Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/dbc0e6-2555-4bf3-9ab1-9915990bcb59/1/ddG_NWEjZubBprhiRZuRNGL7JVo.roa
File: ddG_NWEjZubBprhiRZuRNGL7JVo.roa (raw, json)
Hash identifier: kJwdSAKExFNmiL9VMfaS6clInS9BZO+AKzzc7qT+OkQ=
Subject key identifier: 75:D1:BF:35:61:23:66:E6:C1:A6:B8:62:45:9B:91:34:62:FB:25:5A
Certificate issuer: /CN=af4d16c335407bf0d0a51cef9b9c1c5310280f48
Certificate serial: 33DBC47C
Authority key identifier: AF:4D:16:C3:35:40:7B:F0:D0:A5:1C:EF:9B:9C:1C:53:10:28:0F:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r00WwzVAe_DQpRzvm5wcUxAoD0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/dbc0e6-2555-4bf3-9ab1-9915990bcb59/1/ddG_NWEjZubBprhiRZuRNGL7JVo.roa
Signing time: Sat 01 Jan 2022 14:57:45 +0000
ROA not before: Sat 01 Jan 2022 14:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25176
IP address blocks: 185.80.208.0/22 maxlen: 22
2a03:7c80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870040700 (0x33dbc47c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af4d16c335407bf0d0a51cef9b9c1c5310280f48
Validity
Not Before: Jan 1 14:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75d1bf35612366e6c1a6b862459b913462fb255a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f3:b7:30:ab:67:ba:57:02:ff:38:0a:98:9e:
82:55:e4:9a:71:31:f9:9a:c2:02:96:55:c0:de:59:
6b:fa:a6:73:ab:df:76:ff:cb:84:27:ec:56:89:eb:
a7:9b:ad:67:38:be:c0:60:b6:94:7c:04:07:d2:2e:
df:45:83:37:77:28:c9:23:3f:0e:92:8d:d1:7c:87:
b0:a2:f7:c9:0c:84:83:64:69:8c:80:e0:56:4e:fe:
c9:24:e6:00:c6:19:68:34:16:a5:48:e6:64:46:3d:
f2:dd:3a:79:04:62:4c:85:64:78:6d:69:b3:ec:1d:
8f:31:a1:02:e0:11:62:90:c5:06:5b:21:f5:f3:fc:
29:7a:8e:25:0d:56:59:17:14:48:df:10:a0:82:3f:
99:15:ab:7a:3e:48:3f:fd:da:f9:3c:4b:45:ea:68:
f0:50:86:16:65:c9:14:89:c0:4b:1a:1f:2b:0b:62:
e0:29:58:20:fa:0c:01:e6:7f:47:37:01:f9:1f:7c:
dd:95:4a:ee:ce:ec:f3:37:1e:03:c1:90:7d:6d:45:
43:f3:5a:4b:15:cc:54:36:e8:55:b4:b0:da:5c:b2:
08:c4:1b:6e:59:57:f7:e6:b5:77:15:6c:47:c5:78:
2a:5b:17:1d:0f:a5:6b:69:b2:0a:bb:a7:87:6a:35:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D1:BF:35:61:23:66:E6:C1:A6:B8:62:45:9B:91:34:62:FB:25:5A
X509v3 Authority Key Identifier:
keyid:AF:4D:16:C3:35:40:7B:F0:D0:A5:1C:EF:9B:9C:1C:53:10:28:0F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r00WwzVAe_DQpRzvm5wcUxAoD0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dbc0e6-2555-4bf3-9ab1-9915990bcb59/1/ddG_NWEjZubBprhiRZuRNGL7JVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/dbc0e6-2555-4bf3-9ab1-9915990bcb59/1/r00WwzVAe_DQpRzvm5wcUxAoD0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.208.0/22
IPv6:
2a03:7c80::/32
Signature Algorithm: sha256WithRSAEncryption
49:5b:72:06:22:62:26:fa:4e:85:04:bb:bf:b4:8a:65:bf:8d:
2f:9c:ea:24:05:dd:d5:f0:01:20:bf:8f:e5:dc:68:6c:8b:02:
98:16:0f:64:78:8d:da:a5:49:cd:db:d5:8a:9a:7d:f4:f6:5a:
3c:c2:1a:13:95:3e:9b:d2:6b:a4:e0:08:30:bf:1b:40:ba:a9:
dc:eb:09:9d:f9:4c:2f:99:3e:6a:05:70:fc:f8:85:0e:85:0d:
67:3b:d0:82:b5:b4:d3:22:33:61:be:7d:98:86:76:42:80:27:
25:63:62:45:00:43:9c:81:f1:cc:9d:e1:08:42:d5:13:bb:88:
0a:c4:98:85:d7:8f:9c:e7:ef:42:d4:fa:04:a9:9e:c9:32:58:
ac:3f:b1:e9:4c:fd:95:e1:a7:ca:b5:90:a6:a8:73:e0:ea:73:
a0:35:88:62:94:64:51:66:69:89:58:f4:4d:a3:74:c5:ed:fe:
d0:0f:27:2b:64:c2:a6:15:6c:11:09:fc:82:09:c8:62:01:b0:
44:0a:be:69:5b:30:7c:cf:f9:3b:e0:7d:8c:be:30:48:7d:48:
6f:81:39:db:5c:d3:73:b6:fb:09:4a:ea:7f:34:11:c3:50:6d:
5f:3a:43:d1:eb:28:2f:40:ae:d6:29:3a:71:03:8c:83:5e:bb:
f7:a1:b0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:51 2023 by rpki-client on console.sobornost.net