Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/KYJvWMAGSWZg5Le2VUL5m_vaul8.roa
File: KYJvWMAGSWZg5Le2VUL5m_vaul8.roa (raw, json)
Hash identifier: JsE3BZXWgUvoJxrpGT+2lefU7Yg5R3bi+iLx/kdKBpY=
Subject key identifier: 29:82:6F:58:C0:06:49:66:60:E4:B7:B6:55:42:F9:9B:FB:DA:BA:5F
Certificate issuer: /CN=0eba05422d4dd478c8f24b7f4302213bff8274f2
Certificate serial: A429
Authority key identifier: 0E:BA:05:42:2D:4D:D4:78:C8:F2:4B:7F:43:02:21:3B:FF:82:74:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DroFQi1N1HjI8kt_QwIhO_-CdPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/KYJvWMAGSWZg5Le2VUL5m_vaul8.roa
Signing time: Wed 26 Jan 2022 18:28:37 +0000
ROA not before: Wed 26 Jan 2022 18:28:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 80.68.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42025 (0xa429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eba05422d4dd478c8f24b7f4302213bff8274f2
Validity
Not Before: Jan 26 18:28:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29826f58c006496660e4b7b65542f99bfbdaba5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:26:fe:fd:7f:22:7a:ae:3b:99:e9:8c:0d:6e:
8c:e4:f3:2f:2d:9a:09:7c:f7:5e:0d:95:24:42:13:
25:da:fc:58:82:10:27:b8:84:56:bf:d3:d9:35:fc:
ca:97:22:b9:f2:df:94:7c:5e:ac:8d:7d:88:52:0c:
07:9a:52:0d:0e:6f:ea:7d:ef:f8:40:63:e8:7d:9e:
8d:7c:dc:02:ce:8f:8d:69:12:ee:01:7f:47:73:9d:
2d:db:c8:3d:81:d3:f5:24:7c:08:f7:11:86:61:52:
99:31:b5:f6:10:0f:9f:9b:21:7b:ec:26:b9:2b:aa:
9e:35:2b:46:81:ea:8a:22:b6:9f:4f:25:2e:64:c0:
96:40:18:b5:58:5a:5a:58:7c:dd:f9:6c:56:a3:13:
90:ba:9f:36:e1:bc:fc:19:07:53:d8:13:0d:0c:63:
15:3e:51:c6:b3:ac:0d:f3:c4:7b:5b:64:38:fa:2c:
04:99:d8:31:db:41:90:b6:99:3d:35:3a:a3:18:e6:
a1:cf:d1:7c:30:3f:f4:5c:62:5b:e9:84:ad:c3:28:
d0:ac:5c:49:29:77:5e:36:73:df:6a:f7:a3:7d:e1:
84:12:5a:ba:d5:81:c5:ea:22:9b:23:47:19:0d:01:
24:cb:77:53:c3:7f:69:bf:49:0a:e3:11:d9:e2:cd:
f4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:82:6F:58:C0:06:49:66:60:E4:B7:B6:55:42:F9:9B:FB:DA:BA:5F
X509v3 Authority Key Identifier:
keyid:0E:BA:05:42:2D:4D:D4:78:C8:F2:4B:7F:43:02:21:3B:FF:82:74:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DroFQi1N1HjI8kt_QwIhO_-CdPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/KYJvWMAGSWZg5Le2VUL5m_vaul8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8f2144-bde4-4650-9903-a72f7a292fb5/1/DroFQi1N1HjI8kt_QwIhO_-CdPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.150.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d7:3a:73:ab:b9:18:ac:41:84:89:0d:5d:48:40:1a:e6:a9:
3e:e5:db:be:28:54:c2:81:65:50:8d:51:85:86:96:23:87:ff:
c2:67:db:2f:32:2e:17:33:68:a1:75:3f:d7:8d:31:fc:b9:47:
48:f6:ff:9c:02:44:4c:4a:45:4d:e2:5d:1b:90:fe:a2:ca:b2:
58:90:76:2e:a1:54:1f:40:ee:9b:ef:85:9e:18:45:36:cb:fb:
d7:7a:f0:29:63:4f:b0:c3:ca:9a:8a:c5:86:a7:32:75:8f:ee:
b2:c4:36:e6:a7:7f:c5:c2:b4:b4:b1:05:e1:2f:58:33:1e:f1:
40:21:4c:b6:ef:37:5b:5b:b8:5c:b8:ea:a6:98:2d:02:c7:3a:
f9:d3:88:65:d5:3d:19:e5:0d:dc:c5:b6:7a:60:06:39:6e:f1:
2a:01:9d:3c:a9:63:14:50:ac:b8:56:50:6e:c8:6d:36:1c:a3:
c9:ce:0e:29:58:bd:7f:c5:35:e4:6a:bb:83:94:0c:cc:97:02:
22:e2:67:0c:8d:6c:05:6d:7f:21:0f:bd:87:bb:2f:d4:52:c7:
fd:80:4a:e4:02:25:69:ed:b1:7b:fd:84:e0:ce:11:09:1b:ef:
3b:ce:c2:a2:e8:d9:3d:4f:18:6d:25:0e:02:20:38:49:20:01:
24:9f:16:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net