Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/6afa3c-c069-4604-9df8-7b3f82ee2587/1/7JWYaJX-Jo8f2k7p9ghJSpZsp04.roa
File: 7JWYaJX-Jo8f2k7p9ghJSpZsp04.roa (raw, json)
Hash identifier: Q7Dlj36q2gWYosTkk+ddVtrBKLT/31d1tkZhoZT/Rcg=
Subject key identifier: EC:95:98:68:95:FE:26:8F:1F:DA:4E:E9:F6:08:49:4A:96:6C:A7:4E
Certificate issuer: /CN=31fa64addcb0f86580c388912341cc47c39c4aed
Certificate serial: 03116F96
Authority key identifier: 31:FA:64:AD:DC:B0:F8:65:80:C3:88:91:23:41:CC:47:C3:9C:4A:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mfpkrdyw-GWAw4iRI0HMR8OcSu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/6afa3c-c069-4604-9df8-7b3f82ee2587/1/7JWYaJX-Jo8f2k7p9ghJSpZsp04.roa
Signing time: Sat 01 Jan 2022 05:05:20 +0000
ROA not before: Sat 01 Jan 2022 05:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202334
IP address blocks: 185.85.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51474326 (0x3116f96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31fa64addcb0f86580c388912341cc47c39c4aed
Validity
Not Before: Jan 1 05:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec95986895fe268f1fda4ee9f608494a966ca74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a3:5b:9d:22:c5:e5:1d:5d:8b:00:36:39:c3:
10:a4:a4:57:db:b2:af:fc:88:de:b6:fa:3f:dd:51:
d6:dc:46:07:a3:9b:99:66:e8:84:84:4d:4b:8d:1d:
fa:12:f2:31:e6:3c:87:0f:cd:dc:1d:c5:e5:df:72:
a4:13:48:1f:86:ba:ef:d3:98:09:d4:ba:fa:0d:5c:
a5:44:40:27:bb:4e:18:c2:2f:09:a9:d8:a2:07:90:
2e:ff:cd:77:c2:a3:f6:29:1c:28:12:bd:ce:8a:51:
de:b0:95:01:ff:b9:3f:64:c4:9b:a6:aa:46:4c:8d:
86:5e:63:ab:e4:70:f5:a9:dc:af:99:09:77:b1:bc:
29:fe:8b:0f:09:55:60:36:3b:e3:f4:0a:34:05:05:
7b:46:62:80:e4:e7:a1:32:d0:43:c1:a7:0c:12:9a:
7f:4e:f2:36:29:c5:26:1f:ba:44:60:bd:55:1c:0f:
87:69:8d:44:31:a5:4c:13:5a:7b:7d:83:ba:1c:4d:
c1:59:12:f6:92:95:75:a1:09:69:c3:b9:f5:f6:fa:
da:4a:49:e4:14:36:4b:e2:ab:2d:db:4a:50:9e:66:
96:6d:0b:13:18:26:c8:8d:82:91:39:9e:3d:de:e7:
27:cf:be:56:26:72:06:63:28:e3:e0:f4:78:8a:e2:
b8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:95:98:68:95:FE:26:8F:1F:DA:4E:E9:F6:08:49:4A:96:6C:A7:4E
X509v3 Authority Key Identifier:
keyid:31:FA:64:AD:DC:B0:F8:65:80:C3:88:91:23:41:CC:47:C3:9C:4A:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mfpkrdyw-GWAw4iRI0HMR8OcSu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6afa3c-c069-4604-9df8-7b3f82ee2587/1/7JWYaJX-Jo8f2k7p9ghJSpZsp04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6afa3c-c069-4604-9df8-7b3f82ee2587/1/Mfpkrdyw-GWAw4iRI0HMR8OcSu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:5d:19:d0:48:3c:25:af:64:57:ea:e3:c4:1f:cb:dc:e6:84:
e5:c5:a0:b2:33:70:1d:46:01:ba:29:79:4f:b1:93:b3:ea:da:
76:94:8c:b6:ea:45:2d:36:fa:f7:f1:0a:eb:71:bc:34:c2:05:
41:12:57:4b:4d:e8:58:04:d6:68:1c:75:22:1f:57:dd:d3:38:
62:33:25:d6:0c:fc:35:e5:59:b7:0b:17:8b:47:81:04:8f:d4:
a7:6f:9c:c7:fe:b3:53:1d:87:de:7d:8c:2d:74:be:77:a0:b1:
c0:10:7a:b8:6d:27:0f:d7:d4:e7:db:89:9c:47:b6:51:74:bb:
24:55:36:ef:f8:03:6c:e6:3c:42:6d:eb:c4:dd:73:f0:78:fe:
27:78:43:7e:f3:5e:52:91:67:58:b8:62:3a:9b:02:9d:a8:b9:
ff:d9:80:73:bd:d7:a4:ee:43:a2:af:31:f8:36:9b:27:89:8e:
5b:17:49:b4:87:ec:8b:b4:87:d4:bb:e4:ed:d8:77:b3:85:01:
be:d2:a0:5c:8d:d4:8e:b6:56:1e:e2:60:fe:07:d7:5c:1d:b0:
d3:e7:f9:db:c2:41:97:41:b1:8a:41:12:65:ae:57:96:fa:8c:
b9:b3:01:c0:bd:45:8b:3c:e5:94:87:a4:bb:4e:93:6f:37:5b:
a6:94:38:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-fra.rpki-client.org