Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/898754-e446-4b51-99a9-e59bd4f4f740/1/dT5lsBfbuqTULrXDyEdi7U3sEHE.roa
File: dT5lsBfbuqTULrXDyEdi7U3sEHE.roa (raw, json)
Hash identifier: epzwxPtXk+9DcFlO5YxSijO4RBP8NaVyQP+A3AP2KZc=
Subject key identifier: 75:3E:65:B0:17:DB:BA:A4:D4:2E:B5:C3:C8:47:62:ED:4D:EC:10:71
Certificate issuer: /CN=abafb42e2e6fd09057fca21b99084dac3b7af2d0
Certificate serial: 069408D8
Authority key identifier: AB:AF:B4:2E:2E:6F:D0:90:57:FC:A2:1B:99:08:4D:AC:3B:7A:F2:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6-0Li5v0JBX_KIbmQhNrDt68tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/898754-e446-4b51-99a9-e59bd4f4f740/1/dT5lsBfbuqTULrXDyEdi7U3sEHE.roa
Signing time: Sat 01 Jan 2022 05:00:54 +0000
ROA not before: Sat 01 Jan 2022 05:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200295
IP address blocks: 80.64.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110364888 (0x69408d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abafb42e2e6fd09057fca21b99084dac3b7af2d0
Validity
Not Before: Jan 1 05:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=753e65b017dbbaa4d42eb5c3c84762ed4dec1071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1a:5e:f1:26:a7:3d:24:af:66:d0:01:42:a0:
d9:db:e8:6d:ac:4e:dd:da:ea:1d:dd:4d:4b:d0:db:
20:a0:6f:54:e7:5f:d4:21:59:a7:24:2f:59:ff:e6:
78:e5:e1:31:30:26:09:8a:db:95:c4:e7:0b:ab:7d:
2a:f9:d4:b0:79:42:5a:8a:eb:37:e1:55:08:72:93:
7a:db:d0:ea:78:e6:9c:89:97:2f:9a:f7:bd:ba:83:
55:71:df:ef:1a:27:de:93:65:4e:58:4c:8f:94:4f:
5c:33:09:69:ff:89:5b:34:95:67:71:6b:41:7f:a8:
55:66:d2:6a:d0:1c:b2:ca:93:49:fa:7e:06:2e:ac:
58:a2:30:1a:c0:1d:e0:be:a2:d8:df:ad:61:ad:2a:
cf:71:53:24:1e:b0:6d:9a:18:9b:97:7d:f0:10:0f:
77:a6:f2:31:ef:c4:e6:da:81:df:20:0f:ba:64:a8:
d8:e1:c8:01:79:51:dd:57:e0:79:a5:fb:63:e1:0a:
33:eb:2e:9b:eb:ee:18:cc:ab:d3:c4:50:aa:b0:de:
72:96:31:29:64:4c:8d:bb:9f:ef:4c:27:2e:a5:ab:
1e:bb:aa:45:76:f6:ce:c0:1c:d2:38:9e:f6:b0:87:
f4:38:cc:d9:03:8e:54:ce:c4:41:97:fe:d8:a5:07:
12:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3E:65:B0:17:DB:BA:A4:D4:2E:B5:C3:C8:47:62:ED:4D:EC:10:71
X509v3 Authority Key Identifier:
keyid:AB:AF:B4:2E:2E:6F:D0:90:57:FC:A2:1B:99:08:4D:AC:3B:7A:F2:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6-0Li5v0JBX_KIbmQhNrDt68tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/898754-e446-4b51-99a9-e59bd4f4f740/1/dT5lsBfbuqTULrXDyEdi7U3sEHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/898754-e446-4b51-99a9-e59bd4f4f740/1/q6-0Li5v0JBX_KIbmQhNrDt68tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.208.0/22
Signature Algorithm: sha256WithRSAEncryption
88:1c:b7:6c:6d:b3:0b:f7:a2:22:9b:44:79:1c:29:35:fe:c3:
9f:fb:4e:ea:a9:cb:dc:d5:7e:95:36:64:80:bc:9f:e6:a0:19:
bd:e9:e5:d6:69:c8:13:4f:a4:75:62:92:d9:13:c8:d3:c0:65:
a0:57:ce:b5:b5:18:80:87:20:ef:ce:9b:f9:0e:3d:3c:45:ab:
8f:18:67:be:8e:7e:78:37:39:64:01:c4:dd:08:43:f9:9e:fd:
13:35:26:50:b9:fe:da:72:2e:9e:80:20:1c:22:7a:b2:47:70:
3d:31:dd:d5:98:16:eb:ab:48:50:22:a6:e6:67:66:97:b0:f2:
73:31:47:a0:1b:64:82:ed:74:66:55:70:cb:51:0f:4f:98:fa:
ee:51:15:b8:c5:a1:31:a5:5d:41:e7:f7:b8:6f:27:c5:dd:37:
d7:e5:03:26:32:03:66:61:50:d1:90:08:0e:24:d9:56:22:12:
42:a4:cd:2e:6b:53:70:e5:51:c9:58:3d:91:73:61:5d:70:81:
27:59:7b:36:8f:c2:17:32:8b:fc:a6:c7:cd:ec:3b:80:bd:93:
46:05:8c:f7:bc:92:cc:c9:2c:a1:05:a1:2f:38:67:57:20:02:
ad:a2:07:c1:09:df:9d:a6:72:e3:d4:45:ff:25:49:83:0d:a8:
ef:e2:2f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:02 2024 by rpki-client on console-fra.rpki-client.org