Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gr6A20Q4cUgXpRz5oLLSA3zlspc.roa
File: gr6A20Q4cUgXpRz5oLLSA3zlspc.roa (raw, json)
Hash identifier: Oe1nJInTeNHM/n6Q+tEBCOmNQv6G3I/cAPoFF1XLH7k=
Subject key identifier: 82:BE:80:DB:44:38:71:48:17:A5:1C:F9:A0:B2:D2:03:7C:E5:B2:97
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C73277
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gr6A20Q4cUgXpRz5oLLSA3zlspc.roa
Signing time: Sat 01 Jan 2022 07:04:33 +0000
ROA not before: Sat 01 Jan 2022 07:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202425
IP address blocks: 85.117.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147272311 (0x8c73277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82be80db4438714817a51cf9a0b2d2037ce5b297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8d:d5:06:0a:df:76:8f:24:32:20:94:a0:74:
e7:ff:7f:bb:a8:27:56:16:b9:ad:14:61:a4:c6:ff:
a6:3d:30:e5:aa:7c:b8:90:af:6b:df:4a:94:21:97:
58:f4:81:b6:a7:d8:9e:f6:f6:6f:df:ff:84:4a:75:
70:66:a9:7e:85:60:50:a4:cc:59:69:b6:f0:f6:d5:
f7:ce:5d:b8:c3:1d:60:6c:ae:47:24:3e:0e:6d:99:
4b:47:64:55:bf:84:b1:64:7e:b9:62:cf:56:0f:ac:
73:00:d2:13:ae:65:e5:1d:d9:cf:6e:a6:95:72:33:
15:37:c0:16:35:ca:3d:58:5a:d2:c4:7f:75:20:b1:
be:4f:1e:cb:55:85:06:45:6d:b4:90:fe:10:4e:74:
63:21:06:96:4f:c0:53:e9:b6:7a:67:fe:9e:81:65:
7f:78:62:88:dc:cf:82:64:f1:f4:3c:a6:d9:44:26:
aa:55:d8:bc:55:0e:fd:31:8a:99:89:3a:f5:93:42:
44:d2:70:89:b4:d1:bb:26:39:1e:43:08:ad:4c:f1:
d6:3d:12:ab:f4:03:fd:40:31:af:fd:ad:a4:b9:f7:
0c:08:2e:f4:6d:83:90:f1:f1:8e:54:2c:ff:bd:1f:
5b:d5:0b:b2:3a:ff:4b:e2:b3:88:bc:9c:52:6b:0d:
14:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BE:80:DB:44:38:71:48:17:A5:1C:F9:A0:B2:D2:03:7C:E5:B2:97
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gr6A20Q4cUgXpRz5oLLSA3zlspc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.242.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ff:0c:1d:ef:3c:a2:5b:52:a9:71:c6:ee:cd:f1:bd:db:24:
c5:f7:4a:c3:96:10:8e:6b:0a:d8:ac:36:f1:20:67:b1:dc:81:
bc:b8:be:c0:e2:5f:13:d0:46:51:9b:bc:b3:58:aa:ed:96:18:
a9:36:a6:f6:d7:90:c5:41:54:ef:9c:87:ac:4f:14:c0:1f:f4:
fb:32:26:c2:ba:04:34:77:b6:80:66:74:a0:63:f1:d9:02:43:
a3:81:09:02:78:a3:2d:2a:28:a4:cc:38:b8:bc:59:1c:bb:de:
ca:a7:37:28:81:ea:2e:6c:8f:86:1b:75:19:41:8a:6d:70:53:
a3:e3:b7:76:d8:d6:20:5e:c5:94:0e:25:8d:87:a3:89:38:b5:
cb:7a:7d:52:b3:32:9c:10:4c:97:db:ee:07:16:5e:5a:97:b4:
32:60:48:a3:82:f6:96:5c:7f:a8:56:3d:b6:f9:a1:9c:15:7a:
07:e0:60:79:1c:4d:4c:8e:6f:47:7b:b3:0b:d8:1e:61:da:f8:
50:37:ed:a9:6a:78:b0:c4:5a:29:da:5e:ad:04:c6:27:7f:04:
8b:e4:13:a6:b0:85:92:ae:c9:83:19:f6:42:b9:b3:cf:2e:63:
bc:b2:7e:3b:d2:ea:eb:36:1d:f0:63:1f:df:50:e0:e7:ee:30:
b2:38:40:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org