Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/c26vni01CzCKTlpxswTyX8R6j-Y.roa
File: c26vni01CzCKTlpxswTyX8R6j-Y.roa (raw, json)
Hash identifier: VVbEUwFw7WgqYsyJAsmQz5jkQtWOuHn9D8QOhPkT+Ok=
Subject key identifier: 73:6E:AF:9E:2D:35:0B:30:8A:4E:5A:71:B3:04:F2:5F:C4:7A:8F:E6
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1A627529
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/c26vni01CzCKTlpxswTyX8R6j-Y.roa
Signing time: Thu 24 Mar 2022 10:57:24 +0000
ROA not before: Thu 24 Mar 2022 10:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 85.120.152.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 442660137 (0x1a627529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 24 10:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=736eaf9e2d350b308a4e5a71b304f25fc47a8fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b7:f6:24:c3:5e:86:42:6c:f1:cf:36:66:9f:
c2:50:a3:c5:b5:1d:27:3a:cb:10:b4:75:30:89:51:
15:6f:85:90:89:55:07:70:02:71:ce:1e:db:8b:e6:
6d:4f:30:1f:b4:78:9b:be:2c:77:9c:72:62:b4:91:
5f:2d:55:a0:00:56:0d:c9:54:70:ff:46:b4:d9:36:
27:24:a0:7a:04:13:a1:cc:72:d8:c4:c6:a4:63:3a:
ae:1c:2a:05:ee:5f:e8:9a:61:74:c6:f9:69:71:ce:
02:55:30:07:65:04:33:f4:af:21:b5:6d:83:42:a5:
55:19:5c:fb:27:ff:2b:2b:45:fb:bd:7d:d0:35:1f:
02:d5:2d:77:98:ac:7f:d3:fd:fa:e2:c1:0c:0d:49:
30:02:cf:a8:fe:ea:f9:a5:39:02:cf:31:95:5c:45:
91:37:ff:fe:fb:04:63:85:81:83:5b:62:d6:46:91:
51:70:91:92:98:fe:2d:d1:ba:61:0a:58:9e:f4:22:
90:1c:51:d5:21:59:2d:e2:63:bf:ae:0b:10:5b:20:
ea:3b:5b:ef:05:d0:ee:82:da:c0:57:2a:76:57:ad:
d1:c3:ec:a5:ac:29:3a:16:3f:0f:94:24:75:b1:da:
80:ca:6f:2b:89:20:52:b1:62:c0:99:1b:8c:24:70:
27:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6E:AF:9E:2D:35:0B:30:8A:4E:5A:71:B3:04:F2:5F:C4:7A:8F:E6
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/c26vni01CzCKTlpxswTyX8R6j-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.152.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:f8:73:90:a2:a8:84:82:55:b6:1a:ae:54:77:70:07:d4:01:
15:96:c6:33:81:a7:57:b1:5a:e1:7c:11:f1:83:48:ae:98:93:
7b:c5:4f:4a:2c:f2:b5:3d:ce:5a:57:63:ca:45:49:0c:26:0a:
06:4f:3b:e3:2b:5c:63:33:96:89:e5:06:a7:a2:01:37:a6:e9:
e6:fb:26:7f:89:b4:d7:81:6f:ee:47:08:24:d4:3e:c5:ff:ba:
c3:1c:92:27:08:d6:52:89:6d:50:2f:18:e8:e4:90:07:2a:37:
f1:f3:94:10:66:f7:6a:78:ff:61:c3:b4:58:30:e2:aa:f4:d6:
ae:8c:03:97:7e:bb:08:54:91:86:a9:19:ca:77:17:b7:3f:92:
9b:64:be:76:a6:c6:fb:ac:fd:6d:8b:aa:c4:4c:1c:48:2d:12:
03:64:2f:9e:62:d9:cd:fd:f8:a0:e6:24:0f:02:70:9e:ae:ce:
21:63:a1:d7:75:fc:7b:85:8d:6e:41:aa:40:48:0b:3e:5d:3e:
a8:a3:ca:56:77:90:38:ff:4e:db:92:c9:fb:2b:a1:1c:ae:a8:
95:b1:52:4e:89:5f:49:20:44:07:2c:de:b5:ab:46:c9:ad:dd:
01:86:ae:2f:8c:a5:e6:a7:6f:86:5e:5c:5b:46:d7:2f:9b:ea:
3a:96:a8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org