Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/jZgdeAH1ckeTdvuEPlPjbWltpXo.roa
File: jZgdeAH1ckeTdvuEPlPjbWltpXo.roa (raw, json)
Hash identifier: 5F2+nx4N3ouwb/L+860RTrZYfFa2qQrf1ZpQ07NiyUU=
Subject key identifier: 8D:98:1D:78:01:F5:72:47:93:76:FB:84:3E:53:E3:6D:69:6D:A5:7A
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 38B51F79
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/jZgdeAH1ckeTdvuEPlPjbWltpXo.roa
Signing time: Tue 17 May 2022 05:30:25 +0000
ROA not before: Tue 17 May 2022 05:30:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197741
IP address blocks: 85.118.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 951394169 (0x38b51f79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: May 17 05:30:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d981d7801f572479376fb843e53e36d696da57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bf:4f:99:44:2d:23:85:6f:bd:8d:3c:5f:d8:
6d:d5:ab:4f:79:4d:f4:f2:da:b4:bb:e3:b5:06:6e:
d4:04:7b:4c:c7:ec:8f:41:3d:05:52:c6:e3:59:9e:
38:74:92:b2:be:8a:6a:a1:3a:11:71:fa:65:16:e9:
81:b9:fa:85:bf:d9:a5:3e:f8:7b:28:ce:04:fe:bb:
26:41:a2:51:dd:28:c0:26:28:2e:24:4d:6a:74:3c:
2b:77:eb:74:72:63:d5:0c:d8:68:1d:c1:37:7f:42:
bc:17:67:c6:07:4f:ce:42:88:e8:09:46:b0:c0:4d:
c5:61:06:1d:fd:01:ae:7e:28:2e:c7:dc:94:44:52:
bb:f1:55:b8:3e:95:81:be:aa:92:b6:d6:0b:a7:2c:
f2:55:4b:38:08:d2:50:ba:f1:38:36:4a:7a:32:53:
6b:14:5d:9d:51:00:0b:1f:bb:3f:34:fa:9a:4e:b8:
99:53:f5:33:ba:92:08:f2:52:d6:03:60:dc:65:f3:
39:26:cf:a3:c5:bb:01:64:dc:b2:0c:b1:64:12:15:
47:13:47:45:2e:66:5b:b4:eb:37:b8:35:38:98:12:
23:29:2f:15:19:c7:73:f6:f6:b6:ac:47:0f:38:07:
fb:93:33:ae:ef:2c:6d:42:33:a2:69:fb:01:b1:48:
3c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:98:1D:78:01:F5:72:47:93:76:FB:84:3E:53:E3:6D:69:6D:A5:7A
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/jZgdeAH1ckeTdvuEPlPjbWltpXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.90.0/24
Signature Algorithm: sha256WithRSAEncryption
96:29:65:3a:40:b8:c9:09:d4:85:97:b7:40:d3:c2:a9:8b:a5:
b4:85:5d:b3:0d:d4:f5:63:30:df:40:13:e0:53:17:97:af:3d:
c2:04:2b:e0:84:6c:74:c4:af:f4:4e:17:d6:0f:2e:53:46:a1:
5a:16:c8:ce:d6:6f:aa:94:62:ff:1d:b6:53:6f:5d:f0:9a:eb:
78:6e:06:9b:16:cb:54:18:3e:6f:12:48:a8:ab:98:58:ca:90:
f0:c3:ac:4e:29:71:db:0a:98:cd:95:c2:63:5f:c0:73:6d:17:
69:55:1b:de:fd:35:e9:c0:57:21:bd:c2:7a:13:74:7f:8e:25:
2b:28:0b:2b:90:a3:2f:60:fb:9d:ea:66:3f:7e:4a:6b:aa:5d:
63:3d:d0:23:4b:4f:0b:37:46:6c:ab:21:b7:86:c5:7c:60:21:
44:55:4f:c0:32:c7:f4:72:1e:05:9f:ec:ab:0e:5b:2e:b6:1e:
56:4b:b7:b2:1d:13:39:54:32:df:5f:56:f3:62:87:5c:8e:3d:
0d:d8:2b:d9:4b:1d:c7:17:1d:ec:50:dc:d8:a1:22:ac:02:06:
90:cd:1b:f1:4d:a6:81:79:68:5a:45:07:50:6d:b9:7c:f9:34:
f9:57:5e:41:7b:da:45:f5:30:93:48:17:fb:32:3a:ea:80:11:
da:14:00:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:13 2023 by rpki-client on console-ams.rpki-client.org