Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/M13H0AaPHI9SNJrl3GbvuHICWgs.roa
File: M13H0AaPHI9SNJrl3GbvuHICWgs.roa (raw, json)
Hash identifier: hCiEcVQIi6rrtC31xKPdI2a3n4wgtSHcYVj4rlE6q4I=
Subject key identifier: 33:5D:C7:D0:06:8F:1C:8F:52:34:9A:E5:DC:66:EF:B8:72:02:5A:0B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2C93433C
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/M13H0AaPHI9SNJrl3GbvuHICWgs.roa
Signing time: Thu 09 Jun 2022 00:38:03 +0000
ROA not before: Thu 09 Jun 2022 00:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30793
IP address blocks: 85.31.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 747848508 (0x2c93433c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jun 9 00:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=335dc7d0068f1c8f52349ae5dc66efb872025a0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:77:04:ea:c9:80:ec:43:55:97:69:b4:1b:a9:
ea:78:f6:6e:d6:ff:73:3f:8e:cc:ae:05:88:a3:5f:
9f:f7:1d:92:e5:a2:81:62:3e:79:5f:ba:03:cc:32:
22:9f:a1:0a:60:94:b8:cb:5f:2c:6d:96:38:8f:a2:
b4:5a:d6:e1:74:ca:3b:4d:18:af:6c:f6:24:00:2a:
75:00:a4:04:21:1b:71:19:0c:6b:ed:88:65:16:9b:
78:08:60:d3:87:ca:0c:a5:00:27:c9:3d:4b:58:fd:
74:4d:f9:16:c7:6f:d1:4c:cf:a4:e2:c4:a5:15:06:
a9:49:33:30:97:4c:61:45:a7:cd:e6:b2:ae:74:ee:
91:44:11:20:fa:15:d5:b7:9c:69:0a:29:d7:ea:95:
41:95:af:d2:73:d7:1d:8f:bc:76:dd:37:79:28:0a:
ee:8c:fd:25:51:c1:01:da:55:ef:21:60:87:82:1e:
9f:fb:9f:84:a1:b9:f4:4a:9e:e6:14:8e:e7:56:25:
af:1d:6f:df:a5:de:df:60:5d:f7:0b:9c:6f:f1:63:
02:14:bb:fe:ee:46:3f:45:ea:04:9b:9f:cc:8a:0c:
d1:97:fe:39:20:06:1c:a1:03:b0:cd:69:d4:04:34:
73:55:2d:00:c7:82:2f:3e:c4:15:ac:43:5a:28:cc:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5D:C7:D0:06:8F:1C:8F:52:34:9A:E5:DC:66:EF:B8:72:02:5A:0B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/M13H0AaPHI9SNJrl3GbvuHICWgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:da:a8:e6:27:84:7c:55:0a:a3:4a:e5:45:75:45:00:35:c0:
d5:00:0f:dc:78:46:50:36:f6:c2:bd:fe:a2:d3:7e:bb:d0:9f:
50:3e:6a:a7:f0:42:ad:d8:55:08:ac:a1:fa:3a:06:ef:2d:7b:
01:eb:1c:f0:ab:ea:d5:e2:ae:07:73:b5:0d:12:0e:b6:fc:48:
6b:78:8c:72:79:15:3a:f3:eb:89:3e:e9:66:72:55:67:87:25:
07:d9:aa:a7:97:fe:03:d8:5e:a6:60:76:93:dd:d2:6f:b0:6d:
a3:4c:1e:e2:3c:d7:7d:6c:aa:f8:7e:b8:49:01:05:4c:2a:f5:
04:18:b1:1f:f5:2e:3d:82:57:9d:95:4e:fb:04:d6:9a:97:b1:
a9:82:34:e8:14:6c:59:d4:f3:f1:ee:a8:ed:46:40:ec:82:c5:
98:d1:0c:03:a3:c9:39:b2:0e:42:dc:7d:34:38:98:31:f6:79:
78:a4:c1:d1:7c:8e:1b:63:2a:d5:a3:63:d1:32:29:1f:4e:d4:
7c:f4:3a:dd:5a:38:6f:5b:94:20:b6:bf:9a:44:4e:46:1c:e6:
0d:2f:5e:59:23:f2:68:46:2f:68:78:50:4b:34:0e:f7:bb:af:
7c:04:6b:73:79:ef:04:08:63:3f:e6:ff:1f:1e:1d:da:05:db:
e3:ae:dc:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org