Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Fhf_RH-vPZBJp8Td0tXZHfryxss.roa
File: Fhf_RH-vPZBJp8Td0tXZHfryxss.roa (raw, json)
Hash identifier: dQB1iZECXzAV/PB40FtIHMeLEuOt0SE7TldoPNoc66o=
Subject key identifier: 16:17:FF:44:7F:AF:3D:90:49:A7:C4:DD:D2:D5:D9:1D:FA:F2:C6:CB
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01820106AB2FD303384E4A99D11FD8D29607
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Fhf_RH-vPZBJp8Td0tXZHfryxss.roa
Signing time: Fri 15 Jul 2022 08:43:10 +0000
ROA not before: Fri 15 Jul 2022 08:43:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205095
IP address blocks: 85.120.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:06:ab:2f:d3:03:38:4e:4a:99:d1:1f:d8:d2:96:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jul 15 08:43:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1617ff447faf3d9049a7c4ddd2d5d91dfaf2c6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a1:13:62:34:25:87:e9:89:53:18:02:8f:39:
7a:84:07:ea:c2:05:ca:6d:0c:94:07:be:57:36:66:
3a:dd:df:36:e5:23:17:d4:38:f5:f6:62:83:33:74:
c0:d9:21:66:e9:62:9f:e4:ff:85:34:b3:23:58:0c:
39:47:21:2c:e7:e8:28:91:88:20:a2:28:1b:89:62:
05:2d:63:1b:28:7e:02:0e:1e:30:fc:05:20:b3:5e:
97:ed:a1:78:00:46:89:3a:36:ae:32:5e:17:b4:32:
f1:8d:45:94:c2:5f:80:2f:0d:1b:f0:ea:d5:6c:48:
31:99:97:5c:b5:f5:dc:e2:2c:5c:e6:9e:dc:e8:7a:
2b:83:e7:49:77:03:e1:fb:25:a8:5b:80:b9:76:92:
91:fe:f5:86:71:ee:36:a8:9d:03:ec:7c:ec:26:98:
26:e9:1e:dc:7e:62:9e:c3:7d:75:c3:77:5f:65:ab:
5f:f2:62:68:a2:e6:d4:81:da:b0:0a:d3:04:53:cb:
01:31:11:10:94:51:5f:24:7b:0b:e1:3b:79:b2:3e:
8c:59:2c:64:10:73:97:59:f7:95:ed:f3:ee:1e:43:
91:f5:44:2c:a8:3d:ba:2f:a4:6d:3c:c9:e4:a7:e9:
eb:04:3f:23:6b:bc:90:28:33:45:b1:75:5e:92:33:
d8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:17:FF:44:7F:AF:3D:90:49:A7:C4:DD:D2:D5:D9:1D:FA:F2:C6:CB
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Fhf_RH-vPZBJp8Td0tXZHfryxss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.57.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:96:98:c0:17:85:66:63:7c:f4:12:ca:30:86:dd:17:ce:21:
c9:cf:5b:ed:28:1b:0b:fd:19:2a:be:2b:8c:99:f2:05:78:9d:
cf:8f:09:3f:af:6c:83:cc:70:5a:69:64:d1:7c:0f:b6:40:52:
6c:39:94:b3:b9:08:d0:63:7b:dc:19:99:68:67:a6:2d:31:70:
42:14:ab:fe:83:5b:16:5f:7d:47:09:64:28:c4:72:90:b9:76:
0b:da:b8:5c:21:42:2b:ba:98:1d:54:12:65:11:a0:9d:f2:2d:
a7:4d:1a:4f:ac:7a:bd:54:ba:1e:01:12:d4:a5:05:2c:f4:cd:
dc:2d:26:22:5d:98:7d:c1:5c:b3:fa:f6:4e:2e:11:05:93:52:
49:31:74:a1:ee:e4:ff:42:30:a1:14:d1:a7:01:74:71:36:bf:
75:55:4e:fd:46:50:0a:39:1c:e3:a4:63:3a:3e:17:f1:d2:30:
e8:25:a7:4c:27:42:be:fc:2a:44:75:e1:11:1e:ba:a7:86:4a:
bf:47:f5:89:c2:e8:5f:3f:7e:bf:09:e6:2f:75:da:51:5a:81:
0c:10:16:54:2d:55:ad:d5:27:97:1b:9f:76:74:9a:04:f8:f2:
aa:48:be:7b:5f:ff:b8:c7:06:1a:03:2c:19:2c:22:ac:98:4d:
da:c9:ae:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org