Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/2d7609-2142-4a03-b11e-1148fde7aef7/1/A8YcFahBScbeQ4HwT_U4IfYRCEQ.roa
File: A8YcFahBScbeQ4HwT_U4IfYRCEQ.roa (raw, json)
Hash identifier: jXU2H2RFEpjzb+Ow3iFet64mDN7rDUl4+VtJe2zTFtw=
Subject key identifier: 03:C6:1C:15:A8:41:49:C6:DE:43:81:F0:4F:F5:38:21:F6:11:08:44
Certificate issuer: /CN=a0a6d6b087461fdec6a5b9d52d29832d8f299c87
Certificate serial: 37212D0F
Authority key identifier: A0:A6:D6:B0:87:46:1F:DE:C6:A5:B9:D5:2D:29:83:2D:8F:29:9C:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKbWsIdGH97GpbnVLSmDLY8pnIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/2d7609-2142-4a03-b11e-1148fde7aef7/1/A8YcFahBScbeQ4HwT_U4IfYRCEQ.roa
Signing time: Sat 01 Jan 2022 07:52:26 +0000
ROA not before: Sat 01 Jan 2022 07:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25569
IP address blocks: 80.82.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924921103 (0x37212d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a6d6b087461fdec6a5b9d52d29832d8f299c87
Validity
Not Before: Jan 1 07:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03c61c15a84149c6de4381f04ff53821f6110844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:79:d2:a8:bf:2a:8e:ae:e7:19:ff:2e:c6:82:
d2:75:4d:f2:d3:2f:21:1d:da:82:20:e7:2b:16:6b:
32:18:87:09:36:b9:4c:df:9c:49:5d:35:6f:03:08:
d7:87:ee:1d:a1:c7:3a:95:f0:c7:e9:11:a3:dc:d7:
03:39:c4:ae:a8:4f:18:35:13:47:78:1c:0c:f8:b3:
45:2c:d9:46:9c:b0:e7:63:dd:b4:1a:f6:5e:c8:a8:
52:3e:ad:97:bd:f9:63:d3:59:93:34:c5:70:dc:47:
c9:7f:ef:85:04:3c:30:a0:f5:62:b6:15:2c:f4:95:
ea:8b:71:7e:da:5a:83:f3:2d:3b:e4:a5:97:5e:5e:
d9:7e:b9:25:7b:db:49:c5:da:7e:9f:b4:07:b7:29:
71:44:47:e7:22:d9:41:a5:ff:e6:b1:1c:3e:97:f4:
0f:df:1b:34:fd:f0:7c:ff:5c:79:ca:b5:13:03:29:
61:e9:8e:23:a5:2b:9b:0c:70:ab:ec:62:92:ca:f2:
62:37:88:40:f9:25:9e:68:18:aa:c5:40:de:21:11:
0c:c9:66:92:c4:63:73:4f:56:64:d9:2f:40:45:44:
d2:32:a6:b8:aa:6d:b4:86:19:52:50:52:82:48:f8:
91:37:36:ad:7c:fd:96:1f:c2:90:4b:86:5c:5b:32:
ca:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C6:1C:15:A8:41:49:C6:DE:43:81:F0:4F:F5:38:21:F6:11:08:44
X509v3 Authority Key Identifier:
keyid:A0:A6:D6:B0:87:46:1F:DE:C6:A5:B9:D5:2D:29:83:2D:8F:29:9C:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKbWsIdGH97GpbnVLSmDLY8pnIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/2d7609-2142-4a03-b11e-1148fde7aef7/1/A8YcFahBScbeQ4HwT_U4IfYRCEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/2d7609-2142-4a03-b11e-1148fde7aef7/1/oKbWsIdGH97GpbnVLSmDLY8pnIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.82.0.0/20
Signature Algorithm: sha256WithRSAEncryption
31:66:df:3e:fa:8a:d2:d5:61:4c:1b:de:24:68:33:8e:5f:05:
83:b3:13:8c:8d:c6:b5:45:30:60:8f:05:9a:32:b8:b3:12:6b:
57:aa:be:47:f4:9a:28:81:d0:e3:ae:73:5e:0c:6e:64:f2:d2:
96:eb:d2:42:cb:b9:60:6c:e2:81:ab:8d:a9:61:be:c9:2d:5d:
0b:9b:35:e7:b4:68:c6:a6:d1:8f:87:c4:4e:ea:89:da:72:b9:
7e:8b:18:82:45:63:51:1e:ff:61:1c:c1:8c:6b:ca:1a:0d:83:
07:2d:48:6f:07:31:a1:44:e8:05:9d:91:ad:09:7f:80:7b:12:
d8:36:3e:20:af:d0:a6:7d:6e:e7:48:21:7c:d6:64:4f:8d:20:
d9:67:a0:3d:79:c0:8e:f2:5e:ca:c9:da:1e:ce:d2:62:14:94:
6f:65:12:5b:53:54:dd:a3:6b:11:4a:03:a5:be:3d:00:3b:63:
e8:d7:95:fb:29:f3:ae:8c:52:08:03:aa:98:8b:aa:52:d5:7a:
fe:6b:5f:71:2b:7f:ad:8e:f1:02:bd:12:4e:7d:17:ac:07:3e:
71:3d:77:9f:5d:9b:e6:e9:54:1a:e3:eb:79:2e:c4:bc:5f:b2:
4a:52:d6:13:80:13:b0:3e:b8:a1:15:b1:e4:72:c0:ea:1d:2b:
f6:e0:49:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:53 2024 by rpki-client on console-ams.rpki-client.org