Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l1Xq3aBcR45kNi-Y10fm73cDMys.roa
File: l1Xq3aBcR45kNi-Y10fm73cDMys.roa (raw, json)
Hash identifier: Tr6FT1FQAUE7YCk8s1Y3hFN9OFd3K45jlPRWOQHVJ+M=
Subject key identifier: 97:55:EA:DD:A0:5C:47:8E:64:36:2F:98:D7:47:E6:EF:77:03:33:2B
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3880685B
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l1Xq3aBcR45kNi-Y10fm73cDMys.roa
Signing time: Sat 01 Jan 2022 05:54:17 +0000
ROA not before: Sat 01 Jan 2022 05:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35484
IP address blocks: 85.254.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947939419 (0x3880685b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9755eadda05c478e64362f98d747e6ef7703332b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e1:13:71:e6:9c:70:22:db:cd:59:c5:52:03:
c4:95:6f:12:4b:6c:f4:70:20:34:06:6e:98:1f:88:
31:19:cc:0b:ba:54:75:06:1f:da:1b:ef:1a:ca:29:
71:eb:f2:72:48:55:bd:ae:3a:81:44:e8:5f:01:e2:
d3:6f:fc:1b:c1:26:d6:c5:be:32:3a:fe:0c:45:02:
7c:34:dd:62:34:82:19:d5:c2:6f:26:90:c9:e9:b0:
da:4e:46:17:9b:50:fa:00:78:31:d5:d2:a6:b8:75:
d9:60:71:0a:2a:d1:60:9f:a9:fc:6d:5b:bb:d4:8e:
48:25:01:88:74:98:d1:4a:9d:cc:bd:4f:aa:e0:01:
01:c8:e4:88:05:21:3a:d6:28:35:a3:fc:de:cb:fd:
c3:d0:c1:1a:10:a6:b5:1a:29:c3:c5:64:77:bd:a4:
d9:6e:d5:32:e4:5c:71:5e:e2:e7:c0:d1:fa:52:13:
5b:3a:23:e8:77:c7:78:3f:23:c5:e7:d9:18:22:dc:
a0:7e:aa:18:8f:8a:d3:22:94:c2:64:cb:e6:83:2f:
1e:a5:4d:12:ea:48:ce:8d:e4:dd:be:fe:af:71:67:
dc:38:54:18:48:5c:44:c6:e2:cc:8c:c9:ce:3b:61:
02:80:a6:71:bd:d6:a8:e8:08:71:33:e8:56:f8:3b:
bc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:55:EA:DD:A0:5C:47:8E:64:36:2F:98:D7:47:E6:EF:77:03:33:2B
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/l1Xq3aBcR45kNi-Y10fm73cDMys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.150.0/24
Signature Algorithm: sha256WithRSAEncryption
04:38:0c:11:eb:02:9a:51:f5:95:1c:44:21:30:00:d2:47:86:
4f:c5:24:7c:59:3d:1e:1e:0f:c8:c2:ba:58:64:3f:6a:e5:e5:
32:44:e7:5e:d3:dc:61:55:e7:37:e8:84:3a:1e:95:98:4e:8b:
18:d5:2d:38:4d:9e:f7:d1:1e:68:db:ff:02:aa:a4:89:72:37:
76:d9:ab:c1:72:a8:33:94:3e:06:a2:c6:49:52:7b:1c:d2:59:
e1:e2:3a:97:d4:19:2e:00:b9:ab:50:0f:3f:c1:4a:67:95:a8:
db:ab:c2:23:24:20:54:51:b1:2d:30:f6:be:c3:5a:54:14:f2:
a6:48:77:94:f9:a0:f3:5e:98:58:ab:34:35:06:76:24:0d:81:
17:62:7e:ab:61:8b:04:e9:3f:7d:e0:85:c1:48:8b:c6:54:70:
de:d4:8d:2c:99:f1:54:0b:9a:f5:3d:49:5a:0d:7b:a1:85:7c:
be:15:41:d7:ef:58:a7:50:06:d6:9c:33:56:96:be:22:61:ae:
18:f3:23:77:12:9d:0a:fd:ea:32:11:99:a8:b6:10:31:79:32:
08:7d:dd:9d:d3:37:93:2f:f1:bd:f2:e1:02:97:35:f9:68:73:
0f:41:4b:2f:d3:82:cc:f8:c5:83:66:b1:d0:91:8f:31:52:99:
bb:88:8f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org