Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/afdf95-2834-4dcc-b41d-3f9f264ceb20/1/cYC6tgrYsuMW-LHnK8H_ocIcaIc.roa
File: cYC6tgrYsuMW-LHnK8H_ocIcaIc.roa (raw, json)
Hash identifier: Yye5jafrRwRR6JUVnB09QrgBNZKCk+snRaKTxbFOxFw=
Subject key identifier: 71:80:BA:B6:0A:D8:B2:E3:16:F8:B1:E7:2B:C1:FF:A1:C2:1C:68:87
Certificate issuer: /CN=e9b1a6c061455c08e9147b281fc7424cbc545f41
Certificate serial: 046E40FD
Authority key identifier: E9:B1:A6:C0:61:45:5C:08:E9:14:7B:28:1F:C7:42:4C:BC:54:5F:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bGmwGFFXAjpFHsoH8dCTLxUX0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/afdf95-2834-4dcc-b41d-3f9f264ceb20/1/cYC6tgrYsuMW-LHnK8H_ocIcaIc.roa
Signing time: Sat 01 Jan 2022 13:55:17 +0000
ROA not before: Sat 01 Jan 2022 13:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202803
IP address blocks: 80.64.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74334461 (0x46e40fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1a6c061455c08e9147b281fc7424cbc545f41
Validity
Not Before: Jan 1 13:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7180bab60ad8b2e316f8b1e72bc1ffa1c21c6887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:16:8c:96:f2:0a:d3:a9:78:de:f1:10:23:4a:
54:66:ce:07:39:33:68:f6:02:fb:9e:08:09:10:ca:
1a:c7:db:83:b3:b9:0d:44:09:ce:ec:28:54:8e:7a:
cb:ae:94:e7:0c:5f:d9:8c:25:cd:1c:8f:95:22:dc:
d8:01:f4:82:e3:06:97:be:44:c4:0c:af:d5:e3:91:
34:01:de:aa:ae:5f:ef:98:99:6a:5b:b3:6b:5b:7c:
14:86:75:26:02:f5:f2:ee:c5:d8:e7:4f:5e:0e:cc:
7d:62:0c:04:04:4a:87:b4:4a:a7:f6:8f:f1:c6:7a:
9a:8a:e7:f9:04:e5:66:aa:7a:61:f8:12:37:dd:b8:
d8:70:2d:1f:78:17:56:04:8f:f8:db:ee:e6:ef:b4:
ef:f6:74:51:a5:e1:d2:cc:ca:fa:4c:52:fc:af:f2:
9f:0f:0a:e6:ee:aa:8b:cb:f3:e4:1c:db:d5:af:6c:
fa:0e:7e:0c:3e:9d:7b:32:08:9d:f0:02:6f:92:98:
c7:fd:7e:78:52:0d:4d:5f:34:86:d2:4f:2e:f6:64:
0b:4d:c8:9d:c4:8d:5b:19:9b:7c:2e:8f:d4:eb:eb:
78:98:6f:19:6c:20:14:cc:3c:95:30:94:51:90:1d:
eb:2d:1d:94:2a:7f:52:73:6e:1d:5c:4e:78:8f:47:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:80:BA:B6:0A:D8:B2:E3:16:F8:B1:E7:2B:C1:FF:A1:C2:1C:68:87
X509v3 Authority Key Identifier:
keyid:E9:B1:A6:C0:61:45:5C:08:E9:14:7B:28:1F:C7:42:4C:BC:54:5F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bGmwGFFXAjpFHsoH8dCTLxUX0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/afdf95-2834-4dcc-b41d-3f9f264ceb20/1/cYC6tgrYsuMW-LHnK8H_ocIcaIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/afdf95-2834-4dcc-b41d-3f9f264ceb20/1/6bGmwGFFXAjpFHsoH8dCTLxUX0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.212.0/22
Signature Algorithm: sha256WithRSAEncryption
59:16:c3:a2:a0:12:74:06:14:bb:e5:75:7c:a2:e0:ae:a0:ae:
58:14:ff:4a:38:8f:77:10:35:78:fc:dc:af:d1:66:19:97:09:
18:00:0a:03:aa:4d:e0:37:11:60:8c:62:dd:66:40:70:f2:8c:
23:0b:60:d5:56:a7:1d:0b:b1:db:61:bc:a6:b3:2c:dd:88:13:
d4:99:7c:aa:6e:b6:89:12:55:f9:9f:5a:77:30:44:a2:be:51:
e2:bd:7e:e4:65:0d:c6:50:7d:a7:e4:be:ea:b0:49:bb:22:4e:
d1:d5:ec:06:d7:e3:69:76:1f:f8:04:07:7f:8f:de:aa:14:34:
25:2e:f2:b5:27:e7:ff:3c:33:e7:6f:d8:2c:a4:8a:e6:01:7e:
b6:e7:c7:19:0f:5d:09:f5:d5:e8:c9:66:99:10:1b:54:1b:f6:
11:2b:5b:7a:66:f8:03:00:62:35:f0:c9:e4:d5:8d:e5:25:8b:
a6:f5:a1:4f:7a:2a:fc:0e:46:8a:d5:73:4c:14:b4:45:24:f5:
bf:91:74:62:a7:d0:38:9e:86:34:d2:9a:0f:77:79:dc:a4:2f:
ec:45:25:8b:db:60:f2:2d:a4:be:c4:65:70:43:4b:62:f2:5c:
ad:ce:fe:59:e0:63:0d:e2:e2:dc:0d:d4:bc:59:f6:d1:9d:6c:
dd:f0:46:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-ams.rpki-client.org