Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/I9uBVoHlQp34SGh5Od6jUtDZbjE.roa
File: I9uBVoHlQp34SGh5Od6jUtDZbjE.roa (raw, json)
Hash identifier: 9DLx+ce0mykMfZRFSr4dET9Ba3/ZMFDg4CLMf0lzn8g=
Subject key identifier: 23:DB:81:56:81:E5:42:9D:F8:48:68:79:39:DE:A3:52:D0:D9:6E:31
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B283788
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/I9uBVoHlQp34SGh5Od6jUtDZbjE.roa
Signing time: Wed 18 May 2022 13:37:17 +0000
ROA not before: Wed 18 May 2022 13:37:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 85.120.144.0/24 maxlen: 24
217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455620488 (0x1b283788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 18 13:37:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23db815681e5429df848687939dea352d0d96e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:9f:5a:5a:f4:79:1b:90:d9:35:e5:a1:f9:
15:a8:c9:03:55:09:34:e7:c8:e3:aa:e4:8b:90:02:
0e:29:c0:77:e5:5b:c1:3a:92:35:6e:97:91:dc:48:
49:cc:30:d1:ac:2a:84:60:76:bb:fd:96:15:a5:48:
ef:78:85:82:e3:e1:09:d6:f4:33:94:ab:49:49:49:
7d:90:d1:4b:bd:6a:30:c8:d9:50:c7:6f:e6:37:1c:
c7:3f:4b:bc:72:dd:97:52:e3:63:98:c0:9f:e7:6d:
53:36:4c:11:96:75:01:b5:5e:72:11:de:0d:5f:94:
db:a3:4d:a0:af:c9:34:c9:b6:b9:3a:53:51:6e:2d:
7d:07:b5:1d:ae:60:4d:2d:7f:0b:31:e4:5a:f5:d4:
f4:98:22:8e:55:22:1b:2f:da:18:9b:bd:5d:c5:9f:
59:2f:68:32:aa:cb:62:e7:0e:fa:d6:02:c4:f7:73:
22:d1:5c:fb:5b:ee:e6:c6:2b:bc:1e:03:a0:56:4b:
0a:8e:5e:8a:c6:18:72:45:27:1d:4e:09:29:04:81:
c2:84:76:f2:38:0e:a4:ef:aa:12:c2:b1:e4:df:5c:
d9:6f:b4:1d:b5:ac:6c:87:55:b8:61:1c:4d:9d:56:
84:f3:ce:cb:e4:5a:15:0d:9d:75:9f:7a:d4:1c:0d:
05:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DB:81:56:81:E5:42:9D:F8:48:68:79:39:DE:A3:52:D0:D9:6E:31
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/I9uBVoHlQp34SGh5Od6jUtDZbjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.144.0/24
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2a:f6:bf:7e:f0:5e:3b:c3:2c:57:fd:4b:47:2a:a1:ff:41:
4b:95:d8:5d:d6:e3:40:34:e0:fa:e3:a7:e6:9f:a2:dd:33:15:
42:1c:a8:9f:a0:d6:58:5a:eb:a8:5e:75:8d:6a:b5:2a:1a:4c:
5b:a2:36:b9:fa:eb:df:cc:e6:b7:fd:26:8d:4a:2a:d6:a7:b0:
e8:ee:76:62:54:97:4f:86:80:c3:2d:bb:84:83:94:9a:dd:cc:
4d:1c:aa:47:fd:62:72:71:ec:85:d8:8d:7f:53:0b:49:73:7d:
16:65:a3:30:14:5a:b0:70:74:99:3f:aa:76:1f:69:9d:6a:b0:
68:f3:e6:89:52:4d:99:25:52:41:f3:09:f3:55:4e:d3:99:a8:
13:d5:14:5c:be:89:53:bd:b0:5f:fa:1e:02:68:ed:7b:8b:36:
2b:5e:44:3f:c2:52:0d:9e:97:0f:68:2b:f8:1d:c0:48:96:08:
37:da:9e:8b:a0:a4:e7:05:7e:cd:dc:31:e0:a7:9b:cf:ce:b2:
1f:52:f8:9e:5c:da:52:7b:e2:37:bf:bb:13:ce:82:09:69:78:
35:0e:db:2c:33:47:27:82:3a:61:5d:67:8f:0f:47:6e:62:7f:
58:58:a8:0c:2d:43:57:24:4d:9e:56:e6:4e:9f:aa:fb:b6:2b:
6e:48:d7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org