Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lJtxCvpfw3v1aVwP1pQRbR3xPUQ.roa
File: lJtxCvpfw3v1aVwP1pQRbR3xPUQ.roa (raw, json)
Hash identifier: yJqpTH2KG0mep3u3KpCLFzcf2jFL+7SHGRoF4BoHThU=
Subject key identifier: 94:9B:71:0A:FA:5F:C3:7B:F5:69:5C:0F:D6:94:11:6D:1D:F1:3D:44
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08BDCC13
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lJtxCvpfw3v1aVwP1pQRbR3xPUQ.roa
Signing time: Sat 01 Jan 2022 07:04:27 +0000
ROA not before: Sat 01 Jan 2022 07:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 85.117.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146656275 (0x8bdcc13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=949b710afa5fc37bf5695c0fd694116d1df13d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0e:2e:50:6a:c5:c7:00:d0:e8:95:9d:85:32:
0e:5c:2b:f1:9c:0f:5b:fe:8d:0b:f9:06:5c:17:db:
c9:f8:43:e6:d8:ff:bd:20:a6:7f:e7:4b:56:0e:9b:
27:d3:00:ff:2f:41:89:5b:22:55:d1:97:9c:fd:52:
0c:88:94:48:68:1c:f6:cf:13:84:be:18:c8:bc:cd:
53:17:75:e6:32:aa:d5:a9:8b:ce:b8:31:0b:7d:88:
92:ea:12:e7:d7:0c:bd:42:39:de:3e:ed:5b:ab:9a:
0e:42:ee:29:4b:94:c8:f2:14:a3:1a:ab:51:4d:6e:
02:69:5a:ca:00:8c:f6:e8:84:2a:ea:f0:bc:57:b0:
29:11:6d:52:e1:50:0b:ef:c8:0b:d9:dc:1d:e5:85:
4e:38:22:be:d7:70:8f:7c:3d:e0:6e:0c:98:f3:4c:
86:a0:4b:c1:f9:aa:e7:8d:8b:60:0c:a0:1c:fa:82:
40:ba:ee:8e:76:4a:7a:35:3c:6a:3c:58:58:08:ae:
02:c6:4f:99:78:42:56:b9:38:80:7c:6b:a2:1a:bd:
dd:ba:59:f2:c8:1e:d4:41:46:b6:51:46:26:4b:e3:
c3:78:b8:f0:93:72:b9:93:ee:7d:b1:c5:ca:8c:36:
db:66:58:64:4b:3b:a8:2a:46:7d:96:86:c4:e2:8e:
7a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9B:71:0A:FA:5F:C3:7B:F5:69:5C:0F:D6:94:11:6D:1D:F1:3D:44
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lJtxCvpfw3v1aVwP1pQRbR3xPUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.240.0/24
Signature Algorithm: sha256WithRSAEncryption
23:10:29:1a:af:25:57:6e:d3:64:28:aa:e7:25:ac:6e:c8:38:
a3:d9:ad:7a:4b:4a:f2:fe:67:20:6a:f0:2f:7e:b9:3c:46:bd:
78:d1:4c:0d:a6:48:3b:f3:cc:7b:fc:4b:2f:bb:7b:59:60:27:
25:a0:0a:46:51:5e:cb:08:81:ff:a8:16:27:8e:6b:a3:42:3b:
5e:ce:ef:3a:97:06:d5:9e:ed:a6:b6:06:dd:b9:a7:22:c3:70:
a1:5c:be:ed:60:21:de:21:19:ae:e8:c2:c7:21:07:f1:bb:c8:
ef:bc:87:e1:b6:56:4a:1c:5f:2d:2e:8d:9b:b7:aa:37:1a:2f:
79:64:74:e6:9c:4a:0c:29:d2:49:d8:0f:71:b6:30:12:e8:f0:
fa:76:10:d9:ea:11:06:f5:73:8e:0a:e0:bc:e1:bf:1b:e5:d1:
bb:3a:9a:8a:02:47:c5:8d:d2:d0:e0:bd:02:6b:68:8f:00:5d:
34:38:6d:a5:97:d9:2b:e8:ba:bb:e1:57:28:76:6d:76:bd:eb:
61:aa:37:84:7d:d2:1e:79:05:22:2b:ce:e9:44:27:5e:f6:e3:
8c:4f:c0:ae:58:f5:1b:1d:a4:73:e2:61:f5:c9:cb:04:10:65:
50:04:c3:b7:4f:75:6b:c6:74:c3:fa:3f:f0:63:9a:ab:45:83:
08:2c:d2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org