Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bPvQmDZoTO7M1x7WaFOECpZ_S1k.roa
File: bPvQmDZoTO7M1x7WaFOECpZ_S1k.roa (raw, json)
Hash identifier: uJkio7qmKAOL6j0FngO5a+aUv5IPQ9/36sxY3soKUUA=
Subject key identifier: 6C:FB:D0:98:36:68:4C:EE:CC:D7:1E:D6:68:53:84:0A:96:7F:4B:59
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0181FC78CD269B45467F00168ECBF7B5C642
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bPvQmDZoTO7M1x7WaFOECpZ_S1k.roa
Signing time: Thu 14 Jul 2022 11:29:43 +0000
ROA not before: Thu 14 Jul 2022 11:29:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 85.120.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:78:cd:26:9b:45:46:7f:00:16:8e:cb:f7:b5:c6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jul 14 11:29:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cfbd09836684ceeccd71ed66853840a967f4b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:72:3a:6a:f2:77:c9:06:36:86:7e:f7:06:84:
01:2b:3f:fe:5c:54:d4:c8:c7:c4:f1:57:b9:5c:0f:
d6:f5:fd:45:21:0d:57:83:5a:10:3a:e3:66:3e:d6:
fc:fd:71:0e:d2:9b:6b:20:93:be:87:ef:a9:6e:30:
97:3a:ad:0e:23:a3:32:b5:89:9f:24:7d:d6:d7:16:
a0:18:6b:09:60:4f:38:82:63:30:3b:01:75:3e:a4:
67:82:9f:79:8e:c5:93:35:ac:9c:84:b0:50:c1:64:
52:ce:af:03:7c:1f:9e:44:b9:0e:da:ac:f1:7e:a0:
5c:e0:c3:77:2c:75:05:38:98:54:5a:45:0b:f6:93:
e8:86:e3:36:f3:ed:2c:99:a3:da:4b:8e:f9:18:53:
58:e5:3c:c4:e9:77:c0:11:37:32:15:47:49:3d:3e:
d2:ff:a1:50:b5:87:49:39:2f:b0:9b:32:25:86:cf:
b6:1a:30:06:4d:7c:67:d3:09:4e:55:f0:4d:da:f5:
da:23:d9:e0:7e:ae:cd:e9:8e:46:c2:4f:a4:f3:13:
81:02:3d:63:85:87:44:a9:71:26:58:1a:9a:08:f0:
d1:bf:66:56:18:36:00:35:79:b1:c9:f9:99:c4:e9:
5e:da:13:54:75:f4:06:da:51:9c:43:55:77:a2:13:
78:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FB:D0:98:36:68:4C:EE:CC:D7:1E:D6:68:53:84:0A:96:7F:4B:59
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/bPvQmDZoTO7M1x7WaFOECpZ_S1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.144.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:e7:74:e9:2e:45:91:a2:84:7e:37:b8:aa:d3:5b:f0:f4:19:
0e:0b:9a:6a:fb:db:58:7e:50:c7:b9:19:bb:d4:9e:2e:88:61:
6a:e9:95:5a:bc:b8:d3:67:04:c3:c2:19:6b:44:74:cc:29:64:
35:13:a5:cb:5c:c8:44:82:d6:37:a5:1e:4b:5e:92:97:18:99:
da:bf:92:27:30:d1:c8:29:db:75:37:ff:e4:df:30:04:7f:5e:
f5:db:ff:dc:6b:7b:56:e5:16:25:96:ca:1a:a5:95:e7:d5:1a:
3c:66:32:fd:a0:16:4a:5e:00:fd:c2:7a:06:8a:52:33:47:cf:
58:d8:eb:e7:ab:8b:40:f0:36:fc:ca:76:de:49:44:f7:7f:91:
96:13:84:85:07:6e:65:e6:77:c2:4b:df:f7:63:cb:8c:31:58:
ab:c8:0d:63:b4:e0:9f:3a:4b:f5:92:cb:66:cf:19:a1:45:85:
39:6b:42:f0:9e:4e:f1:7f:8f:c0:b6:7d:c2:6f:4a:1c:7a:fd:
1b:f9:7e:18:65:ee:fe:c6:a3:fc:18:e9:c7:f5:a7:68:0a:33:
8a:4e:ca:70:81:22:96:f6:c1:c4:44:bb:ba:17:ea:6f:08:37:
76:2b:72:2a:40:e4:6e:51:73:64:fc:56:3d:b7:f2:8b:12:cf:
31:49:29:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org