Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/f0Ucu81a4BoS7ld2aRJA6V4XdB0.roa
File: f0Ucu81a4BoS7ld2aRJA6V4XdB0.roa (raw, json)
Hash identifier: fpFTwLECh03C+/iWBDVw+ECtWs/1zRV4nxr7ZT03L6c=
Subject key identifier: 7F:45:1C:BB:CD:5A:E0:1A:12:EE:57:76:69:12:40:E9:5E:17:74:1D
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C5D2CB
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/f0Ucu81a4BoS7ld2aRJA6V4XdB0.roa
Signing time: Sat 01 Jan 2022 07:04:32 +0000
ROA not before: Sat 01 Jan 2022 07:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51714
IP address blocks: 85.117.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147182283 (0x8c5d2cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f451cbbcd5ae01a12ee5776691240e95e17741d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:96:db:65:b0:d3:0a:ae:38:6a:18:4c:47:
36:73:50:5d:9a:ec:8c:23:65:02:45:91:0a:58:4f:
03:3b:ca:c3:2b:6b:20:0b:ef:4d:ac:28:67:11:9e:
6f:bd:b8:74:65:5f:7f:31:83:70:f9:8b:a6:ee:eb:
a7:29:d9:29:0b:9b:47:30:62:41:db:8e:9a:62:4f:
09:ec:1b:cc:02:83:f7:dd:06:53:b0:0e:2e:ee:30:
61:cd:6f:8c:fd:9a:ed:82:5b:d5:ab:93:6d:bb:c2:
ae:4b:b0:e5:1e:2b:ea:c6:2c:89:eb:0f:70:fd:38:
9d:d6:6d:02:57:83:59:ed:93:6e:05:04:54:f1:b6:
43:5c:6c:c0:42:37:c5:23:3a:09:19:47:82:7c:0e:
68:d7:b9:d3:6a:3e:0e:bb:b3:84:d6:d2:33:21:d5:
14:44:51:47:01:3a:46:f1:78:df:f9:c9:b8:e5:f4:
a6:8e:c9:67:9b:83:da:e2:89:33:3d:29:ed:91:a7:
cf:33:ff:5c:38:d4:ec:65:74:10:45:c3:a9:74:5d:
79:9c:76:6a:57:29:76:35:e7:1a:0a:fb:36:6d:a9:
02:af:12:11:9d:f3:84:ed:3b:78:87:6d:20:0c:2f:
f7:d1:f8:ef:e6:6e:3b:74:22:89:4c:70:3b:e9:a5:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:45:1C:BB:CD:5A:E0:1A:12:EE:57:76:69:12:40:E9:5E:17:74:1D
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/f0Ucu81a4BoS7ld2aRJA6V4XdB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.241.0/24
Signature Algorithm: sha256WithRSAEncryption
36:35:fd:9e:e9:51:ac:5b:20:47:9b:f3:06:78:1f:66:5c:bc:
e3:ff:58:f2:12:f8:b2:84:ed:d6:7c:3d:eb:04:4c:e3:be:76:
24:ef:c4:59:da:27:a1:0c:d8:0d:d8:e4:b9:2c:db:0d:89:7c:
74:1d:0c:ba:88:c7:75:35:67:0a:d2:74:67:83:0f:9e:14:c8:
c8:f1:bf:48:f3:4b:6a:54:50:2b:4c:14:a9:60:70:29:9f:39:
d1:fe:55:b7:68:ef:16:1a:c5:63:34:e4:2d:8f:9f:35:5a:70:
4a:45:1d:84:61:55:f5:a7:6a:b8:7e:75:81:7b:83:4f:5e:16:
b3:56:dc:9c:36:75:08:8d:36:da:01:38:21:17:2a:3c:c7:7c:
bb:36:c4:b8:79:c9:74:02:90:56:1f:73:84:0f:15:df:44:37:
13:df:60:e3:81:e8:d4:10:bf:8a:4c:89:f6:c9:25:ce:7b:91:
e2:90:94:5d:c7:79:71:4f:cc:57:2d:ba:45:89:06:b2:b5:bc:
e7:f6:b8:d9:ff:9e:07:9e:65:8a:ca:b0:75:a1:9d:07:10:f1:
e0:83:2f:c2:4e:92:b7:1e:4f:2f:e6:53:f4:20:7d:96:40:d7:
bb:30:59:d1:23:f4:0d:33:f1:be:88:b2:69:bb:5b:39:4f:ae:
30:9d:41:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org