Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/4a293b-4c41-428c-9287-bd98b3e90e43/1/jaK0JriI3nvZeyu-VMoZMf3UctQ.roa
File: jaK0JriI3nvZeyu-VMoZMf3UctQ.roa (raw, json)
Hash identifier: cl6AEY52+xM51Nio2KtsQhz0wMMw6+Lg1kl7FVV9Vq4=
Subject key identifier: 8D:A2:B4:26:B8:88:DE:7B:D9:7B:2B:BE:54:CA:19:31:FD:D4:72:D4
Certificate issuer: /CN=1bdbc41144448065313ef0b82e1ccf7ae6ea5720
Certificate serial: 0A841995
Authority key identifier: 1B:DB:C4:11:44:44:80:65:31:3E:F0:B8:2E:1C:CF:7A:E6:EA:57:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9vEEUREgGUxPvC4LhzPeubqVyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/4a293b-4c41-428c-9287-bd98b3e90e43/1/jaK0JriI3nvZeyu-VMoZMf3UctQ.roa
Signing time: Sat 01 Jan 2022 10:58:38 +0000
ROA not before: Sat 01 Jan 2022 10:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 80.66.192.0/22 maxlen: 22
185.181.128.0/22 maxlen: 22
185.152.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176429461 (0xa841995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bdbc41144448065313ef0b82e1ccf7ae6ea5720
Validity
Not Before: Jan 1 10:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8da2b426b888de7bd97b2bbe54ca1931fdd472d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:26:82:55:bf:d5:0b:9d:62:9b:af:6c:4d:6c:
3a:12:db:fd:01:ca:f6:59:fb:cf:4b:fe:de:13:36:
e4:df:64:db:0f:35:7f:6f:76:49:8a:75:fc:77:3f:
53:92:1d:c7:7d:4b:85:41:35:92:dd:54:11:6d:d0:
96:ea:fb:b3:c7:82:ce:17:9e:07:c7:70:95:69:b6:
62:e0:41:3f:ea:82:10:9b:8c:1e:36:71:c4:cd:64:
47:96:b3:35:23:61:ee:6e:70:62:ba:4d:52:79:ac:
64:66:c2:1a:a1:19:37:1a:2c:24:35:41:e0:05:4f:
60:83:a3:91:47:91:f2:8b:c3:7e:c7:1b:93:bb:56:
09:39:20:b2:e7:57:a7:8a:3b:12:4d:08:4b:e0:5d:
7a:36:16:8f:fb:f6:d5:5b:30:c1:e8:ad:35:77:de:
f7:01:3e:7f:35:4f:ad:40:38:96:a0:ce:fa:06:d1:
45:cc:b9:a3:d9:23:61:1c:8c:50:57:1b:be:7f:2a:
e6:40:75:15:04:57:13:10:9f:2e:00:49:6a:96:55:
91:f1:76:90:63:87:fa:18:13:fe:06:36:10:e6:28:
34:2c:02:37:08:84:32:d5:e6:a0:6d:66:dc:b9:04:
60:92:6f:45:3c:36:96:f4:0b:4c:cd:c8:1d:2d:f1:
d2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A2:B4:26:B8:88:DE:7B:D9:7B:2B:BE:54:CA:19:31:FD:D4:72:D4
X509v3 Authority Key Identifier:
keyid:1B:DB:C4:11:44:44:80:65:31:3E:F0:B8:2E:1C:CF:7A:E6:EA:57:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9vEEUREgGUxPvC4LhzPeubqVyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4a293b-4c41-428c-9287-bd98b3e90e43/1/jaK0JriI3nvZeyu-VMoZMf3UctQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/4a293b-4c41-428c-9287-bd98b3e90e43/1/G9vEEUREgGUxPvC4LhzPeubqVyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.192.0/22
185.152.144.0/22
185.181.128.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:6f:b9:19:3b:41:bc:1b:5e:26:ee:ca:83:c6:4a:21:54:81:
e4:c2:67:71:5d:54:82:71:81:fb:24:05:4b:5e:0f:61:e6:89:
28:82:93:b4:9a:b9:a7:c9:49:c4:b2:ec:00:ee:d2:c2:2b:18:
33:79:d7:3a:6f:c8:1a:00:ce:cd:83:06:95:ec:f8:bf:49:5b:
a2:5e:0d:c9:4e:3d:40:f8:8b:e2:08:cc:66:fd:68:84:c5:4f:
3e:0e:28:9a:d0:60:9b:2e:78:27:39:9d:0f:a5:27:2c:60:ce:
45:f6:2b:d1:63:d8:24:82:ae:28:a6:01:3f:5f:0a:9d:7d:ac:
40:65:9c:b4:e5:86:e8:96:6b:c6:e4:92:c7:59:74:be:c0:3d:
b1:fc:7d:00:14:17:27:a7:18:89:93:74:b5:86:de:0c:c3:32:
5d:99:61:1f:5d:8e:39:28:5b:7b:25:e1:b1:60:17:be:3c:51:
74:46:88:6b:1d:a4:da:f8:dd:6f:10:ac:1c:cb:ae:f9:70:ed:
7c:ff:f5:7f:63:30:e3:fb:a1:12:44:10:c5:90:87:12:6a:5e:
11:4b:33:77:dd:37:5f:d4:03:ad:56:db:03:32:28:26:55:3d:
4d:10:75:c0:2a:59:fa:8c:51:87:ed:42:36:11:b0:81:07:96:
e9:26:59:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org