Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/JD9Pi559dT1PyVxACPEIkexOxXc.roa
File: JD9Pi559dT1PyVxACPEIkexOxXc.roa (raw, json)
Hash identifier: XWvQaVnCTt/Df5LUtAVS8PxHH0usg01gpCNuWu6LEZ0=
Subject key identifier: 24:3F:4F:8B:9E:7D:75:3D:4F:C9:5C:40:08:F1:08:91:EC:4E:C5:77
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0A2B84B4
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/JD9Pi559dT1PyVxACPEIkexOxXc.roa
Signing time: Sat 01 Jan 2022 14:59:15 +0000
ROA not before: Sat 01 Jan 2022 14:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43444
IP address blocks: 85.239.42.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170624180 (0xa2b84b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jan 1 14:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=243f4f8b9e7d753d4fc95c4008f10891ec4ec577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:de:f4:71:21:65:0e:fb:d1:57:92:10:29:
49:77:bf:91:40:3b:97:3a:d7:34:b0:5e:75:86:f5:
63:d0:50:3a:01:ba:a0:74:1a:68:ec:a5:a5:78:e0:
51:e0:1a:81:9a:76:e0:d6:9e:18:fa:ee:81:5d:95:
81:a8:25:e4:cf:2f:1a:cb:ee:6e:c6:82:b8:f1:26:
cc:5a:aa:8e:d0:24:d0:5f:f2:72:40:92:f4:a7:9c:
6f:07:24:d7:12:47:68:81:6e:19:35:e7:e4:25:3a:
05:8c:50:4e:b3:59:32:cb:76:85:7a:0d:d5:f3:89:
49:65:cf:87:83:7b:d1:5b:0f:37:ba:22:1c:36:b5:
7f:91:8c:b2:a2:e6:3a:34:18:10:33:5b:74:d5:2f:
a9:28:fa:ff:5b:e8:52:f9:37:23:37:a4:f2:cb:c8:
af:aa:dc:ae:ff:1f:9e:12:9c:a3:bc:76:cf:d8:f3:
37:95:ab:1c:ed:eb:77:f6:96:1a:49:12:fe:f9:cf:
b6:b6:7c:d1:87:f4:3e:4d:51:5a:d9:e9:dc:23:c1:
64:3d:d1:48:86:c4:a5:59:a9:bf:1d:1c:39:09:52:
a3:a3:16:81:a1:44:3e:83:58:7b:c0:4a:46:e8:8a:
37:4f:b9:2c:02:a2:cb:7d:d1:4c:fd:00:97:68:49:
6a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3F:4F:8B:9E:7D:75:3D:4F:C9:5C:40:08:F1:08:91:EC:4E:C5:77
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/JD9Pi559dT1PyVxACPEIkexOxXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.42.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:e2:fc:cb:7a:62:59:ec:dc:ea:75:ff:33:36:d2:df:39:95:
e4:4b:c3:1b:b9:7b:e6:94:bf:e9:ae:df:fa:26:1b:06:b5:54:
89:11:be:8b:e4:3d:2d:7b:a7:5c:75:13:bd:e6:51:1e:20:82:
b6:98:ce:b6:98:2e:34:eb:8d:02:50:2a:b5:1e:6b:d8:f0:66:
48:97:b3:fb:75:83:69:d2:5d:a4:5f:68:15:e2:26:9f:0b:75:
b9:6f:40:61:e7:cb:d2:fe:3c:34:38:82:99:d2:ed:5a:be:bc:
f9:c6:0d:da:13:d4:36:c7:78:1b:a9:fc:98:3e:ae:e1:10:35:
62:29:59:9f:ce:3b:ba:db:81:92:bc:e7:83:a7:fa:ff:72:b1:
55:2b:d2:8e:a5:a7:2d:c3:0e:1d:ab:b3:f1:57:6d:60:21:12:
31:39:3c:35:a0:0b:19:01:89:0b:27:a2:c2:ae:76:03:a4:16:
62:74:26:f8:52:7e:48:49:46:3d:7b:f8:0f:c8:39:77:51:aa:
46:77:83:0a:1b:90:82:db:18:3e:6a:07:be:21:8e:3b:ad:94:
c4:02:76:6b:0e:f8:20:1c:59:35:c3:4c:ea:d6:c8:d0:39:e9:
fe:14:88:a8:b4:04:b7:a3:03:b1:a5:05:42:31:b5:ff:b7:c3:
c4:0f:85:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org