Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/1-ido1x8NBm49-Iz_lkLdRtf-Ug0.roa
File: 1-ido1x8NBm49-Iz_lkLdRtf-Ug0.roa (raw, json)
Hash identifier: +AXNBu5gRZuL/CSueCMPnEksw8uC8EWCGC/OWZJ9obY=
Subject key identifier: FA:27:68:D7:1F:0D:06:6E:3D:F8:8C:FF:96:42:DD:46:D7:FE:52:0D
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 04ED2A8A
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/1-ido1x8NBm49-Iz_lkLdRtf-Ug0.roa
Signing time: Thu 14 Apr 2022 11:40:46 +0000
ROA not before: Thu 14 Apr 2022 11:40:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41989
IP address blocks: 178.239.112.0/20 maxlen: 20
85.239.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82651786 (0x4ed2a8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Apr 14 11:40:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa2768d71f0d066e3df88cff9642dd46d7fe520d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:38:62:01:58:69:d2:a0:3c:31:11:26:d2:95:
fa:6b:a5:04:a0:c0:7a:2b:45:d3:89:d7:c9:93:9d:
6e:5d:c7:80:39:81:94:7e:08:7e:1c:d2:78:f5:31:
6c:4e:87:e6:7f:23:6a:e6:a0:b8:f0:b3:f7:97:c9:
bf:30:fe:8f:22:e0:8a:8c:59:8f:09:07:91:f9:b7:
77:18:5e:bc:0e:4d:91:7d:ef:7f:59:1e:17:35:9b:
1e:c8:60:08:c8:ee:44:9f:08:6d:cf:fc:23:f2:de:
08:ff:71:8a:dd:33:be:5c:42:c7:05:0c:5a:bd:f4:
5b:34:20:34:33:b6:1b:1c:58:5f:dd:f1:6b:dd:8d:
c8:59:a8:bc:c7:49:76:33:36:74:20:ba:ef:66:f4:
b1:e6:46:00:a3:1f:e1:8e:4d:f1:f0:a4:3e:88:2c:
dc:d4:de:1d:d4:ad:90:d4:79:b4:90:2a:0a:54:21:
ea:8d:e4:53:95:1e:fd:c8:f2:8c:5b:35:42:fa:b7:
89:d1:78:93:7d:6f:d7:6b:25:a0:c8:c3:5e:cc:96:
e1:50:f5:c0:4c:8d:c8:a0:93:cf:0e:a3:f8:ac:01:
1f:44:30:c1:2c:0b:93:cf:4c:81:72:d3:75:2d:4d:
72:fc:12:c0:c1:4c:7a:4e:a2:0c:a8:da:f6:b8:56:
e0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:27:68:D7:1F:0D:06:6E:3D:F8:8C:FF:96:42:DD:46:D7:FE:52:0D
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/1-ido1x8NBm49-Iz_lkLdRtf-Ug0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.152.0/22
178.239.112.0/20
Signature Algorithm: sha256WithRSAEncryption
17:39:53:83:9b:3f:ae:c0:df:a1:7a:0f:68:2a:83:69:77:a2:
15:93:69:54:8f:9c:e0:a4:9f:58:7c:da:cd:90:45:87:30:0e:
6e:54:97:54:cc:bb:42:d4:f4:51:e5:3e:e5:41:a7:89:10:87:
3b:03:0d:e0:8b:67:f4:7f:6e:e6:97:3e:68:f7:e8:9a:58:09:
e4:e8:f3:ef:96:15:1e:bb:06:8e:79:89:0b:a2:73:68:0f:87:
37:fa:b0:cd:15:60:12:38:de:b7:8e:e2:51:94:58:df:d7:04:
cd:a7:eb:86:94:1f:9d:4e:a0:94:a9:df:16:37:cd:50:69:8a:
1b:19:4b:0a:a5:56:fc:70:62:61:81:70:64:c1:ec:d0:8d:a0:
b1:64:74:a1:42:5c:4b:62:72:f0:e8:1e:c1:1a:ce:eb:c4:56:
25:9f:86:b0:1c:4d:eb:22:c3:cc:56:84:98:29:b4:00:b4:f7:
a7:43:58:62:be:43:d4:54:f6:58:45:53:34:46:cd:d3:cc:0e:
a4:1c:e7:7e:dc:5b:79:d0:03:1f:6c:f0:54:35:cf:b5:92:04:
0f:78:6d:4b:22:6f:fb:c4:d0:78:20:9e:02:54:09:6a:05:9a:
e3:fa:af:0a:64:9c:88:18:26:94:e9:19:29:c3:1e:f8:ce:56:
03:9c:f4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:33 2024 by rpki-client on console-ams.rpki-client.org