Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/QuD1sQ5q6hZqffZdt0LZ7lRkxNU.roa
File: QuD1sQ5q6hZqffZdt0LZ7lRkxNU.roa (raw, json)
Hash identifier: jCD9voQyHWr/zmRHeJ3ydqJIfTSaThQsOOq99LVem4o=
Subject key identifier: 42:E0:F5:B1:0E:6A:EA:16:6A:7D:F6:5D:B7:42:D9:EE:54:64:C4:D5
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 01FBA226
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/QuD1sQ5q6hZqffZdt0LZ7lRkxNU.roa
Signing time: Sat 09 Apr 2022 11:55:39 +0000
ROA not before: Sat 09 Apr 2022 11:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
2a11:1680:6::/48 maxlen: 48
2a11:1680:1::/48 maxlen: 48
2a11:1680:4::/48 maxlen: 48
2a11:1680:2::/48 maxlen: 48
2a11:1680:5::/48 maxlen: 48
2a11:1680::/48 maxlen: 48
2a11:1680:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33268262 (0x1fba226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Apr 9 11:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42e0f5b10e6aea166a7df65db742d9ee5464c4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a9:2a:cc:51:66:67:50:f9:70:20:58:0f:87:
30:9e:ec:fd:34:e0:43:be:bb:67:73:ba:bf:9c:6a:
ff:56:87:9d:4a:ee:f8:de:a6:83:64:d8:d9:2f:c1:
b5:35:2e:19:8c:f7:05:16:c2:57:42:7a:57:8a:29:
ee:73:12:21:ce:67:0b:72:03:8a:51:f8:8f:ef:42:
79:48:ab:6e:cb:d7:16:f2:df:4b:68:b8:f7:4c:a6:
ac:e6:72:7d:3f:07:39:6e:14:d7:60:2b:08:7a:34:
b2:38:19:a0:c0:3e:84:88:32:13:2c:47:7d:9a:fe:
89:aa:f7:78:75:31:86:5d:95:aa:9d:4a:ef:f9:0e:
e9:33:7f:0f:5a:e2:d5:77:b2:cf:23:00:0d:0f:1f:
a1:44:d0:4f:93:0f:51:d6:f3:e3:61:ee:f6:11:b8:
d4:f7:7d:d6:6b:d4:54:ff:dc:8a:3c:6a:c7:b7:3e:
85:57:b0:d9:71:1a:2a:a2:2b:57:c6:85:7f:e8:aa:
f4:8b:1b:8a:86:8e:1f:a8:cf:1f:cc:e9:9b:3d:1f:
29:7e:7a:fe:c3:5a:0d:26:c5:23:13:53:6a:a2:5f:
eb:bb:07:58:f2:26:0b:eb:36:db:e5:26:43:a9:a9:
03:ab:29:c0:a4:77:34:f9:4e:fe:46:16:68:ec:2e:
29:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E0:F5:B1:0E:6A:EA:16:6A:7D:F6:5D:B7:42:D9:EE:54:64:C4:D5
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/QuD1sQ5q6hZqffZdt0LZ7lRkxNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
IPv6:
2a11:1680::-2a11:1680:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
54:67:87:a6:c0:a3:07:6b:07:3e:45:ba:8e:f0:24:3f:c4:57:
78:f1:31:f8:bb:6f:fb:20:49:d6:10:6e:21:2b:1d:26:4e:d9:
3e:bd:42:1b:ce:19:c1:66:40:90:7c:c7:bb:01:1b:f3:7f:97:
1a:80:3a:56:2b:b4:48:8c:9f:8d:e6:ae:39:35:44:e0:96:61:
