Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9pWTQNC-6tC_vqCEs9uAqSbRm1M.roa
File: 9pWTQNC-6tC_vqCEs9uAqSbRm1M.roa (raw, json)
Hash identifier: qGpa4MfkBphI0plg6HYZYMnIiCseTvaDR0YynNbk298=
Subject key identifier: F6:95:93:40:D0:BE:EA:D0:BF:BE:A0:84:B3:DB:80:A9:26:D1:9B:53
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 056BD8D5
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9pWTQNC-6tC_vqCEs9uAqSbRm1M.roa
Signing time: Sat 01 Jan 2022 15:07:21 +0000
ROA not before: Sat 01 Jan 2022 15:07:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48806
IP address blocks: 85.203.8.0/24 maxlen: 24
85.203.24.0/24 maxlen: 24
85.203.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90953941 (0x56bd8d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6959340d0beead0bfbea084b3db80a926d19b53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f1:d0:ef:68:4a:05:d9:42:51:40:db:10:f0:
e6:22:59:0b:c0:34:fa:d0:d9:bd:ce:64:c8:f0:c7:
42:08:d8:08:1e:58:d4:90:9c:7f:a1:38:6f:d2:05:
b7:67:9a:10:a2:3b:3b:94:36:e0:dd:d6:3b:55:43:
72:d9:d2:4a:0e:7c:1a:87:9a:e7:9f:35:ca:be:93:
a3:86:6b:73:71:af:5f:3a:36:ea:4c:22:96:91:4a:
8d:2b:a9:0c:ad:4e:d8:ce:49:b0:7a:b4:b2:37:bb:
1b:1d:d5:68:2f:a2:9b:a6:af:79:09:88:bc:62:f3:
6a:10:ab:c5:d4:5b:0b:2f:5c:cb:8c:5f:2e:ed:dc:
9b:29:2e:03:56:55:ce:05:78:24:ad:bc:44:d3:cd:
2c:55:64:76:0d:c8:bb:13:b7:f7:f9:ce:cd:13:ec:
37:b7:fa:5c:0e:ac:33:2a:70:a2:01:68:c2:0a:f7:
f6:4f:5b:e3:03:dd:98:c6:cb:50:c1:b0:c6:8e:c6:
a4:94:ee:e8:69:86:a5:71:6b:71:08:0f:3d:94:02:
01:e1:89:27:61:2f:ef:41:28:87:6a:42:3c:28:1a:
c0:21:ca:48:13:c8:96:4c:fa:23:e2:27:e6:2f:83:
5f:62:f9:e3:e1:f1:d0:fc:d0:9f:80:79:38:39:c2:
63:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:95:93:40:D0:BE:EA:D0:BF:BE:A0:84:B3:DB:80:A9:26:D1:9B:53
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9pWTQNC-6tC_vqCEs9uAqSbRm1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.8.0/24
85.203.24.0/24
85.203.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c5:d0:15:9e:12:df:8e:ca:63:df:5e:07:36:89:9e:25:5d:
6f:9a:c4:f0:4d:55:21:03:c8:2a:eb:1f:7b:b8:88:5c:b4:36:
39:10:b4:eb:5d:25:db:c6:58:fd:be:1b:d3:03:a3:cd:02:e9:
8b:aa:03:cc:db:7d:0c:e8:20:76:2a:3c:bf:62:60:2a:68:a5:
be:b0:09:d6:23:a3:80:7c:9f:94:85:3a:0a:2a:b2:cf:e7:d5:
55:99:da:1f:89:bd:20:f5:b7:c7:f5:d7:b9:fd:cc:eb:a2:17:
87:16:cf:7a:df:43:fc:c2:b7:74:8e:2a:0a:b4:21:79:dc:88:
f0:59:d8:7d:42:63:a0:05:0f:21:c4:b4:df:ad:3a:ab:06:94:
75:73:33:9f:b7:e5:37:59:da:6b:4a:81:9b:00:32:33:4c:d7:
2f:ad:30:3e:e4:e5:cb:b5:cb:dc:29:6e:04:c4:a6:35:90:ab:
ba:44:11:86:c2:d6:d5:58:cb:fe:1e:1d:ca:a6:0c:89:e9:bc:
9f:e4:53:4f:ef:fd:5f:5e:17:e8:a0:f1:61:32:db:e7:d9:c8:
d3:a3:60:33:56:c8:c3:27:22:82:db:04:13:37:db:4e:25:03:
00:35:83:e2:b1:bb:0e:6a:1b:2d:ae:d6:fa:b4:de:d0:5f:4a:
57:f0:35:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org