Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P64l-fH_jNHtidHkeEk2sJCYW6w.roa
File: P64l-fH_jNHtidHkeEk2sJCYW6w.roa (raw, json)
Hash identifier: TCZU242/cVaIHqu4omiGuSinl7DqgqZXCpPAoJleO4I=
Subject key identifier: 3F:AE:25:F9:F1:FF:8C:D1:ED:89:D1:E4:78:49:36:B0:90:98:5B:AC
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0A2F30B6
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P64l-fH_jNHtidHkeEk2sJCYW6w.roa
Signing time: Sat 01 Jan 2022 14:59:18 +0000
ROA not before: Sat 01 Jan 2022 14:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 328543
IP address blocks: 85.239.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170864822 (0xa2f30b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Jan 1 14:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fae25f9f1ff8cd1ed89d1e4784936b090985bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:55:0d:a5:9d:2c:a4:ee:23:61:71:12:a3:
2f:6a:36:a2:34:c6:0a:63:c2:0e:a8:ba:68:fe:af:
9c:f7:1a:48:b1:53:29:fa:4c:49:b8:9a:82:3f:a9:
f5:e4:cc:b9:54:12:26:6e:3f:53:be:04:dd:a3:af:
4f:c6:62:f8:03:b3:bd:69:c8:cd:bc:25:b3:4b:60:
cd:a7:23:b5:b4:7b:bd:25:66:f2:e6:38:d5:c1:0c:
76:df:b5:e0:c9:aa:5e:fb:cc:03:8d:c7:92:45:cf:
73:a8:ed:8c:fc:31:f8:30:23:bb:2c:23:1a:6e:96:
d8:b0:f9:a5:8d:d3:6f:1a:ad:ee:70:56:6c:e8:6d:
14:b2:8d:40:ff:83:63:e7:69:23:ff:ed:de:16:cf:
9f:e7:13:24:cd:5a:78:1d:78:bd:1a:a6:0d:b7:3c:
f7:42:28:ec:45:82:cd:71:29:6e:1c:91:47:dc:ef:
92:ff:5b:b7:56:f1:4d:af:80:72:85:97:a8:15:43:
69:56:63:83:ce:c9:c1:80:10:b0:b3:8d:b9:3b:d0:
0e:bc:75:17:88:76:14:27:99:c9:07:1b:69:33:5c:
3a:2e:d2:86:a9:a3:97:bb:8a:d0:a6:b4:86:01:3f:
12:be:8b:f5:22:e6:f8:a9:e9:03:18:0f:17:55:06:
dd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AE:25:F9:F1:FF:8C:D1:ED:89:D1:E4:78:49:36:B0:90:98:5B:AC
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/P64l-fH_jNHtidHkeEk2sJCYW6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.56.0/21
Signature Algorithm: sha256WithRSAEncryption
74:0b:fc:02:1e:df:8a:9c:07:5e:c4:cc:d2:0b:1e:75:e0:ad:
c8:f2:4f:90:e4:05:80:d6:b2:0f:ce:f1:cf:50:02:98:f5:fa:
76:5d:7b:9b:43:6b:ba:df:6f:07:c6:05:a3:ff:bf:95:a6:6a:
07:6a:8a:fc:2f:8f:d6:51:55:53:cf:20:39:10:cd:e5:7e:52:
a6:3e:df:80:06:c4:3f:8f:82:35:bd:19:0b:32:90:40:62:46:
a5:58:04:fe:3b:f4:18:74:bc:8f:b6:d0:11:e6:65:9e:71:51:
b1:0c:af:04:f5:a1:c7:72:bc:27:e0:db:49:f4:16:03:2e:fd:
77:c1:41:54:8c:f4:3d:6d:b7:dc:ae:f5:73:c6:70:11:99:fb:
b3:d1:dd:7e:77:3e:fd:11:6b:b2:c6:9a:86:1e:ec:64:2b:e1:
0d:80:11:5a:54:49:33:82:12:2c:17:fb:40:77:88:4c:98:fb:
0b:d4:7a:e3:5f:55:ec:c8:48:82:0e:e4:9f:3f:d7:d5:03:e5:
4e:c0:9f:cb:da:85:c7:36:96:cd:91:7a:0b:cf:c3:92:75:fd:
ba:87:b5:7e:17:e6:02:f9:70:fb:76:da:5b:1c:40:50:5d:f7:
79:91:e1:29:98:5e:cb:07:4b:14:03:70:cc:36:08:fb:d8:5f:
30:54:86:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org