Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/3U3acf4omngwMdZazoIz0pkQ76Q.roa
File: 3U3acf4omngwMdZazoIz0pkQ76Q.roa (raw, json)
Hash identifier: XRYheAZ3uVVd2d2mtE4s0f732L0Rj9KmsTIHAgUVHEY=
Subject key identifier: DD:4D:DA:71:FE:28:9A:78:30:31:D6:5A:CE:82:33:D2:99:10:EF:A4
Certificate issuer: /CN=e8403b5e45cd58be5f6c5d33fa565ab49223e3db
Certificate serial: 01821FA4B13458553E81456986D84E806453
Authority key identifier: E8:40:3B:5E:45:CD:58:BE:5F:6C:5D:33:FA:56:5A:B4:92:23:E3:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6EA7XkXNWL5fbF0z-lZatJIj49s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/3U3acf4omngwMdZazoIz0pkQ76Q.roa
Signing time: Thu 21 Jul 2022 07:24:23 +0000
ROA not before: Thu 21 Jul 2022 07:24:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8827
IP address blocks: 212.80.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:a4:b1:34:58:55:3e:81:45:69:86:d8:4e:80:64:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8403b5e45cd58be5f6c5d33fa565ab49223e3db
Validity
Not Before: Jul 21 07:24:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd4dda71fe289a783031d65ace8233d29910efa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:97:21:c9:ee:93:ee:ba:3f:8a:7b:ce:82:b1:
ec:8e:2f:dd:fc:7a:48:1d:36:57:be:15:fe:e2:fa:
13:22:0a:26:56:25:a1:d3:ed:f5:d6:d6:73:33:a3:
0a:20:88:82:74:17:b8:90:46:15:5d:16:17:51:15:
ed:16:e8:01:e3:b7:93:73:e3:8e:5a:5c:36:b6:25:
9a:77:67:9f:53:da:ea:f1:bb:85:cc:f4:c2:a3:b2:
ae:d4:d0:f3:20:95:83:c6:20:e8:67:04:a0:c9:74:
9c:60:43:c1:bd:70:63:3e:12:61:49:80:7a:fe:a1:
e9:3d:24:d7:d3:56:6f:6e:2e:5e:e7:22:3c:c4:df:
7b:51:12:56:48:6e:7b:96:24:50:99:cc:36:38:d2:
6e:38:0a:bc:d0:3e:6c:a5:5f:ca:7d:26:ee:5c:6c:
06:39:ab:dc:b0:fb:01:10:48:58:88:90:56:b8:bf:
be:02:2a:36:b0:b9:8c:8f:f6:d6:07:18:49:f0:52:
ed:ac:a1:82:00:f2:f2:74:58:47:e6:68:2e:d8:bb:
27:11:af:39:3b:3f:2e:bf:89:d5:23:d9:fc:bb:1b:
e1:56:b9:b3:f4:45:df:f3:c2:3f:6e:2e:a1:94:4e:
70:51:d9:18:ac:c4:5d:35:43:cb:c8:c6:ee:07:10:
6b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4D:DA:71:FE:28:9A:78:30:31:D6:5A:CE:82:33:D2:99:10:EF:A4
X509v3 Authority Key Identifier:
keyid:E8:40:3B:5E:45:CD:58:BE:5F:6C:5D:33:FA:56:5A:B4:92:23:E3:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6EA7XkXNWL5fbF0z-lZatJIj49s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/3U3acf4omngwMdZazoIz0pkQ76Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/6EA7XkXNWL5fbF0z-lZatJIj49s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.80.184.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f9:f6:54:a6:77:87:21:19:a2:d1:83:c4:53:d0:72:e8:82:
ca:89:5a:0e:5b:ac:2c:a8:f8:90:6e:3c:1f:ae:e9:0e:33:6e:
0b:9a:06:fb:81:24:37:97:dd:5c:0c:87:0b:02:05:bb:d1:d6:
e8:c5:2f:4d:e5:d6:d6:b9:51:f7:f3:73:72:9b:be:02:1f:90:
ca:51:9c:8f:86:1c:d1:52:df:b8:2e:87:2c:63:bc:d9:6d:e3:
50:07:2c:38:18:60:66:79:55:89:01:7c:c2:4b:c3:08:6a:6d:
16:1a:ae:2b:35:9d:74:24:a7:68:dc:6e:7f:ea:5d:92:e8:d2:
00:b1:5b:9b:b3:ae:38:1c:b0:45:9f:1c:65:33:90:7b:79:75:
1e:ad:da:20:90:ba:9b:0e:f7:1b:56:65:14:79:4c:f1:49:bd:
a3:e8:3b:67:c3:06:ba:8c:c1:59:0b:9e:c2:4b:4c:48:93:70:
c6:2e:46:9c:d4:ae:e1:78:5d:6e:93:ee:cb:16:9a:1b:0d:cd:
12:ac:c2:f0:46:34:1c:40:3f:12:6a:02:5c:d6:1d:df:1d:60:
78:38:d6:1c:16:9b:07:7f:d7:eb:8f:5a:c9:b9:fe:15:fc:6d:
94:84:d5:2b:e3:4d:09:35:b7:70:5c:7c:ba:56:b4:99:cf:d2:
c0:3c:03:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:43 2023 by rpki-client on console-fra.rpki-client.org