Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/887lrggNvfov5HWYaDIM_WoKKYs.roa
File: 887lrggNvfov5HWYaDIM_WoKKYs.roa (raw, json)
Hash identifier: o6WkECpndwRHnEp8uJC1oamCeOG/BXXIHpFSHDjemnk=
Subject key identifier: F3:CE:E5:AE:08:0D:BD:FA:2F:E4:75:98:68:32:0C:FD:6A:0A:29:8B
Certificate issuer: /CN=b4f82c8efde34bd99e44eaf0731b6c525b454a19
Certificate serial: 01853EA90233EB2C568D320BF0907D169D71
Authority key identifier: B4:F8:2C:8E:FD:E3:4B:D9:9E:44:EA:F0:73:1B:6C:52:5B:45:4A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPgsjv3jS9meROrwcxtsUltFShk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/887lrggNvfov5HWYaDIM_WoKKYs.roa
Signing time: Fri 23 Dec 2022 11:05:41 +0000
ROA not before: Fri 23 Dec 2022 11:05:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34500
IP address blocks: 80.73.16.0/20 maxlen: 20
80.73.16.0/21 maxlen: 21
80.73.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:a9:02:33:eb:2c:56:8d:32:0b:f0:90:7d:16:9d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f82c8efde34bd99e44eaf0731b6c525b454a19
Validity
Not Before: Dec 23 11:05:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3cee5ae080dbdfa2fe4759868320cfd6a0a298b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:df:91:62:37:c6:49:5d:49:b9:0a:4d:24:7a:
5a:c7:ed:e9:91:f5:dd:19:a4:18:89:e7:07:02:99:
20:8e:a5:8b:c7:ec:08:a2:18:9f:6e:12:8f:a2:9f:
bb:93:59:8e:89:7c:61:95:aa:ba:25:aa:53:b1:77:
d1:d7:45:bf:e3:a1:8d:e0:be:2f:a8:31:13:e0:8f:
68:c3:c9:1c:dd:c3:76:9f:a2:d4:32:15:50:a0:0e:
02:bd:bb:ef:a9:2d:41:bb:96:98:ea:f6:00:d3:f8:
e5:e9:09:9f:bc:67:fc:14:b2:0b:de:d4:c8:ab:ca:
ec:b1:11:75:d1:5a:56:0a:3e:0e:2a:30:cc:d3:e4:
c0:35:d9:e0:76:aa:4a:31:3d:a2:65:d1:75:6b:96:
c8:75:2d:ce:ff:1a:8d:69:78:34:9d:d2:ed:fd:1a:
9e:65:7e:40:3f:04:cb:a8:ea:b1:0f:c3:f7:56:b2:
51:5e:4e:b7:eb:c0:c3:97:e2:6b:9c:53:ab:1e:d3:
5f:f0:43:e6:6e:7a:a5:7f:78:df:83:c9:92:3f:60:
8d:45:0d:4b:ef:54:b0:60:8c:21:46:d3:01:3c:b2:
c8:1e:37:3d:0a:b5:78:95:c1:b1:e2:c1:c8:2f:a8:
5a:dc:15:98:2a:2d:5b:cc:0b:bc:2d:15:d0:16:43:
61:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CE:E5:AE:08:0D:BD:FA:2F:E4:75:98:68:32:0C:FD:6A:0A:29:8B
X509v3 Authority Key Identifier:
keyid:B4:F8:2C:8E:FD:E3:4B:D9:9E:44:EA:F0:73:1B:6C:52:5B:45:4A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPgsjv3jS9meROrwcxtsUltFShk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/887lrggNvfov5HWYaDIM_WoKKYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/608fdb-a406-4b85-b14a-d2441e8f6c7a/1/tPgsjv3jS9meROrwcxtsUltFShk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.16.0/20
Signature Algorithm: sha256WithRSAEncryption
26:63:53:aa:a8:18:42:2f:93:ba:5b:b0:bb:94:2a:11:57:ac:
1f:2e:2d:3f:40:9d:40:dc:53:e5:66:35:76:22:1a:9e:9a:27:
59:6e:6b:f3:fd:68:ff:18:c4:0e:23:12:2a:c4:91:02:15:1d:
45:07:01:44:1c:03:0c:45:6a:65:8c:44:aa:da:0d:14:86:bd:
b7:ee:b9:9e:27:d8:40:49:89:1e:6e:0a:b3:dd:ad:fc:03:08:
e9:64:28:ea:61:f3:3d:8b:c9:73:ba:76:1e:3e:14:d3:de:e4:
96:1e:2d:d3:46:0d:a2:ce:6c:22:7f:d7:80:d3:3b:11:b0:b9:
37:a4:6d:e3:dc:a2:0d:e7:dd:b1:18:6a:b1:39:1a:1e:aa:47:
1f:96:e9:50:da:da:36:b9:7f:ca:76:08:b0:59:3d:9a:ff:eb:
9b:37:59:38:67:52:1b:96:22:67:26:fc:50:8d:0c:f5:d6:f0:
8d:54:c1:a5:64:e1:46:31:b7:1e:dc:19:b6:f5:4a:39:14:7e:
88:40:0f:f5:94:59:d9:ed:e5:5a:0f:bc:b9:d1:29:bd:6d:16:
2d:03:9d:87:8b:ca:af:a0:77:64:cc:7b:ec:7a:13:cb:52:f0:
c2:0e:16:df:38:92:88:ed:bf:2b:40:c9:d9:01:d0:04:7e:94:
26:14:61:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:37 2023 by rpki-client on console.sobornost.net