Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/MhTujq3ckBMNWiSjFwj2tHCT_NU.roa
File: MhTujq3ckBMNWiSjFwj2tHCT_NU.roa (raw, json)
Hash identifier: ilQLToZryyCvrfyoyrSLJ2V+Bu/Lb/894R7UNaIwyAc=
Subject key identifier: 32:14:EE:8E:AD:DC:90:13:0D:5A:24:A3:17:08:F6:B4:70:93:FC:D5
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0AF44EFE
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/MhTujq3ckBMNWiSjFwj2tHCT_NU.roa
Signing time: Tue 29 Mar 2022 12:37:07 +0000
ROA not before: Tue 29 Mar 2022 12:37:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 85.239.34.0/24 maxlen: 24
85.239.56.0/22 maxlen: 24
85.239.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183783166 (0xaf44efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Mar 29 12:37:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3214ee8eaddc90130d5a24a31708f6b47093fcd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b0:cd:b6:12:87:ce:82:89:88:b3:d5:f9:65:
93:41:d8:2f:c2:fc:52:12:3d:ab:f1:72:db:3f:a7:
83:10:19:2c:1a:bf:bf:1a:27:6b:f4:2c:06:0b:f9:
51:70:40:21:6c:d9:7e:5c:94:22:04:8b:50:c9:61:
dc:80:86:6f:b5:38:8c:ec:9f:6e:ad:98:c3:06:9d:
21:9d:28:24:7c:99:b5:44:cd:b4:cb:f8:5a:4f:be:
70:6d:b5:3b:62:f1:f4:87:dd:6b:5a:ec:27:ba:44:
dc:9d:ce:4a:9d:75:e5:47:6f:0e:a6:d3:8d:ab:ed:
cb:9b:ea:c6:ed:50:7c:0f:fa:2c:0f:e8:89:e1:93:
bc:dd:2c:53:49:c8:7b:dc:e3:4b:c6:e8:29:a8:db:
5d:cb:42:b6:bd:4b:92:13:eb:4e:4d:d3:8b:3e:a6:
4c:a8:af:ff:ff:3e:28:f1:6e:b6:05:c4:cb:fd:ef:
27:28:82:c0:10:e5:06:c1:35:e9:39:3b:d1:96:50:
62:7d:b1:bb:8f:27:6e:1c:ff:3e:99:ab:bb:e0:f2:
86:9c:0d:a1:1f:63:e7:4f:55:43:fa:89:3f:68:ee:
4c:dd:c3:51:5a:0c:81:7e:4b:a3:8b:a1:00:eb:a6:
22:4f:26:57:b4:bb:a9:6c:5b:84:ce:12:a3:0a:96:
c0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:14:EE:8E:AD:DC:90:13:0D:5A:24:A3:17:08:F6:B4:70:93:FC:D5
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/MhTujq3ckBMNWiSjFwj2tHCT_NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.34.0/24
85.239.56.0/21
Signature Algorithm: sha256WithRSAEncryption
50:f8:62:b1:57:e9:70:cd:46:86:48:84:be:54:a8:aa:41:6f:
2f:29:c2:d8:e3:97:19:2d:30:f8:34:e3:dc:cb:c1:14:e5:6d:
ea:a4:68:55:7a:87:39:b2:71:7e:19:39:4a:ef:e6:e9:9a:c0:
48:2c:77:a4:d9:7c:cc:cf:7d:c8:3b:6b:93:5a:47:05:6b:82:
ec:bc:aa:70:ab:13:3f:23:b5:21:3c:a6:4b:76:17:21:90:12:
82:1d:27:04:60:59:01:7c:d3:1a:b8:42:18:46:ad:64:f0:2f:
a7:42:87:81:4f:f5:8d:7a:23:ac:37:c8:e8:18:f8:59:e9:0a:
d7:7a:dc:28:50:9a:2b:c0:ba:78:f3:11:c4:22:f9:69:1f:62:
9d:b5:0a:7b:7a:b0:d5:8b:3d:76:cc:88:97:d1:5d:6c:8a:46:
6b:22:32:6c:a9:df:06:c7:44:8b:fc:df:f0:56:7b:d2:24:37:
6e:d4:46:4f:f5:2b:81:96:6b:c3:af:e5:f8:7d:ee:10:52:7c:
d6:ab:75:69:99:be:68:4a:3c:df:5e:95:d8:1f:06:c2:dc:f7:
78:63:e2:05:fd:b7:3f:67:f2:60:77:19:d6:3f:68:7b:f0:80:
14:d6:b7:75:14:2c:55:85:2e:5f:44:e1:9f:82:36:57:7d:01:
70:65:39:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org