Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O81Zghh2cFtcDrsRjgHxUq1yIy8.roa
File: O81Zghh2cFtcDrsRjgHxUq1yIy8.roa (raw, json)
Hash identifier: eNb2DtZMUot70hC/uFoTt1rxW0gnP1xgj9u3lhgm2lM=
Subject key identifier: 3B:CD:59:82:18:76:70:5B:5C:0E:BB:11:8E:01:F1:52:AD:72:23:2F
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 01833789EF1FC2F75E0267B070242246379D
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O81Zghh2cFtcDrsRjgHxUq1yIy8.roa
Signing time: Tue 13 Sep 2022 15:48:49 +0000
ROA not before: Tue 13 Sep 2022 15:48:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26548
IP address blocks: 85.239.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:89:ef:1f:c2:f7:5e:02:67:b0:70:24:22:46:37:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Sep 13 15:48:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bcd59821876705b5c0ebb118e01f152ad72232f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b7:0d:cb:75:eb:00:8c:f5:51:ba:4e:45:11:
97:08:84:75:20:85:fd:d4:26:c2:3e:6d:1d:56:c2:
83:ea:00:6e:88:47:92:7c:48:89:1d:f5:ea:b0:fc:
d3:ec:a6:96:02:bb:bf:fc:26:f3:2d:b2:53:c1:a0:
f2:a4:15:5c:4f:e6:16:22:7e:b2:6c:26:25:3b:a0:
86:ed:ff:f6:5b:23:4b:e9:59:e1:f8:33:4f:f2:10:
23:f9:f6:57:b4:59:9a:ff:14:37:8f:5c:6b:97:73:
60:ff:9a:a0:33:d8:4a:da:82:c7:c8:33:b1:d6:32:
a7:71:cf:e0:b2:05:e7:8c:82:68:36:ca:e4:97:82:
9a:85:42:47:60:3a:d9:22:3c:23:37:ed:00:55:0a:
44:be:15:c0:e3:74:3f:83:67:b3:87:cf:16:3b:bc:
2e:0d:48:6c:d3:df:41:66:f4:68:7b:16:f5:04:bc:
0a:e4:62:c9:24:60:8e:d6:a7:25:de:8c:44:93:0f:
9f:e5:fb:1d:8d:8f:85:68:a3:9b:ee:76:5a:ab:1a:
f2:c5:73:ce:5e:c7:8b:9c:f7:05:2d:44:05:f3:57:
9f:66:59:06:f1:b2:e6:27:89:b8:75:c6:5d:56:54:
91:03:ff:8b:e1:7b:76:94:54:55:09:84:7a:5e:3a:
07:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CD:59:82:18:76:70:5B:5C:0E:BB:11:8E:01:F1:52:AD:72:23:2F
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O81Zghh2cFtcDrsRjgHxUq1yIy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.35.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e9:dc:5f:1f:fa:82:f7:81:c6:25:ca:0b:dd:f1:84:d9:39:
ac:11:2a:0c:b4:55:d9:a5:64:07:86:a3:57:69:23:b7:a7:8f:
3a:68:da:fb:47:9f:10:d2:6c:0c:75:b3:02:ad:14:85:0a:e0:
c4:3b:62:84:7e:56:9b:13:08:bd:39:56:45:c0:70:bc:7d:d8:
a3:7c:f4:4b:ca:8f:ae:57:76:74:c9:66:62:3c:1a:b8:fa:6c:
40:b8:f1:80:61:90:72:f0:71:be:30:d6:8f:53:bc:31:a8:7e:
91:f4:1b:a6:c1:83:f3:7d:cb:f9:73:91:46:80:87:27:cc:15:
46:dd:68:cd:69:b9:ac:9d:48:3b:6f:da:18:71:55:3c:69:5f:
1f:cb:ec:61:ef:5d:52:3d:cb:c0:7c:71:17:44:27:c6:14:27:
cd:6c:d6:68:84:8b:d9:21:a4:d4:4c:82:6e:69:db:76:c6:34:
d2:1b:ca:e4:c7:f5:f8:e5:cf:58:7c:b6:16:12:79:b3:51:cf:
da:6f:44:bd:ed:a0:7f:39:f2:01:50:4d:d0:65:86:97:92:9a:
c5:f1:21:37:45:24:91:b3:56:0d:5f:4d:3b:bd:4a:4a:87:fc:
d8:70:2e:9b:86:5c:41:77:4c:33:bf:a3:e2:dc:20:be:65:b0:
28:ce:56:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org