Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/viJBWbZNsLWH_0qLQNynOM5KbMA.roa
File: viJBWbZNsLWH_0qLQNynOM5KbMA.roa (raw, json)
Hash identifier: EGun3cs4IVj3cMs8VoS1yB4gVNUsTJlseamyM81fi/M=
Subject key identifier: BE:22:41:59:B6:4D:B0:B5:87:FF:4A:8B:40:DC:A7:38:CE:4A:6C:C0
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 388D36F8
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/viJBWbZNsLWH_0qLQNynOM5KbMA.roa
Signing time: Sat 01 Jan 2022 05:54:23 +0000
ROA not before: Sat 01 Jan 2022 05:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197616
IP address blocks: 85.254.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948778744 (0x388d36f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be224159b64db0b587ff4a8b40dca738ce4a6cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e6:66:40:77:a5:2a:0a:25:4b:a9:fb:48:80:
e9:c6:c6:d0:98:e8:d9:14:99:a3:f8:a9:fb:99:c0:
f0:ba:47:67:09:c6:ab:7f:f3:fe:2a:8e:69:38:a3:
ee:5d:fe:ed:95:3c:78:fe:9a:2f:60:f5:34:b8:c5:
bb:d5:a5:96:bc:89:04:44:eb:85:ce:5e:97:a1:7a:
7c:89:1f:1d:a4:9b:e5:8a:07:f1:94:83:7c:27:25:
75:d7:d0:9e:56:02:a2:2d:82:86:7d:03:ca:75:98:
05:df:f8:9b:b2:69:ec:fa:5c:63:a0:ba:00:b1:ee:
11:80:3f:06:ba:7b:06:ec:c1:f2:2a:22:c3:a3:b6:
af:c0:67:4b:f5:d7:59:36:48:2f:22:11:aa:aa:8a:
ac:35:7b:6d:6d:0b:df:6d:3a:9c:b7:55:4a:a8:8c:
ed:fb:d1:46:17:bb:ab:41:06:a6:76:c3:64:d3:fe:
36:da:6e:d7:86:ac:61:09:6b:01:8a:c3:4a:6c:9b:
ea:51:90:79:3f:d4:58:3f:75:ce:6c:e1:20:0e:f7:
f8:8b:93:00:c3:c5:11:3d:87:34:d3:b5:77:16:33:
a9:82:af:be:35:10:af:92:39:68:04:d8:e2:2e:62:
e9:7c:78:1e:1e:b6:2f:59:87:09:ed:89:69:e8:5b:
f9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:22:41:59:B6:4D:B0:B5:87:FF:4A:8B:40:DC:A7:38:CE:4A:6C:C0
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/viJBWbZNsLWH_0qLQNynOM5KbMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.136.0/24
Signature Algorithm: sha256WithRSAEncryption
61:5b:ae:86:83:06:57:0d:8a:9a:6e:a1:66:88:04:58:ba:c1:
76:8e:33:40:38:c7:87:0e:7d:76:59:26:9a:15:30:7d:12:a7:
04:ce:42:9c:5a:9c:1b:79:ad:88:90:87:7c:cb:ed:a8:b1:a0:
73:c7:45:f4:34:d5:b2:2d:af:e1:4c:22:e1:5a:38:b7:e2:ad:
90:5b:8d:62:dc:91:25:e0:d7:ca:db:60:38:2f:6c:c6:c7:e2:
c9:e1:ec:a9:f2:fa:0c:00:9a:9f:84:63:a4:05:8c:6b:ac:8e:
31:b2:72:b1:43:ef:6f:a2:fc:b5:04:5d:2b:8f:42:eb:c4:3c:
61:21:df:4d:80:32:a3:27:69:74:c9:3a:21:b2:02:01:b2:a4:
88:2f:55:d2:c6:69:1d:64:7b:f2:87:e2:9a:d2:7b:c4:13:52:
97:e2:d6:f7:82:c2:a6:1a:d3:84:47:7c:08:27:1b:d4:54:17:
04:72:fa:fc:ae:ce:fa:91:1f:5b:f4:d1:3c:22:b8:c9:4c:bf:
e3:1e:72:e3:29:55:be:0c:a5:ca:c2:cf:d8:5a:05:4d:92:bc:
73:96:7c:ca:7a:23:ef:90:58:57:28:7d:51:37:60:dd:0b:c5:
d9:83:6b:b1:c9:e3:a0:2a:1d:60:29:95:44:8c:51:42:ba:8d:
92:5a:9a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org