Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/aVD9av_u6nq7jjLOJ7r_LPxowKY.roa
File: aVD9av_u6nq7jjLOJ7r_LPxowKY.roa (raw, json)
Hash identifier: bF9cESvh5IxqRXmeheCtyA+83vpIJp14YsX4CUGuZFc=
Subject key identifier: 69:50:FD:6A:FF:EE:EA:7A:BB:8E:32:CE:27:BA:FF:2C:FC:68:C0:A6
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 01839F4691DF192858D9B0D4903E6B2C4B0C
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/aVD9av_u6nq7jjLOJ7r_LPxowKY.roa
Signing time: Mon 03 Oct 2022 19:15:45 +0000
ROA not before: Mon 03 Oct 2022 19:15:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 85.239.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9f:46:91:df:19:28:58:d9:b0:d4:90:3e:6b:2c:4b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Oct 3 19:15:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6950fd6affeeea7abb8e32ce27baff2cfc68c0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:72:f9:68:0a:3e:08:48:a9:6c:23:58:78:7a:
d7:f8:15:51:47:64:3e:e7:85:8a:09:57:96:fa:57:
7a:83:9c:77:f6:14:07:88:41:db:ef:25:86:d0:49:
78:25:25:b5:e0:8e:01:aa:d9:d0:41:c5:6d:af:fe:
fb:fc:d7:a4:e3:1c:40:a1:cd:bd:41:92:7a:e5:86:
32:18:de:2e:20:f3:88:c2:7c:de:65:de:3e:f6:d0:
d6:a7:e5:82:e7:b2:76:1c:0d:ae:92:7d:46:2f:b4:
2d:c0:41:ab:67:88:89:e9:c4:e2:72:9e:dc:49:52:
2f:ef:d3:e3:b5:ae:36:b5:bc:70:1d:8d:50:8c:c1:
94:e7:4c:96:18:2b:81:b6:08:e2:26:29:58:11:3b:
46:12:60:32:99:97:14:1b:11:ba:2b:62:da:b8:cc:
f3:39:ef:5d:fa:d1:d5:98:a6:7b:5b:ff:07:f9:80:
1a:50:fa:11:16:07:c7:76:f1:61:8e:3e:fe:38:68:
b2:25:c7:97:1f:0f:3d:9a:eb:b7:1f:0f:7e:5e:5c:
a8:d0:38:8b:51:87:41:d2:3e:83:53:95:09:58:a4:
96:fc:2f:8f:3e:06:6c:86:e3:9e:d8:4a:f0:8d:ee:
c2:eb:ef:39:ee:19:16:af:c2:14:bd:89:f4:22:8e:
69:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:50:FD:6A:FF:EE:EA:7A:BB:8E:32:CE:27:BA:FF:2C:FC:68:C0:A6
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/aVD9av_u6nq7jjLOJ7r_LPxowKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.144.0/22
Signature Algorithm: sha256WithRSAEncryption
73:b2:5e:39:92:ca:77:ad:57:7b:a2:64:5d:e1:7e:84:0c:15:
0b:9c:e8:83:50:e5:d3:03:44:e8:27:a3:3e:96:51:bc:91:51:
2f:00:8e:ba:45:eb:19:3e:90:d1:59:5c:83:fc:ea:81:f9:9c:
95:65:ae:20:f4:43:8d:e8:f2:50:53:6a:c5:f3:5f:f5:bd:08:
7f:af:2e:1c:8c:a2:f7:95:58:76:db:1c:f6:90:e8:57:e4:b3:
cc:97:9d:3f:13:72:72:44:fa:c5:fc:84:2a:9f:16:0e:ec:04:
cd:8c:4e:2b:dd:f8:82:53:d2:35:62:3f:72:ab:53:28:5c:45:
b9:bc:6d:eb:79:79:d8:20:7e:89:41:8e:1d:74:3f:7a:20:6c:
33:a3:47:31:2a:af:71:cb:89:bb:bc:a1:68:80:b4:17:d0:e5:
72:19:12:ed:3f:8a:b8:a3:f3:46:0b:8e:c1:cb:7d:46:7c:3e:
50:2b:76:46:22:ed:5a:cf:9f:bf:3d:b2:7a:77:22:df:eb:8b:
ff:08:71:b1:93:c2:28:bb:ad:9d:11:1d:2c:8d:a7:da:8b:62:
d3:48:c2:92:7d:5e:26:ff:7d:2e:f4:27:62:1e:a8:8b:1d:79:
c3:27:02:90:9d:16:c4:06:73:ae:d9:16:4e:b2:8b:a5:0b:6e:
81:3f:47:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:33 2024 by rpki-client on console-ams.rpki-client.org