Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/OT-1L186QEtKhOQ8ybzv68PohhY.roa
File: OT-1L186QEtKhOQ8ybzv68PohhY.roa (raw, json)
Hash identifier: vc+mynLII7HB8oyUkkaOAxT5bvw/Qzj5WCPutbsaeR4=
Subject key identifier: 39:3F:B5:2F:5F:3A:40:4B:4A:84:E4:3C:C9:BC:EF:EB:C3:E8:86:16
Certificate issuer: /CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Certificate serial: 018558300B606B4E855668060D564DB30A9B
Authority key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/OT-1L186QEtKhOQ8ybzv68PohhY.roa
Signing time: Wed 28 Dec 2022 10:03:41 +0000
ROA not before: Wed 28 Dec 2022 10:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21057
IP address blocks: 80.84.128.0/22 maxlen: 22
80.84.139.0/24 maxlen: 24
80.84.138.0/23 maxlen: 23
80.84.137.0/24 maxlen: 24
80.84.141.0/24 maxlen: 24
80.84.140.0/23 maxlen: 23
80.84.140.0/24 maxlen: 24
80.84.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:30:0b:60:6b:4e:85:56:68:06:0d:56:4d:b3:0a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Validity
Not Before: Dec 28 10:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=393fb52f5f3a404b4a84e43cc9bcefebc3e88616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7c:a1:b8:b8:9a:73:6c:69:e2:86:9e:d2:69:
56:14:f1:02:76:d1:13:3c:bb:ad:4f:ef:9e:db:cf:
23:7d:d9:79:46:f2:e7:f8:f7:b9:60:9c:26:8e:c1:
ad:66:ff:ec:38:9d:9f:ae:ba:fe:95:ac:8e:ae:2d:
54:70:5e:0d:48:23:fe:82:61:d7:37:39:83:22:33:
f7:63:f0:3b:94:44:af:50:9d:64:fe:4d:82:f5:4e:
e7:d3:73:05:a7:df:25:64:3e:1c:9a:6f:c9:80:41:
6a:8b:29:94:b2:f5:56:f7:e4:e8:92:59:ed:b1:cd:
cd:f6:cf:3d:51:e7:3b:71:43:2f:5e:21:b4:64:0f:
5b:f6:9f:7e:7e:8d:cc:80:e7:9d:96:fc:86:ec:32:
ae:d1:ee:02:68:04:1e:be:10:df:84:83:2a:13:82:
cf:e7:17:a4:e0:61:ca:21:c0:fa:34:2d:6b:27:d5:
c8:55:ad:73:70:1f:f5:c8:f7:a1:c7:d3:7a:72:8f:
4f:ed:72:1b:79:35:4a:86:b2:9a:12:17:d8:75:f0:
30:ec:89:20:80:c1:8d:1f:a4:ee:c5:24:c6:30:97:
7a:d3:67:6d:4c:2c:f9:f3:e2:31:84:54:9a:da:9c:
da:83:f7:65:a9:49:0c:18:45:7f:d0:7f:06:29:01:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3F:B5:2F:5F:3A:40:4B:4A:84:E4:3C:C9:BC:EF:EB:C3:E8:86:16
X509v3 Authority Key Identifier:
keyid:EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/OT-1L186QEtKhOQ8ybzv68PohhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.128.0/22
80.84.137.0-80.84.141.255
80.84.148.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a6:2f:24:cb:e3:8e:20:4c:08:68:a9:4e:38:57:5a:cc:b4:
8c:3b:ac:15:d8:67:ed:62:a0:8a:80:6a:40:30:25:15:53:0b:
20:c8:89:7f:33:07:b8:9b:64:88:ce:19:ff:22:a1:71:6c:76:
45:33:c3:9f:ac:94:d3:1b:e6:6f:ff:bf:01:62:70:02:c0:fe:
51:a7:7f:55:c9:c0:76:a0:9c:9b:a8:20:ac:c2:55:86:b1:41:
d6:4c:0e:b1:18:6a:46:ff:49:ce:a7:b0:4b:0c:dc:4b:ff:f7:
66:0e:af:fa:62:1e:6f:95:1b:d1:53:b4:f1:1e:6e:55:34:1e:
95:cb:db:3a:06:21:ec:97:75:46:f7:b9:b2:8a:ea:2e:04:16:
73:8c:a3:b3:6f:97:26:a4:cd:77:49:4e:f9:9e:0e:41:c2:16:
f7:d6:15:07:b5:5c:4b:6a:25:77:1f:c3:9a:49:0f:8d:6b:6d:
39:87:d2:dd:0c:9f:f0:7d:9c:25:c4:09:12:ba:d1:d6:4c:ca:
ad:22:59:38:0e:30:3a:be:79:33:2c:b7:99:78:e1:4f:d9:86:
94:52:17:43:ee:13:29:ae:46:78:ee:5a:36:01:90:e4:cd:2e:
f9:f5:d5:24:f9:a8:36:33:11:45:7c:44:25:1c:60:93:e2:b4:
7b:bf:06:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:43 2024 by rpki-client on console-fra.rpki-client.org