Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rAAMnC6yt9_cgRcJ_O1rN6GnrDk.roa
File: rAAMnC6yt9_cgRcJ_O1rN6GnrDk.roa (raw, json)
Hash identifier: A3uqVp/a9UFu9L8mpUfiNF+hb7xM4UI8TH2hwINSJao=
Subject key identifier: AC:00:0C:9C:2E:B2:B7:DF:DC:81:17:09:FC:ED:6B:37:A1:A7:AC:39
Certificate issuer: /CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Certificate serial: 0184A9160D8AD1F6FB5E17FB3D5FFBBB69D8
Authority key identifier: E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rAAMnC6yt9_cgRcJ_O1rN6GnrDk.roa
Signing time: Thu 24 Nov 2022 10:01:45 +0000
ROA not before: Thu 24 Nov 2022 10:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 80.65.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a9:16:0d:8a:d1:f6:fb:5e:17:fb:3d:5f:fb:bb:69:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Validity
Not Before: Nov 24 10:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac000c9c2eb2b7dfdc811709fced6b37a1a7ac39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:6d:a1:94:e4:2d:ff:0a:29:89:eb:6d:d0:
b6:75:ff:ff:4a:de:d6:7a:e2:70:72:c8:2b:8b:01:
81:ad:c0:70:af:9c:19:e8:80:cc:4d:9c:be:97:6f:
9a:38:e1:ad:15:cf:ff:08:46:6c:18:88:f3:fd:8a:
f2:2e:88:5d:c2:1d:be:19:9e:c2:d1:28:89:01:87:
ea:15:56:8b:26:ba:57:4f:65:2b:8f:01:dc:c0:39:
bf:18:97:bb:3c:1e:8b:33:ea:a4:77:bf:c3:31:b6:
15:0f:ad:74:3b:c5:3a:09:75:6a:52:58:39:b2:e1:
98:b0:ec:0b:1a:1f:9a:64:c6:c7:c9:3b:ed:db:7f:
71:92:a9:dd:1e:d9:ba:09:73:57:7a:05:a0:c0:60:
cf:91:41:5d:62:ff:13:86:93:37:2a:b2:b9:21:6c:
86:bb:09:a0:fb:ac:b5:55:6a:1f:3c:90:1b:f9:28:
f1:c5:ea:7f:5d:f4:d2:42:6b:f9:72:08:92:d3:75:
3a:6e:2d:95:e0:2c:50:7f:17:e0:6d:d7:ec:0f:9d:
93:d8:53:e2:b2:fc:7a:b0:65:77:52:56:24:76:ef:
76:08:4d:8a:76:a9:60:d5:8d:9a:ea:8a:b3:75:a9:
e9:16:66:52:b3:9f:01:23:77:d0:4c:84:a2:5e:29:
2c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:00:0C:9C:2E:B2:B7:DF:DC:81:17:09:FC:ED:6B:37:A1:A7:AC:39
X509v3 Authority Key Identifier:
keyid:E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rAAMnC6yt9_cgRcJ_O1rN6GnrDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.65.216.0/22
Signature Algorithm: sha256WithRSAEncryption
68:ed:6c:18:f5:b6:ac:97:2b:a1:b4:c4:70:ea:a8:0b:c1:6f:
60:58:5f:99:8d:06:f2:e3:49:ff:32:60:31:7e:89:d5:be:7b:
1e:f7:f8:6b:f7:ba:1b:e5:ea:d5:6d:b4:ca:28:48:f9:6f:9c:
48:d5:b5:45:e2:5c:0e:5a:e1:34:d7:2c:98:bc:cb:b7:4d:e8:
91:9e:28:f7:49:cf:3d:8f:9d:18:ac:01:02:be:1d:e0:0c:fc:
ea:ce:de:0f:6e:43:af:6e:66:16:67:38:7d:7b:4a:1d:3d:db:
bf:ad:e7:f6:94:81:c8:12:e4:8f:f8:cd:d1:63:ed:08:0e:ce:
ff:0e:09:95:95:24:cc:b4:c8:c3:d1:ab:8e:5d:3d:f2:41:a9:
51:30:4c:2d:51:14:db:76:c3:51:3c:51:a1:8b:31:d3:a9:84:
77:4d:6e:2f:fa:ce:f6:6f:9e:3a:6b:16:08:1b:9a:25:a0:74:
ee:86:de:4d:ce:22:a1:2e:6a:8a:14:d6:4b:8f:4d:92:33:f7:
76:e1:37:f4:18:7b:4b:f8:df:c4:7f:92:fc:83:5c:f6:bd:f9:
45:13:51:45:d0:62:ac:fe:88:96:30:4f:db:1c:40:d0:72:4f:
f6:bb:be:f1:c6:f6:73:36:57:b2:f1:4b:97:3f:b4:46:70:ba:
cf:76:de:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org