Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/cdaaea-6118-490e-84f5-967f2e506548/1/d0ZXEgQu5j8HTxQlS0i_5sPsZsE.roa
File: d0ZXEgQu5j8HTxQlS0i_5sPsZsE.roa (raw, json)
Hash identifier: c3lEib1LjdqKJVG5HVq5jb+X6VxHcxIeaE//WVUKe7Y=
Subject key identifier: 77:46:57:12:04:2E:E6:3F:07:4F:14:25:4B:48:BF:E6:C3:EC:66:C1
Certificate issuer: /CN=bbf43e173f782f01c33b33693985bd3c08d4d054
Certificate serial: 034D45EB
Authority key identifier: BB:F4:3E:17:3F:78:2F:01:C3:3B:33:69:39:85:BD:3C:08:D4:D0:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_Q-Fz94LwHDOzNpOYW9PAjU0FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/cdaaea-6118-490e-84f5-967f2e506548/1/d0ZXEgQu5j8HTxQlS0i_5sPsZsE.roa
Signing time: Sat 01 Jan 2022 10:01:34 +0000
ROA not before: Sat 01 Jan 2022 10:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42205
IP address blocks: 185.33.82.0/23 maxlen: 23
80.85.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55395819 (0x34d45eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf43e173f782f01c33b33693985bd3c08d4d054
Validity
Not Before: Jan 1 10:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77465712042ee63f074f14254b48bfe6c3ec66c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8a:7e:c5:bb:3f:8c:1d:8d:39:7b:d9:8f:c8:
a5:6c:02:b7:4e:0b:c0:e0:4b:c0:b0:d7:6d:33:4d:
69:6a:06:a4:ca:06:45:6a:92:66:03:1e:01:a9:fa:
82:e1:e3:aa:4d:37:8d:80:c7:53:47:d7:73:c6:d9:
7d:b8:95:78:fb:df:1a:20:74:b8:c2:d7:e9:99:f6:
d9:6a:82:91:32:5e:93:7f:ff:93:13:ac:0a:c0:e1:
85:34:5e:c6:1c:3a:d4:c6:c2:06:22:c7:46:19:37:
9d:ce:27:5a:a3:4d:cd:67:ca:4c:31:aa:dc:4b:cb:
7b:b8:dd:ac:d0:cb:ae:ab:42:2e:d7:d4:ee:ef:82:
32:88:5d:94:84:a5:24:76:dc:42:ac:85:db:90:64:
d0:5b:6f:0d:77:1a:78:e8:5d:e9:36:b2:b1:66:bb:
36:82:39:98:4a:74:f2:7c:a7:94:2a:62:c7:39:df:
44:96:4b:a5:b1:ab:e2:f8:07:0c:e9:30:72:82:fd:
d7:74:37:4b:75:5e:ba:0b:99:f0:bb:07:fd:69:d7:
bf:27:ba:39:eb:dd:ca:5c:73:bb:d2:0d:6b:21:41:
2a:cb:b9:4c:20:c8:65:b0:fa:c3:d6:2b:58:fc:b6:
6a:8a:c8:2a:9f:d5:df:ed:57:f5:61:c3:0c:eb:39:
a9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:46:57:12:04:2E:E6:3F:07:4F:14:25:4B:48:BF:E6:C3:EC:66:C1
X509v3 Authority Key Identifier:
keyid:BB:F4:3E:17:3F:78:2F:01:C3:3B:33:69:39:85:BD:3C:08:D4:D0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_Q-Fz94LwHDOzNpOYW9PAjU0FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cdaaea-6118-490e-84f5-967f2e506548/1/d0ZXEgQu5j8HTxQlS0i_5sPsZsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/cdaaea-6118-490e-84f5-967f2e506548/1/u_Q-Fz94LwHDOzNpOYW9PAjU0FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.56.0/21
185.33.82.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:1f:9d:83:9f:f6:dc:6a:d6:8f:27:06:98:b1:dc:bc:a8:e5:
22:aa:41:33:d6:48:e2:dc:37:80:d1:9b:fd:aa:81:a0:22:28:
a2:7b:9e:f6:aa:a1:9b:79:23:84:36:17:6a:59:c6:0e:37:af:
8a:a9:6c:25:95:0f:e6:c7:7e:7b:cf:1a:65:94:58:15:64:31:
79:05:f6:1f:97:4b:17:94:88:34:0f:97:47:a6:2d:90:b1:46:
d5:5a:78:2f:59:78:51:ee:76:3c:f8:6f:69:b6:96:38:8b:e3:
33:7e:55:b3:73:fe:52:b2:56:a3:15:4e:87:17:e3:2d:e7:34:
14:fe:e4:ef:64:53:ff:18:ca:23:81:f2:45:02:fb:c5:ba:eb:
4b:82:0d:5b:1a:3e:c3:32:15:7d:fa:c9:99:8d:d7:27:81:21:
d4:af:b6:48:38:47:42:dc:60:f8:db:50:03:97:76:38:0b:e2:
0e:42:8f:5d:e1:de:cf:31:6d:e7:3d:a0:12:cd:da:b5:64:a1:
bb:3a:e1:56:2c:a2:f0:c9:37:54:e3:49:60:a2:2a:c6:80:d0:
18:e8:e9:c6:26:de:eb:21:8b:62:9a:5b:0d:af:c9:b2:8f:de:
95:dd:81:62:34:c1:9b:75:48:47:4e:4b:1b:34:00:33:8d:60:
21:ff:2e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:50 2023 by rpki-client on console.sobornost.net