c9:6b:8b:88:d2:0f:48:54:20:11:fc:ea:24:95:71:
af:25:37:2e:0d:16:8d:f0:36:a5:44:95:98:b9:fa:2e:1d:ae:
5a:58:74:b6:c3:73:fe:9a:77:5f:a5:d9:c6:51:0c:3d:d9:32:
e1:a8:93:d0:86:a9:67:da:48:15:c7:15:27:2d:04:f4:0e:9f:
56:4d:32:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:37 2025 by rpki-client