Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/Ma2b0iQ_sNPM0GZvMRpgcUonMCA.roa
File: Ma2b0iQ_sNPM0GZvMRpgcUonMCA.roa (raw, json)
Hash identifier: DU82mKFiN9NbyM3fsV8vGwoWy7gblgRNl+4khMeyVrs=
Subject key identifier: 31:AD:9B:D2:24:3F:B0:D3:CC:D0:66:6F:31:1A:60:71:4A:27:30:20
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0B362122
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/Ma2b0iQ_sNPM0GZvMRpgcUonMCA.roa
Signing time: Sat 01 Jan 2022 13:02:26 +0000
ROA not before: Sat 01 Jan 2022 13:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 80.88.76.0/22 maxlen: 24
185.76.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188096802 (0xb362122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Jan 1 13:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ad9bd2243fb0d3ccd0666f311a60714a273020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:76:2d:94:af:1e:40:ac:44:37:24:33:f7:
b0:ee:29:5e:4e:70:cd:5b:bc:5d:61:01:cc:15:4f:
1d:38:d2:82:1f:79:01:9e:07:6a:d0:5a:20:9c:1a:
84:98:ce:f7:d8:df:ad:aa:b3:89:59:55:b7:46:22:
47:7d:7a:8c:a3:29:7a:d5:b5:d2:e0:2a:74:6a:a9:
5b:50:cf:2c:b3:0a:b7:d9:ad:90:a3:9e:61:4a:5f:
07:36:ac:e9:af:da:3d:0a:ce:83:4a:59:5e:fc:eb:
b5:c2:77:7b:c3:a5:81:9d:67:c0:1f:23:df:c6:f6:
24:d8:05:4d:77:26:17:ed:02:00:9b:78:08:0b:40:
d3:c4:27:1c:5e:8f:d8:28:1b:b6:ca:8a:45:10:8e:
92:b2:64:ae:c8:b3:f7:fa:88:bd:6b:c0:be:29:a1:
13:c5:b8:d7:72:d7:fa:c4:b2:41:00:46:60:70:26:
86:ac:98:f7:21:f2:e7:f8:2f:b5:d0:2e:5b:2e:cd:
d2:88:2a:c2:55:a1:a2:77:7a:00:88:54:4e:f3:c4:
3e:94:5c:0d:59:fd:92:29:a1:a5:5f:49:b3:15:f6:
b6:94:c9:1f:e0:a1:a9:bb:47:d0:44:7b:f5:0f:d8:
d9:05:86:2f:23:38:e0:24:2c:3b:7e:c7:88:d2:02:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AD:9B:D2:24:3F:B0:D3:CC:D0:66:6F:31:1A:60:71:4A:27:30:20
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/Ma2b0iQ_sNPM0GZvMRpgcUonMCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.88.76.0/22
185.76.40.0/22
Signature Algorithm: sha256WithRSAEncryption
80:20:ab:52:c7:f9:f7:b7:11:cd:1c:ba:90:99:75:e4:71:68:
49:82:87:eb:fc:93:3e:86:aa:9f:dd:b4:9c:f0:2d:d4:46:9d:
12:9a:ae:de:95:8e:9f:cf:4c:e7:51:43:71:4f:d9:15:0f:76:
8e:e9:f7:c9:da:7e:a6:92:02:86:73:3e:cf:79:24:e1:85:27:
96:59:e3:76:b4:a0:9f:b0:d1:f8:bd:ed:96:b6:50:71:fd:87:
53:f6:0d:cf:dc:c4:0a:7b:40:c0:65:12:d1:e6:12:9a:45:89:
8b:d1:04:86:de:c3:3e:ce:b6:4f:7b:c1:85:1f:96:dc:8a:20:
26:2c:ea:07:90:bf:09:18:7b:1b:9c:c8:7e:6d:15:74:92:c5:
bd:71:dd:2d:ec:72:1e:60:c1:be:fa:0f:48:30:04:d2:b7:a1:
9a:35:f2:b1:f7:b5:3b:b4:d7:1f:ed:f9:f5:85:23:5d:d8:91:
06:4c:51:9d:50:e5:d3:9d:f1:6f:b7:42:22:52:20:6e:ce:3b:
51:79:32:a0:3b:7c:94:81:61:62:d2:d9:b7:2b:b3:53:8e:99:
a6:d0:86:6c:63:ec:c6:12:98:4b:32:b4:7a:1d:57:ed:fa:8d:
fe:9f:33:74:ef:fd:4c:cd:6b:ea:ed:0e:f5:c6:90:28:3b:3e:
92:92:8e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:34 2023 by rpki-client on console-fra.rpki-client.org