Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/689ab5-30d2-46a3-8c54-16b4196fa294/1/zl0dPNOwhPuij7M3RYtH-8-vLjg.roa
File: zl0dPNOwhPuij7M3RYtH-8-vLjg.roa (raw, json)
Hash identifier: Hsg1hfI+4Ao7hdIxWvKL5POx1fYcJ9xF3vaploXidq0=
Subject key identifier: CE:5D:1D:3C:D3:B0:84:FB:A2:8F:B3:37:45:8B:47:FB:CF:AF:2E:38
Certificate issuer: /CN=4e69b402b67d75936f45dc8bc54b86814e0636ba
Certificate serial: 02CAD869
Authority key identifier: 4E:69:B4:02:B6:7D:75:93:6F:45:DC:8B:C5:4B:86:81:4E:06:36:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tmm0ArZ9dZNvRdyLxUuGgU4GNro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/689ab5-30d2-46a3-8c54-16b4196fa294/1/zl0dPNOwhPuij7M3RYtH-8-vLjg.roa
Signing time: Sat 01 Jan 2022 10:53:45 +0000
ROA not before: Sat 01 Jan 2022 10:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 80.89.160.0/20 maxlen: 20
80.94.208.0/20 maxlen: 20
88.83.128.0/19 maxlen: 19
2a00:6e80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46848105 (0x2cad869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e69b402b67d75936f45dc8bc54b86814e0636ba
Validity
Not Before: Jan 1 10:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce5d1d3cd3b084fba28fb337458b47fbcfaf2e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:62:85:15:90:1c:8e:a0:25:aa:5a:33:2e:d4:
c0:c4:7b:a9:56:25:e9:70:d1:ec:b6:19:85:ba:d6:
e2:d7:98:bf:66:a8:fc:e8:25:f0:4b:38:f2:84:31:
68:d2:22:f9:67:45:3e:4e:84:62:a0:0a:ba:1f:47:
ff:df:6d:59:75:e5:8a:7f:8a:d0:87:c9:f0:71:e6:
24:f6:bb:df:42:d5:63:1a:ba:aa:49:44:2c:c2:f7:
36:3b:03:30:a9:ea:9e:52:f6:ad:a7:a9:5a:84:75:
d4:70:48:c0:17:08:11:6e:82:b3:6b:98:0e:b8:b3:
18:7a:d6:60:20:37:ef:d1:29:5d:92:98:dc:43:d4:
fa:11:a8:1f:65:5c:9a:34:78:47:81:b5:ca:2f:42:
47:4c:fc:a5:6c:a6:b1:b4:41:fc:40:86:c9:b2:01:
0f:a1:2d:91:9c:a6:ec:e6:df:f8:0b:75:b0:5d:87:
22:59:6e:98:e9:14:31:ac:53:cf:aa:10:c2:4f:d4:
43:0b:99:19:9d:0c:f0:a3:08:2d:ed:8c:e6:66:60:
d3:94:76:65:a5:a4:6b:44:4a:20:7f:7a:d4:46:5e:
a5:aa:bd:fa:33:33:cc:1e:1c:cf:86:b4:a4:69:63:
8e:73:3b:14:1f:62:a5:67:53:15:96:f6:5d:cd:51:
0e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5D:1D:3C:D3:B0:84:FB:A2:8F:B3:37:45:8B:47:FB:CF:AF:2E:38
X509v3 Authority Key Identifier:
keyid:4E:69:B4:02:B6:7D:75:93:6F:45:DC:8B:C5:4B:86:81:4E:06:36:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tmm0ArZ9dZNvRdyLxUuGgU4GNro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/689ab5-30d2-46a3-8c54-16b4196fa294/1/zl0dPNOwhPuij7M3RYtH-8-vLjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/689ab5-30d2-46a3-8c54-16b4196fa294/1/Tmm0ArZ9dZNvRdyLxUuGgU4GNro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.160.0/20
80.94.208.0/20
88.83.128.0/19
