Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a11567-259e-4d1b-bfcb-281fade2834b/1/a2YeBTO-Ao6wt4hDymCXY0uE0kU.roa
File: a2YeBTO-Ao6wt4hDymCXY0uE0kU.roa (raw, json)
Hash identifier: z+EQ0BpBNy1KSH4bYdfU5F2dK+Tjle8GQQeyN7bTwaw=
Subject key identifier: 6B:66:1E:05:33:BE:02:8E:B0:B7:88:43:CA:60:97:63:4B:84:D2:45
Certificate issuer: /CN=d03febfd537e320cbbec2b4e22677b9ae66f604e
Certificate serial: FF99
Authority key identifier: D0:3F:EB:FD:53:7E:32:0C:BB:EC:2B:4E:22:67:7B:9A:E6:6F:60:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0D_r_VN-Mgy77CtOImd7muZvYE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a11567-259e-4d1b-bfcb-281fade2834b/1/a2YeBTO-Ao6wt4hDymCXY0uE0kU.roa
Signing time: Tue 25 Jan 2022 18:23:06 +0000
ROA not before: Tue 25 Jan 2022 18:23:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 80.91.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65433 (0xff99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d03febfd537e320cbbec2b4e22677b9ae66f604e
Validity
Not Before: Jan 25 18:23:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b661e0533be028eb0b78843ca6097634b84d245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:1c:36:3e:7b:c6:1d:f6:c7:70:ed:cb:bc:
e5:53:96:83:c8:c9:1a:58:d7:ef:17:2e:3d:fc:2e:
02:b6:b8:44:b9:26:bd:fc:58:ea:ac:62:c6:0a:bf:
bd:b4:f1:20:45:63:33:92:6c:12:f7:30:34:9f:c4:
ad:5f:f6:a7:d1:0a:0a:a3:a7:4c:d7:7f:58:4b:e0:
e3:58:98:e1:47:4a:1a:a8:66:97:72:24:32:9e:c3:
17:43:b2:a3:a1:b5:50:4e:61:88:46:6a:4b:46:d6:
90:2b:22:88:4c:f2:a1:db:5b:5c:fa:21:e0:5f:87:
f8:22:9f:5b:47:4c:75:7f:12:14:18:40:32:12:2f:
17:3b:b7:15:7c:68:12:19:63:63:58:35:5f:af:b6:
f6:a9:7f:3d:ba:95:ee:ad:03:78:92:4a:ac:f4:4d:
57:50:6c:9b:15:bb:78:3c:87:75:2b:b7:02:ee:a5:
53:e6:49:38:f7:5c:90:3d:e2:53:19:16:be:a8:98:
5d:4a:8a:d5:a9:80:27:76:15:e1:8f:6f:74:f4:1d:
02:5e:92:a0:c3:12:db:18:ca:5c:6d:0a:46:92:3b:
47:dc:c4:53:b1:62:d5:e2:06:e1:99:02:b5:f7:66:
7b:0d:4e:23:2f:86:a7:e9:47:56:59:76:c1:1f:55:
15:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:66:1E:05:33:BE:02:8E:B0:B7:88:43:CA:60:97:63:4B:84:D2:45
X509v3 Authority Key Identifier:
keyid:D0:3F:EB:FD:53:7E:32:0C:BB:EC:2B:4E:22:67:7B:9A:E6:6F:60:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0D_r_VN-Mgy77CtOImd7muZvYE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a11567-259e-4d1b-bfcb-281fade2834b/1/a2YeBTO-Ao6wt4hDymCXY0uE0kU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a11567-259e-4d1b-bfcb-281fade2834b/1/0D_r_VN-Mgy77CtOImd7muZvYE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.210.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:4d:9b:82:d4:12:87:20:05:4b:e3:24:a5:07:26:d3:5c:ba:
39:96:89:27:e3:4c:71:f3:58:32:ce:a9:c4:8e:60:7a:e7:c4:
cd:06:5a:37:a1:03:9a:09:b4:c5:d1:e4:1b:24:0c:75:27:18:
5c:7b:be:f6:f9:0c:3f:97:6b:f0:d6:ea:c5:4c:f9:9b:7e:6b:
05:bb:a0:09:6b:27:12:48:c6:7c:80:88:2b:1f:75:d3:3d:4e:
92:4b:f0:e5:a2:38:ea:2d:33:e3:0f:b8:02:97:9d:a1:bd:84:
52:de:19:11:6c:c6:11:b9:f8:ac:0c:2c:7c:ee:ab:e0:46:10:
36:a3:0c:b2:92:e2:3b:0f:a5:74:b7:0e:44:5b:92:02:63:20:
0d:41:55:e7:ca:f2:b1:89:a4:96:8f:24:74:65:e8:5e:17:69:
e3:ac:81:fd:74:86:65:a7:61:b6:d1:18:13:b1:7e:5b:05:9f:
58:03:7c:cf:0c:67:44:08:36:5d:48:a1:d5:aa:4a:4d:3f:9f:
77:5c:79:28:2c:5b:92:55:9c:4f:fa:5d:60:e8:1a:76:e1:a7:
07:5f:35:a9:8b:9b:c6:01:f3:22:97:24:14:c4:59:3c:70:f7:
1c:84:57:13:a5:c0:19:d2:c0:80:30:ad:c0:fa:ff:a0:e0:6b:
8c:30:bc:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:01 2023 by rpki-client on console-fra.rpki-client.org