Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/oOeB4A8czeQ3LfRVSAdo9j3Ehqk.roa
File: oOeB4A8czeQ3LfRVSAdo9j3Ehqk.roa (raw, json)
Hash identifier: IN7TD3/itY9ihYjbgWBdD+pRrjC7hQKiOFVORFkJ9gA=
Subject key identifier: A0:E7:81:E0:0F:1C:CD:E4:37:2D:F4:55:48:07:68:F6:3D:C4:86:A9
Certificate issuer: /CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Certificate serial: 0410411D
Authority key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/oOeB4A8czeQ3LfRVSAdo9j3Ehqk.roa
Signing time: Sat 01 Jan 2022 03:54:41 +0000
ROA not before: Sat 01 Jan 2022 03:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21057
IP address blocks: 80.84.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68174109 (0x410411d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Validity
Not Before: Jan 1 03:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0e781e00f1ccde4372df455480768f63dc486a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d7:ad:ca:e8:9f:a4:b1:70:eb:0e:48:1c:38:
e1:b6:e1:e4:9b:44:92:56:a6:9e:49:2e:7b:22:70:
15:96:10:02:75:c6:3c:4c:33:48:cc:8b:78:6b:67:
14:60:d4:64:0b:ba:e6:be:20:3f:fd:dc:0b:c9:98:
3f:b7:38:e6:2a:38:45:37:37:12:09:22:f7:dd:a7:
e4:98:61:03:a1:ee:ca:1a:38:af:ee:5b:d2:ce:14:
38:be:44:7e:d0:e2:5a:4c:7b:50:ce:f6:2b:76:85:
25:17:1d:db:64:7b:37:0a:d6:bd:53:4a:58:97:03:
8d:7c:93:5d:49:00:45:e5:bd:13:75:4a:6d:50:70:
dd:cc:86:eb:49:a4:80:fb:ff:07:0a:e3:cb:cb:73:
f7:20:9b:f5:0a:f0:23:cf:55:41:8b:ee:72:09:9e:
0f:cb:c9:72:e1:98:09:64:a3:be:91:b2:62:ef:3e:
78:b9:0a:a3:a4:3b:32:57:8c:b1:32:42:14:3c:e7:
8a:ab:d3:31:0e:43:a5:bb:b5:1d:42:74:d2:0c:2c:
fe:6d:60:23:42:c6:bc:bd:0d:ae:5e:83:73:d8:ab:
1a:e8:98:9c:42:33:a9:5c:79:5e:37:db:87:ba:37:
f2:94:08:aa:1a:40:83:4e:2f:53:9a:ea:bd:38:dc:
a4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E7:81:E0:0F:1C:CD:E4:37:2D:F4:55:48:07:68:F6:3D:C4:86:A9
X509v3 Authority Key Identifier:
keyid:EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/oOeB4A8czeQ3LfRVSAdo9j3Ehqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.148.0/24
Signature Algorithm: sha256WithRSAEncryption
95:00:00:22:51:0f:4d:12:9f:5d:2d:46:80:31:20:46:ec:6e:
d6:55:03:00:3e:ed:51:84:ae:dc:91:a0:c6:c2:ad:72:8f:89:
01:70:0c:f5:95:03:31:cd:8c:61:a5:98:86:72:95:01:8d:95:
6e:67:5a:36:9d:67:a2:94:bf:cb:9e:8b:2a:8c:81:6a:9d:d3:
44:98:fd:6f:c1:1e:98:5b:4a:08:fd:74:87:6c:5c:ec:16:e4:
86:58:d1:62:38:91:a0:39:38:2c:10:65:ee:41:cc:15:d3:00:
b4:a3:a6:4e:ba:84:83:80:37:18:d8:c4:3d:aa:06:27:45:68:
2e:e4:7c:e0:8d:81:d4:60:b5:fa:44:a6:47:8f:28:41:d4:84:
52:69:af:f5:5c:aa:42:23:4f:8c:88:91:dc:ce:fe:96:b5:d4:
b7:e3:9f:7e:c8:1f:0b:3c:64:7f:1c:6f:b7:d8:05:23:a9:a9:
2a:11:a6:b8:07:a2:9b:65:72:0b:11:22:46:9a:df:06:62:2d:
91:fc:80:26:8f:4a:cf:21:12:3c:8b:6e:f0:2d:2b:b2:47:8f:
bf:f9:76:a5:e3:0d:4f:49:d4:b6:3d:50:35:e5:8f:e7:d5:04:
6d:62:b7:38:49:32:30:02:f2:56:25:dd:03:6e:8c:ec:17:be:
70:c9:d3:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:30 2023 by rpki-client on console-ams.rpki-client.org