Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/1-ZNyUp5iJuN7mObjKdSWB5F9Ajs.roa
File: 1-ZNyUp5iJuN7mObjKdSWB5F9Ajs.roa (raw, json)
Hash identifier: fR+qTtLm0FtZxaFpjh8fIA7vCx3cK/VcFLHo3RugdeA=
Subject key identifier: F9:93:72:52:9E:62:26:E3:7B:98:E6:E3:29:D4:96:07:91:7D:02:3B
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0A29384F
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/1-ZNyUp5iJuN7mObjKdSWB5F9Ajs.roa
Signing time: Sat 01 Jan 2022 14:59:14 +0000
ROA not before: Sat 01 Jan 2022 14:59:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 85.239.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170473551 (0xa29384f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jan 1 14:59:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f99372529e6226e37b98e6e329d49607917d023b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:f2:cc:c9:2f:3a:8d:09:a4:02:fa:59:16:
17:89:b1:19:55:1d:05:cb:12:ea:f8:ef:8a:62:f9:
3f:fd:d7:81:b7:d9:08:c6:88:fa:45:46:16:05:74:
6a:48:a2:48:e9:b9:7c:cc:1c:2f:bb:b5:f3:c9:4b:
52:c9:44:e8:c3:b6:0d:4a:9e:0d:5a:0a:cb:c1:cc:
2f:ee:13:4d:31:7a:d6:2c:98:df:9e:8f:66:06:8f:
cf:e5:64:5a:69:cb:52:99:fc:5e:19:d9:1a:94:59:
45:5c:89:64:db:44:cc:c6:47:3d:81:2a:bd:81:e8:
b4:bd:67:66:bf:c3:92:47:2d:61:bd:0c:ec:3c:39:
60:d4:43:06:14:cf:28:99:4e:5e:d2:4f:79:01:b8:
0d:b3:b6:3e:0f:4b:28:c6:02:5d:9c:68:74:01:27:
8b:05:27:57:63:51:dd:13:a2:7a:14:c3:c0:8a:29:
cc:bb:0b:ef:4d:32:70:67:23:81:73:cc:e1:de:92:
04:49:d4:58:02:9a:c7:0b:87:40:db:b4:37:d2:4c:
f7:41:b3:ea:29:b5:71:b3:99:48:b3:91:81:ad:a6:
6c:29:0c:f5:55:da:76:34:2b:c5:11:6d:32:a8:69:
64:95:be:92:d5:86:7f:04:0d:9a:84:88:31:16:06:
02:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:93:72:52:9E:62:26:E3:7B:98:E6:E3:29:D4:96:07:91:7D:02:3B
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/1-ZNyUp5iJuN7mObjKdSWB5F9Ajs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.56.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:0f:c5:78:b6:ce:d1:56:1c:a6:88:55:4f:e7:44:b8:9f:01:
96:8b:43:bc:80:b9:0e:dc:38:e3:10:aa:9f:c5:31:1d:00:ad:
09:9b:bc:d6:9e:45:15:f4:76:92:58:5b:55:68:0c:ae:79:58:
80:55:72:b7:0c:17:8f:54:b9:60:c0:89:9a:22:c0:f0:35:ac:
00:df:38:70:22:6b:28:a1:51:07:52:cc:85:99:d0:08:b3:28:
52:a5:2f:e2:6f:10:cc:af:a1:5a:87:6a:96:ab:a0:cd:9b:99:
3a:7d:7c:03:cd:97:ed:71:57:48:8f:df:21:fd:be:81:db:1e:
75:3f:d1:7a:ae:81:cb:77:d7:43:27:4c:04:a9:bf:8f:00:9d:
8e:0d:8f:81:55:ec:37:7a:03:92:7b:b6:65:ad:b7:0a:f9:e3:
ef:ef:b2:c5:7a:ab:8b:94:2d:b7:32:f8:77:48:8e:a3:d0:48:
68:1b:22:8b:3c:1f:d6:d8:8d:53:c1:e3:10:ed:cb:db:2e:52:
03:06:f9:0c:b2:9d:f7:30:4a:f2:fa:17:0f:c3:54:46:04:d1:
f7:08:9f:ac:79:85:2a:f4:73:d5:b3:99:4c:fc:87:e7:ac:09:
1b:5c:32:21:5f:56:b3:47:1a:de:41:1a:6c:66:e1:31:9d:2a:
9d:ff:8c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org