Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vYeOcMxeggSG4YMhHCCAOicnbEk.roa
File: vYeOcMxeggSG4YMhHCCAOicnbEk.roa (raw, json)
Hash identifier: a4gsvYqLO8ys8uL6QhReXZR3oAXSRBXWbRDCaUSZ+j4=
Subject key identifier: BD:87:8E:70:CC:5E:82:04:86:E1:83:21:1C:20:80:3A:27:27:6C:49
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0184C97AD5232D423D3E45181F5265BF824F
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vYeOcMxeggSG4YMhHCCAOicnbEk.roa
Signing time: Wed 30 Nov 2022 16:59:41 +0000
ROA not before: Wed 30 Nov 2022 16:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 85.120.144.0/24 maxlen: 24
217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c9:7a:d5:23:2d:42:3d:3e:45:18:1f:52:65:bf:82:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Nov 30 16:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd878e70cc5e820486e183211c20803a27276c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:64:8d:cf:29:35:72:1c:58:2b:cb:d1:22:1b:
42:87:bf:65:40:d8:cc:e1:03:1b:6a:92:d6:08:c1:
92:66:06:76:af:78:a3:cf:b2:8e:b5:f7:5f:bc:cd:
ae:24:3f:66:e7:58:8c:97:ac:30:66:80:c1:5b:77:
be:2c:be:b2:ef:6b:4c:35:6c:01:d2:cb:ac:a9:d6:
6e:c4:07:b0:9b:a6:f7:1e:d3:88:c2:1f:5e:c4:36:
db:99:61:bd:4a:21:d8:a0:35:4d:38:01:40:13:a3:
e1:57:d1:cd:a0:eb:5e:33:91:5c:c1:8e:ee:6a:61:
ef:57:3f:47:53:de:60:7d:3c:a3:d1:50:0d:64:b3:
dc:23:89:92:c1:5a:21:62:b8:d9:09:80:54:b6:92:
d7:7a:10:9f:0c:bd:c9:c1:0a:d4:9b:5a:56:f7:66:
bb:ce:bc:b2:7b:b7:47:6c:ab:f8:d1:6c:a2:ab:16:
ba:2f:86:c7:4d:25:2b:f3:6b:34:93:10:a2:8c:50:
6b:b2:13:0c:98:fe:8b:30:db:0d:4e:d4:2a:d5:17:
15:74:60:bb:35:ea:31:61:58:35:b5:b2:d1:94:6d:
f8:92:93:bf:4a:cf:d2:10:bd:74:e6:ec:6d:91:d5:
14:db:c3:fc:cf:80:ae:e3:be:c5:d0:90:5f:15:5c:
95:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:87:8E:70:CC:5E:82:04:86:E1:83:21:1C:20:80:3A:27:27:6C:49
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/vYeOcMxeggSG4YMhHCCAOicnbEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.144.0/24
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
56:3a:39:fa:79:f4:b4:a6:ea:d8:38:c1:6d:9e:01:dc:a8:a0:
86:ec:b3:c2:ff:cd:34:6a:42:48:a2:33:ac:36:10:30:d3:96:
48:84:ee:fe:14:86:f2:28:f1:b0:2f:32:98:f1:14:d7:11:89:
cd:33:d3:f2:08:c8:54:05:4f:26:1b:05:b8:50:02:23:1b:34:
2f:0a:fe:da:c7:a7:7a:8b:e3:9b:f8:44:b5:d3:2e:8a:69:ff:
d0:74:e9:b4:31:94:7f:bb:31:35:be:ad:31:77:65:09:d9:c0:
f8:f4:d6:e0:99:e6:e2:57:d2:6e:e2:53:25:e1:b5:b9:de:e9:
c8:68:fe:05:36:33:bb:e0:50:4b:bd:68:b4:3d:05:a3:48:6d:
21:71:ca:c4:71:3f:b3:f2:2a:79:ab:64:0d:ed:cf:bc:88:d9:
cf:6b:00:e3:b7:2e:6c:1b:20:9c:14:a0:3b:61:e0:56:f9:dc:
e7:06:31:b4:c2:94:fe:16:9e:ca:f4:53:fe:60:ff:ce:f9:ea:
90:77:45:49:45:e0:3f:4d:2f:5a:09:ba:8a:8d:5d:9a:63:5b:
01:ee:9c:b4:e0:50:62:30:8f:08:47:ee:0a:3a:b0:ef:fc:c2:
cf:60:d1:c3:9c:05:ef:9d:96:bc:36:f6:69:d2:ee:49:cd:e9:
77:16:78:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org