IPv6:
2a00:6e80::/32
Signature Algorithm: sha256WithRSAEncryption
80:81:1a:93:83:bb:a3:f4:1c:5a:53:81:12:e3:e7:eb:f8:03:
e6:af:5d:39:e8:cd:8c:5e:de:57:05:cf:7e:cd:15:20:09:f2:
27:ef:42:c0:0b:cc:6e:1b:f0:3a:26:73:a2:13:2d:49:1c:75:
49:50:6a:82:f4:b7:4c:42:18:d2:ea:ae:8b:3e:0a:23:9f:77:
63:7b:0f:60:fc:c3:b3:7a:9b:55:80:ed:f2:af:eb:92:5a:49:
1c:c9:3a:87:2e:a3:74:a4:15:27:31:18:1d:a6:a8:c1:37:b7:
31:00:77:74:86:87:7f:ee:06:12:45:95:d8:af:24:89:0a:3b:
88:c5:d6:83:a8:5e:a8:d0:15:14:01:34:c7:60:3c:63:b1:3c:
d4:e1:a8:b4:2e:c7:35:40:55:8a:7f:9e:59:17:32:0e:08:d0:
65:f2:6e:6d:f1:f1:d7:10:5c:cb:3d:4d:29:8d:c8:b2:48:04:
4e:cc:8e:7a:3f:65:64:d4:b6:ab:b0:c5:4a:a8:54:c5:36:01:
91:d0:eb:ba:9b:78:ec:12:1d:fa:14:a2:95:ca:60:c5:66:f1:
7c:3a:b9:bf:f7:72:21:91:2b:d3:69:ef:0a:bb:95:96:9c:2f:
56:a4:5a:db:f3:d2:dd:3f:01:aa:1a:6b:cd:46:47:e6:52:6b:
86:ff:97:2b
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgIEAsrYaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZTY5YjQwMmI2N2Q3NTkzNmY0NWRjOGJjNTRiODY4MTRlMDYzNmJhMB4XDTIyMDEw
MTEwNTM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2U1ZDFkM2NkM2Iw
ODRmYmEyOGZiMzM3NDU4YjQ3ZmJjZmFmMmUzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpihRWQHI6gJapaMy7UwMR7qVYl6XDR7LYZhbrW4teYv2ao
/Ogl8Es48oQxaNIi+WdFPk6EYqAKuh9H/99tWXXlin+K0IfJ8HHmJPa730LVYxq6
qklELML3NjsDMKnqnlL2raepWoR11HBIwBcIEW6Cs2uYDrizGHrWYCA379EpXZKY
3EPU+hGoH2VcmjR4R4G1yi9CR0z8pWymsbRB/ECGybIBD6EtkZym7Obf+At1sF2H
IllumOkUMaxTz6oQwk/UQwuZGZ0M8KMILe2M5mZg05R2ZaWka0RKIH961EZepaq9
+jMzzB4cz4a0pGljjnM7FB9ipWdTFZb2Xc1RDjECAwEAAaOCAiQwggIgMB0GA1Ud
DgQWBBTOXR0807CE+6KPszdFi0f7z68uODAfBgNVHSMEGDAWgBROabQCtn11k29F
3IvFS4aBTgY2ujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RtbTBBclo5ZFpOdlJkeUx4VXVHZ1U0R05yby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNjg5YWI1LTMwZDItNDZhMy04YzU0LTE2YjQxOTZmYTI5NC8x
L3psMGRQTk93aFB1aWo3TTNSWXRILTgtdkxqZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
Njg5YWI1LTMwZDItNDZhMy04YzU0LTE2YjQxOTZmYTI5NC8xL1RtbTBBclo5ZFpO
dlJkeUx4VXVHZ1U0R05yby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA6
BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEBFBZoAMEBFBe0AMEBVhTgDANBAIA
AjAHAwUAKgBugDANBgkqhkiG9w0BAQsFAAOCAQEAgIEak4O7o/QcWlOBEuPn6/gD
5q9dOejNjF7eVwXPfs0VIAnyJ+9CwAvMbhvwOiZzohMtSRx1SVBqgvS3TEIY0uqu
iz4KI593Y3sPYPzDs3qbVYDt8q/rklpJHMk6hy6jdKQVJzEYHaaowTe3MQB3dIaH
f+4GEkWV2K8kiQo7iMXWg6heqNAVFAE0x2A8Y7E81OGotC7HNUBVin+eWRcyDgjQ
ZfJubfHx1xBcyz1NKY3IskgETsyOej9lZNS2q7DFSqhUxTYBkdDrupt47BId+hSi
lcpgxWbxfDq5v/dyIZEr02nvCruVlpwvVqRa2/PS3T8BqhprzUZH5lJrhv+XKw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:47 2024 by rpki-client on console-ams.rpki-client.org