Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/UZpk-pM9ihKKhkZoHJC78YfNRb4.roa
File: UZpk-pM9ihKKhkZoHJC78YfNRb4.roa (raw, json)
Hash identifier: AMwrZWg52lSzC16G1kb9wVzo65WT3zAqrrJtI1257LY=
Subject key identifier: 51:9A:64:FA:93:3D:8A:12:8A:86:46:68:1C:90:BB:F1:87:CD:45:BE
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0A92D021
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/UZpk-pM9ihKKhkZoHJC78YfNRb4.roa
Signing time: Tue 15 Feb 2022 19:48:02 +0000
ROA not before: Tue 15 Feb 2022 19:48:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 85.239.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177393697 (0xa92d021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Feb 15 19:48:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=519a64fa933d8a128a8646681c90bbf187cd45be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:41:08:6f:13:22:b8:e6:cf:20:2b:54:67:2f:
cd:03:5c:66:45:89:28:4a:b9:f3:f5:97:58:26:a3:
25:e1:3b:17:a9:53:96:31:49:89:b5:db:27:41:3d:
ba:32:fa:d7:b5:2d:81:21:45:05:78:a3:8d:ff:e3:
28:29:a4:d3:4a:e9:6f:b2:72:6d:2c:16:d5:f6:39:
fe:9f:00:da:38:6f:f8:d4:f3:fd:4c:34:15:ad:34:
f9:11:9c:87:a2:b2:85:47:18:0e:e6:55:ea:70:2d:
db:a3:db:3c:82:4c:cd:c8:7d:c8:2c:bd:a3:58:38:
29:a0:ae:6f:dd:60:e3:6d:fa:8b:d3:7f:be:1b:b3:
57:a6:c7:c8:3e:ca:3f:f6:2f:82:88:a6:d6:4c:ac:
4b:38:80:f6:db:c7:74:8f:9b:47:35:af:01:32:c6:
7f:2e:87:2d:36:d4:4b:65:c6:d8:25:1d:f4:10:0d:
b5:d4:a0:11:a7:1a:3e:04:78:f3:a0:8d:5e:f7:06:
1e:5f:e8:8a:75:0b:09:8b:84:6f:91:72:02:0c:b1:
7c:89:ca:f3:48:3e:9a:1f:94:bd:fd:07:07:58:20:
22:88:b9:76:71:bb:25:41:1e:86:2d:5a:66:93:0f:
70:9b:27:38:27:e8:a5:4b:e6:a3:c6:48:4c:f2:cc:
f3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9A:64:FA:93:3D:8A:12:8A:86:46:68:1C:90:BB:F1:87:CD:45:BE
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/UZpk-pM9ihKKhkZoHJC78YfNRb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.56.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:c5:99:6f:b8:3f:af:31:fb:2b:bb:8c:1d:4e:76:e3:91:e5:
16:b5:4c:d9:38:68:54:30:47:b7:cb:f8:b0:69:5a:1a:80:7c:
b8:5c:94:ec:50:62:1c:71:ee:6c:29:70:5e:ea:ff:c6:b9:4e:
89:b7:20:c0:ac:e7:0c:bb:82:01:0d:5c:35:0f:79:ba:1e:29:
e5:5f:13:df:64:13:b7:7d:05:0d:65:28:44:98:2e:58:50:dd:
21:ef:f6:a6:b5:58:ab:11:0f:16:3a:5c:39:9b:63:df:71:49:
97:27:f1:ec:7e:9b:2b:6d:e4:57:a1:27:18:89:62:15:04:5f:
16:90:f9:58:04:10:ec:ec:87:3a:57:a0:bd:d1:e0:a7:9c:92:
1d:38:ff:5a:71:90:59:d8:f9:0a:29:d8:9b:d3:10:a9:72:12:
69:9e:cf:c5:c2:9e:a3:03:0d:a0:e4:a6:c3:57:cc:a2:bd:45:
29:a4:99:d3:f1:3f:81:5f:9c:96:7b:77:5a:d1:32:3e:2c:64:
2e:92:cf:16:0b:3a:c6:35:cb:94:23:a6:7d:eb:21:d9:13:84:
4e:5e:82:42:94:63:d9:91:41:c5:2b:61:af:7a:29:a2:35:41:
94:81:b4:d9:15:34:2b:1d:0f:b4:3c:d3:5d:9a:be:5b:a4:3b:
d8:f9:d4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org