Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/4XWzDXtnSblp6y5F8tWoLcigNa0.roa
File: 4XWzDXtnSblp6y5F8tWoLcigNa0.roa (raw, json)
Hash identifier: F8VG662fpsEh7OqqUMNtl3xOLI+adYyksmf2c5zlSDw=
Subject key identifier: E1:75:B3:0D:7B:67:49:B9:69:EB:2E:45:F2:D5:A8:2D:C8:A0:35:AD
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 04006FF8
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/4XWzDXtnSblp6y5F8tWoLcigNa0.roa
Signing time: Sat 01 Jan 2022 07:03:04 +0000
ROA not before: Sat 01 Jan 2022 07:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 85.239.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67137528 (0x4006ff8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Jan 1 07:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e175b30d7b6749b969eb2e45f2d5a82dc8a035ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:89:64:5b:9c:f4:4b:b5:87:07:dd:12:7f:df:
61:2b:39:4f:b6:2c:93:36:1d:1c:60:63:53:26:9e:
0a:4f:be:39:4b:2b:b8:f6:1f:ad:ad:62:a9:d0:c8:
df:68:bc:47:f4:99:e1:d2:31:47:8c:d6:36:a1:cd:
86:95:93:d3:44:24:a2:30:78:ff:f7:21:a1:c7:6b:
ee:32:98:29:26:ff:57:8a:42:f4:27:d5:8c:8a:89:
20:a8:cf:62:22:ac:28:b9:8c:26:50:d7:3e:34:21:
38:87:24:cf:1e:64:8e:d7:6d:f0:da:61:ba:67:1c:
aa:8e:ad:12:fc:37:58:97:1a:a2:bf:6a:9c:95:6d:
ad:8a:d4:ca:f6:96:bc:78:29:c3:ff:cf:12:fc:9a:
2a:78:82:0a:65:91:b3:bf:59:02:20:40:49:88:0a:
3b:b5:13:a5:3b:0c:32:56:3a:5f:25:0f:b7:69:81:
b9:8a:c3:e0:c4:9c:c6:2e:52:f5:cf:75:1a:41:84:
44:e1:fc:0b:af:e3:f3:aa:8b:b3:93:8c:ed:04:8f:
be:30:0b:3f:23:86:5f:2c:e8:7a:14:f9:09:ac:b9:
87:59:0c:c8:48:7f:70:5a:a4:45:61:90:51:a2:ef:
4b:05:6a:dd:31:33:d3:16:bd:7d:22:db:8b:f7:56:
ce:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:75:B3:0D:7B:67:49:B9:69:EB:2E:45:F2:D5:A8:2D:C8:A0:35:AD
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/4XWzDXtnSblp6y5F8tWoLcigNa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.149.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:93:9b:05:86:27:d6:42:56:e6:b8:5c:28:ef:df:07:3d:c0:
e5:4c:a4:e4:1f:0d:80:51:5a:76:0f:d7:a5:96:19:fd:20:c5:
53:88:43:83:27:ed:4c:46:ff:9d:53:4a:8d:0d:22:d0:f9:23:
4b:e0:fb:52:63:d7:ba:35:b6:2a:d6:8d:5f:65:0b:b2:ea:18:
1b:61:33:56:b1:71:4f:38:c1:76:76:e8:6b:5f:8a:d6:10:ef:
27:2a:3d:b3:23:fb:24:a7:86:33:ba:39:8c:44:41:8a:a4:92:
ca:ac:fa:b1:97:cf:c3:16:35:3f:a9:fd:7c:77:f5:61:56:08:
6e:29:fa:d3:fd:d6:ee:4d:af:b4:55:3c:df:37:8b:ae:fc:15:
0b:f1:90:97:13:ec:15:4d:8e:4c:11:14:39:40:32:fb:6a:3f:
12:c2:73:44:31:54:81:60:92:89:cb:ea:f6:c9:05:07:a6:f1:
72:b9:30:46:f0:f9:e5:04:b6:de:67:cd:81:95:df:d9:ec:e9:
eb:d6:c6:3a:f7:ca:cc:3c:6c:50:04:94:ec:f2:63:44:eb:95:
3a:78:e4:4f:6d:9e:64:73:dc:31:b0:c7:c4:a7:f5:27:d4:b7:
ee:84:b8:4f:03:04:de:ab:96:62:5b:64:99:06:66:6b:fe:53:
e1:df:43:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:53 2024 by rpki-client on console-fra.rpki-client.org