Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/YjqSS-FBqhu9g_x4Yfu4eCBcnUk.roa
File: YjqSS-FBqhu9g_x4Yfu4eCBcnUk.roa (raw, json)
Hash identifier: kZ92UQ7KI2O3GrvccRDv9SV7vN2Emy8zYKKHCOWVJfs=
Subject key identifier: 62:3A:92:4B:E1:41:AA:1B:BD:83:FC:78:61:FB:B8:78:20:5C:9D:49
Certificate issuer: /CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Certificate serial: EE54CC
Authority key identifier: 1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/YjqSS-FBqhu9g_x4Yfu4eCBcnUk.roa
Signing time: Sat 01 Jan 2022 09:57:53 +0000
ROA not before: Sat 01 Jan 2022 09:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 80.71.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15619276 (0xee54cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1df38ecae04225ff347811b1d37fdb2a3f6e472b
Validity
Not Before: Jan 1 09:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623a924be141aa1bbd83fc7861fbb878205c9d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:46:11:39:69:54:b8:e2:67:1c:7a:c1:4b:e0:
06:ca:f8:01:f9:d0:ba:96:f0:67:99:76:d9:ac:40:
7a:68:e7:c9:3d:62:63:e3:f5:b2:5a:88:a0:16:36:
33:d3:93:ed:28:ac:c0:ca:b5:25:77:05:3d:43:6a:
6b:95:0a:79:f9:3f:f2:49:e5:6c:9d:ca:e0:30:47:
c1:c7:5b:7e:16:8d:35:b8:24:9e:20:b5:08:41:e5:
1c:59:da:80:40:0c:49:79:4a:c3:9a:14:21:bf:2e:
69:13:8f:1b:80:da:fe:57:d1:47:b0:58:cb:3a:ac:
b1:c5:a3:51:5d:c0:06:0e:7c:98:fb:66:3d:a7:be:
e2:73:9b:ae:d9:cf:71:94:11:e4:e8:61:30:0b:74:
3e:e4:ca:63:b2:25:03:d5:4c:c7:08:bb:f9:cf:18:
72:d8:18:a3:96:3b:eb:82:35:a7:ba:1d:5c:7c:f7:
75:0e:fe:9b:10:12:f2:c3:14:ce:04:b9:75:5b:fb:
ad:06:36:0c:20:95:15:67:58:84:1f:8f:58:72:95:
12:dc:7b:34:5c:d8:a1:73:59:89:0c:37:77:83:e1:
a8:b7:db:60:b8:75:17:db:f1:be:c0:31:dd:3b:b3:
38:69:d5:a7:10:e3:74:20:e9:2a:c7:ac:b9:cd:06:
c3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3A:92:4B:E1:41:AA:1B:BD:83:FC:78:61:FB:B8:78:20:5C:9D:49
X509v3 Authority Key Identifier:
keyid:1D:F3:8E:CA:E0:42:25:FF:34:78:11:B1:D3:7F:DB:2A:3F:6E:47:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfOOyuBCJf80eBGx03_bKj9uRys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/YjqSS-FBqhu9g_x4Yfu4eCBcnUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5258bf-ea0d-42a4-828e-ea93c2cb239c/1/HfOOyuBCJf80eBGx03_bKj9uRys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:62:36:63:37:39:47:ef:b9:72:45:d4:eb:e7:70:8b:27:63:
31:aa:17:22:5c:e1:be:ac:23:04:14:16:1c:03:f9:47:27:f7:
3a:72:9a:47:4c:ff:23:5d:be:f5:cf:d2:0a:a1:90:02:56:e4:
e8:45:43:60:e9:aa:c9:66:58:44:19:2c:54:7b:22:7c:b7:7f:
c1:07:ba:d8:e1:38:fd:fd:a1:08:c0:4e:e7:f1:aa:0e:35:50:
7b:7a:42:7d:b9:b5:fb:24:78:ea:e6:4f:54:44:af:a7:5d:33:
83:2c:22:60:7c:10:37:ab:01:d3:e4:ba:da:c0:2f:80:36:70:
81:f2:05:e8:cf:a7:b5:69:0c:5d:34:37:3b:00:35:26:fd:93:
ef:c4:00:40:0d:95:df:b3:37:4b:da:a1:e5:26:5c:96:73:ad:
bd:7a:f2:52:d5:21:00:e9:ca:cb:41:81:38:83:7c:57:56:f4:
b5:02:67:3a:96:4b:5a:5e:47:87:1b:ab:a2:5a:37:84:f1:97:
ec:2d:f9:89:fe:92:d1:9c:e4:21:75:70:9a:68:ba:b7:eb:de:
1d:84:f1:09:4d:cf:0f:37:20:f3:9f:19:88:ea:d4:16:18:83:
7b:b0:79:e7:dd:36:32:c1:34:77:0f:d9:f5:27:6d:0b:b0:2e:
8a:9b:5b:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:28 2023 by rpki-client on console-ams.rpki-client.org