2c:43:74:32:87:53:91:c5:0e:af:55:30:0b:c5:67:45:f2:93:
5d:c9:c2:e0:ab:ac:34:4e:19:12:1b:9a:36:b1:f1:3e:97:0e:
bf:30:bf:3e:96:36:d7:da:f1:99:a5:24:69:f7:ac:d3:b4:9c:
f6:87:bc:75:0e:2c:f9:5e:be:85:0f:d9:e7:80:7f:40:d4:b6:
e8:41:c7:62:70:49:8f:e6:89:48:fa:4f:7d:f0:51:ba:e4:42:
05:ea:2b:ca:13:cd:a7:bd:79:dd:09:35:7d:04:2c:5e:36:2c:
c5:27:bd:b8:64:29:f8:7a:29:dd:5d:e4:66:74:50:3e:45:71:
1c:b3:b9:31:93:1f:1c:57:f3:61:04:60:62:7c:b7:d3:e5:1a:
00:50:c4:32:67:5f:96:88:05:c0:1b:f4:da:08:0f:04:7a:2c:
89:9b:af:71:a3:31:71:02:85:50:aa:32:f4:93:75:db:55:ff:
68:3c:d7:43
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEAfuiJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDkyYmMwNDVhYjljYzlmMDE3ZThiZjdmZmU0MjNkYTgwNGE2MTRmMB4XDTIyMDQw
OTExNTUzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDJlMGY1YjEwZTZh
ZWExNjZhN2RmNjVkYjc0MmQ5ZWU1NDY0YzRkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOSpKsxRZmdQ+XAgWA+HMJ7s/TTgQ767Z3O6v5xq/1aHnUru
+N6mg2TY2S/BtTUuGYz3BRbCV0J6V4op7nMSIc5nC3IDilH4j+9CeUirbsvXFvLf
S2i490ymrOZyfT8HOW4U12ArCHo0sjgZoMA+hIgyEyxHfZr+iar3eHUxhl2Vqp1K
7/kO6TN/D1ri1XeyzyMADQ8foUTQT5MPUdbz42Hu9hG41Pd91mvUVP/cijxqx7c+
hVew2XEaKqIrV8aFf+iq9IsbioaOH6jPH8zpmz0fKX56/sNaDSbFIxNTaqJf67sH
WPImC+s22+UmQ6mpA6spwKR3NPlO/kYWaOwuKRkCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBRC4PWxDmrqFmp99l23QtnuVGTE1TAfBgNVHSMEGDAWgBQ9krwEWrnMnwF+
i/f/5CPagEphTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BaSzhCRnE1eko4QmZvdjNfLVFqMm9CS1lVOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvMzYyNmRjLTIyMWYtNGI5YS1iYjY4LTNlMzgxMmZmYTE0Ny8x
L1F1RDFzUTVxNmhacWZmWmR0MExaN2xSa3hOVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
MzYyNmRjLTIyMWYtNGI5YS1iYjY4LTNlMzgxMmZmYTE0Ny8xL1BaSzhCRnE1eko4
QmZvdjNfLVFqMm9CS1lVOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwDAQCAAEwBgMEAFBJ9zAYBAIAAjASMBADBQcqERaA
AwcAKhEWgAAGMA0GCSqGSIb3DQEBCwUAA4IBAQBUZ4emwKMHawc+RbqO8CQ/xFd4
8TH4u2/7IEnWEG4hKx0mTtk+vUIbzhnBZkCQfMe7ARvzf5cagDpWK7RIjJ+N5q45
NUTglmEsQ3Qyh1ORxQ6vVTALxWdF8pNdycLgq6w0ThkSG5o2sfE+lw6/ML8+ljbX
2vGZpSRp96zTtJz2h7x1Diz5Xr6FD9nngH9A1LboQcdicEmP5olI+k998FG65EIF
6ivKE82nvXndCTV9BCxeNizFJ724ZCn4eindXeRmdFA+RXEcs7kxkx8cV/NhBGBi
fLfT5RoAUMQyZ1+WiAXAG/TaCA8EeiyJm69xozFxAoVQqjL0k3XbVf9oPNdD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:03 2024 by rpki-client on console-ams.rpki-client.org