Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/u8Zza67wlYdTLpqoLi9xd86tC6o.roa
File: u8Zza67wlYdTLpqoLi9xd86tC6o.roa (raw, json)
Hash identifier: J+ShaDDUaCxM7vNZMsRIUMgxdRyEU0mYgk9N+QxeIzY=
Subject key identifier: BB:C6:73:6B:AE:F0:95:87:53:2E:9A:A8:2E:2F:71:77:CE:AD:0B:AA
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 09E35359
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/u8Zza67wlYdTLpqoLi9xd86tC6o.roa
Signing time: Sat 01 Jan 2022 06:54:35 +0000
ROA not before: Sat 01 Jan 2022 06:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204641
IP address blocks: 88.80.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165892953 (0x9e35359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Jan 1 06:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbc6736baef09587532e9aa82e2f7177cead0baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:87:ba:f9:4d:3f:c1:fe:33:cb:1d:48:f2:85:
ac:61:b8:9b:e1:7a:e7:67:b7:79:0c:6a:04:86:70:
e8:41:6a:5d:ee:b7:75:3f:2a:35:dc:59:8c:eb:84:
3c:65:b8:bb:c9:6e:9d:b0:5b:61:5a:fc:6c:ae:40:
25:1d:83:51:19:be:e0:34:7e:91:34:43:b7:99:52:
40:c5:54:f7:a4:bb:31:4f:64:51:b0:a8:a0:94:8e:
95:1c:d0:43:60:07:26:97:31:18:1e:43:84:bb:70:
2f:95:03:b6:64:ec:1a:24:21:89:99:87:64:64:ca:
a2:c3:74:14:53:84:37:19:4d:13:1c:2c:29:ef:aa:
3b:eb:14:0c:be:b8:4b:83:2b:d6:da:e0:c1:8e:35:
6e:9e:47:3e:33:4a:4b:d5:95:37:70:e8:39:6c:a4:
a1:56:13:49:36:2a:08:76:2f:6a:87:b0:ec:15:0b:
56:c2:ab:cf:72:49:d4:21:02:50:79:eb:9d:d7:bd:
0e:9e:30:d6:ac:bb:9d:f0:2d:d4:b1:2c:c8:91:95:
d8:83:2b:82:fd:d1:48:c6:39:40:71:7c:aa:c1:24:
2d:6a:02:c2:bd:e4:77:7c:a5:4e:b3:4f:34:2c:5c:
5e:8a:fe:26:38:29:6f:b8:e8:58:45:12:95:36:79:
6d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C6:73:6B:AE:F0:95:87:53:2E:9A:A8:2E:2F:71:77:CE:AD:0B:AA
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/u8Zza67wlYdTLpqoLi9xd86tC6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.144.0/24
Signature Algorithm: sha256WithRSAEncryption
96:90:06:60:78:ca:88:4e:73:14:d9:87:26:7a:96:48:70:88:
1e:5d:0e:a1:1f:32:67:4f:5f:d6:18:f5:45:09:65:36:34:aa:
9b:03:ba:9a:a9:24:63:2f:ec:8b:5d:77:24:14:40:84:fb:bf:
35:d3:b3:b3:d1:c4:8d:f4:68:a8:68:ee:8b:0d:aa:7e:27:5a:
52:45:9a:c8:56:28:b8:b4:3b:3c:1d:59:7c:cc:34:15:6f:91:
97:8a:c9:cd:16:a1:c6:a5:1f:4d:ab:56:15:0b:ee:4a:a7:20:
a1:e4:b9:17:cb:11:9d:b2:4d:99:a7:92:54:4c:56:f6:bb:42:
da:53:2e:7f:47:d9:c1:06:ed:53:0b:c1:cd:9d:46:f8:8f:f7:
72:82:68:94:86:e3:33:55:54:eb:b9:79:09:14:3b:7c:e2:f2:
49:d7:16:1a:d0:cb:db:27:c0:15:06:1e:67:82:01:e4:8e:51:
60:f0:cf:30:50:7e:81:77:d6:3a:0a:b4:ab:0c:89:93:8b:a1:
a9:46:16:0b:7e:8b:24:02:24:a4:bd:2e:a9:6b:66:e2:c8:7b:
c2:7e:a0:af:f8:9d:eb:42:bf:b2:cc:5a:8a:5b:85:4f:6b:c1:
1d:6b:79:59:d3:40:85:41:87:44:e3:27:10:6a:7f:98:04:81:
29:69:0c:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:51:14 2025 by rpki-client