Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ImUKqd2xEM0J_wAAlZSV44p4tMQ.roa
File: ImUKqd2xEM0J_wAAlZSV44p4tMQ.roa (raw, json)
Hash identifier: DEiV0s0Vm2nPk0RbkkBljobOGW+gd2oIXwy0AfsMPW8=
Subject key identifier: 22:65:0A:A9:DD:B1:10:CD:09:FF:00:00:95:94:95:E3:8A:78:B4:C4
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0182ED95136EF8DE8187CADF3E351E6440A5
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ImUKqd2xEM0J_wAAlZSV44p4tMQ.roa
Signing time: Tue 30 Aug 2022 07:09:06 +0000
ROA not before: Tue 30 Aug 2022 07:09:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12310
IP address blocks: 85.121.14.0/23 maxlen: 23
85.120.152.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ed:95:13:6e:f8:de:81:87:ca:df:3e:35:1e:64:40:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 30 07:09:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22650aa9ddb110cd09ff0000959495e38a78b4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:9b:b0:6c:29:4f:1a:69:1a:a8:d5:da:8d:
25:43:85:49:13:ba:0e:c0:9e:2c:d2:88:28:5e:29:
39:38:d2:b3:b1:db:81:8c:6f:0d:75:8a:19:d6:00:
e1:0d:27:e9:fc:81:8e:42:77:71:08:48:24:a0:65:
39:87:22:f8:c9:3d:f0:0d:15:44:ed:ae:74:05:eb:
52:6e:f7:d5:72:7b:44:18:71:5f:47:1d:54:0d:9d:
d7:48:7c:72:8d:c3:d2:d2:88:98:cc:1f:59:17:df:
fe:29:e9:5f:1b:2c:79:97:23:99:a1:df:2c:26:bd:
91:3c:b6:10:a7:7b:b9:63:30:fc:a4:bd:26:e3:5c:
d0:c5:7c:74:4a:95:8c:ba:3b:67:37:ac:be:c5:cd:
26:cf:df:6b:5a:3c:de:01:f2:a0:f9:4c:6a:fb:4f:
da:6b:6f:8d:3d:3b:fc:c6:37:68:15:86:16:5e:1a:
68:73:1a:6b:95:eb:f1:ce:b4:b4:e1:b2:d6:fd:2a:
7f:01:76:ee:52:ad:6c:79:92:f1:bd:2c:82:5e:b3:
7d:56:71:ce:ff:73:16:f7:2d:eb:de:a7:29:17:c8:
bb:cc:72:2b:f9:be:99:28:71:d5:51:93:4f:45:9b:
1f:a2:8a:2d:b6:14:12:5a:1e:9c:02:2b:3e:f4:23:
66:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:65:0A:A9:DD:B1:10:CD:09:FF:00:00:95:94:95:E3:8A:78:B4:C4
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/ImUKqd2xEM0J_wAAlZSV44p4tMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.152.0/23
85.121.14.0/23
Signature Algorithm: sha256WithRSAEncryption
53:9e:39:4d:e7:c8:df:19:d3:24:94:ea:b8:f2:e7:2d:09:af:
99:a9:94:d7:01:3a:f5:1f:04:f4:c5:48:82:ae:de:d4:78:92:
cc:75:c8:d1:6a:59:11:c6:94:34:bb:dc:8a:dd:f3:4e:cd:8f:
07:18:22:9a:0c:4b:4f:cb:1d:ed:2a:04:81:03:69:a4:7b:50:
1c:a1:80:59:ad:42:44:dc:42:2a:ae:fd:bd:95:62:3c:8e:33:
df:5a:78:5f:8c:d3:21:14:d7:2e:c5:23:46:16:50:a6:78:36:
20:99:78:57:0e:60:8f:1a:86:7e:70:f0:b6:f5:65:03:6a:63:
6c:23:aa:16:96:d6:6e:1a:d1:5b:d4:c3:02:ff:b4:5c:f4:ed:
8a:1e:54:ec:93:7c:34:40:86:a0:57:09:ca:4e:64:87:2e:bc:
d5:04:75:2e:ef:89:6b:4b:76:76:e4:46:22:20:5b:90:fb:13:
08:60:e6:f5:3a:08:93:b9:ae:18:26:e2:5c:b0:15:92:9c:2a:
6d:fd:8c:bf:cd:f9:1b:9f:5f:42:ec:23:bb:b3:4b:64:16:af:
5c:5f:26:ed:f0:11:3a:81:a8:e6:c6:1b:5d:a6:c5:a6:e1:05:
37:86:ad:7f:2d:57:83:d9:54:4f:08:c1:3b:c4:56:5f:b4:3c:
59:5e:bb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org