Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/whVWjfBe0VfF1bOljAcCcYzv5pE.roa
File: whVWjfBe0VfF1bOljAcCcYzv5pE.roa (raw, json)
Hash identifier: dGIoz5JxTOAYWD85UergBJVqUpIYZNGQAeSBkWqQ4hk=
Subject key identifier: C2:15:56:8D:F0:5E:D1:57:C5:D5:B3:A5:8C:07:02:71:8C:EF:E6:91
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AE9CC37
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/whVWjfBe0VfF1bOljAcCcYzv5pE.roa
Signing time: Mon 02 May 2022 16:55:21 +0000
ROA not before: Mon 02 May 2022 16:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41461
IP address blocks: 85.120.216.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451529783 (0x1ae9cc37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 2 16:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c215568df05ed157c5d5b3a58c0702718cefe691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:96:76:24:9f:67:09:17:4f:c3:0e:8c:07:12:
5a:46:ea:0a:1a:73:f3:d3:d9:63:30:71:51:54:25:
2b:20:6e:34:15:85:2f:da:fa:82:cc:76:60:05:71:
b5:61:60:b8:58:fa:31:4b:a9:11:6a:3d:14:4f:60:
dd:eb:b7:6a:e8:12:6a:99:4c:08:71:85:4d:01:31:
f4:1d:94:bd:61:d3:ed:e3:e4:61:fd:2d:7d:b3:ea:
40:cb:e8:56:b5:3b:0c:35:e1:56:c9:a2:ea:70:db:
41:2a:31:48:80:55:7d:eb:99:51:3f:24:9d:7d:85:
d1:eb:b3:47:81:b2:9d:0e:0b:df:db:a7:13:64:f5:
58:d7:f3:cd:2a:08:6f:3c:03:f2:27:cb:52:40:b0:
4f:45:31:20:50:de:27:58:b5:76:70:61:f7:b6:8d:
0b:d4:65:26:95:61:87:de:c7:52:92:1b:16:de:0e:
76:ab:33:2b:3a:2a:8a:6b:8e:26:f7:76:d2:26:a2:
ad:c8:2c:1a:82:82:4d:02:93:fa:1e:6f:13:7e:9a:
2e:c2:a9:94:2a:1d:c2:a8:b5:fd:da:40:6b:d1:04:
7e:12:cf:80:e1:27:28:cf:66:82:cc:5f:13:ad:9b:
c2:7d:ad:6c:dc:eb:e6:18:1d:78:23:31:bf:27:6d:
b4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:15:56:8D:F0:5E:D1:57:C5:D5:B3:A5:8C:07:02:71:8C:EF:E6:91
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/whVWjfBe0VfF1bOljAcCcYzv5pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.120.216.0/23
Signature Algorithm: sha256WithRSAEncryption
03:18:11:c3:61:31:e0:e3:31:cf:9f:ff:c6:ff:d2:b2:bf:6a:
80:72:de:f1:5f:66:3d:11:cf:0a:ae:f6:d3:d2:4e:2e:d5:11:
b2:9e:85:99:f5:44:88:fa:46:ed:2c:a1:d8:c3:77:d1:b1:a5:
f6:18:61:40:12:93:65:37:ee:04:9e:b7:ef:ef:36:66:09:e2:
ca:c8:6c:56:09:4a:de:e9:c9:a3:68:6d:b4:b2:41:cd:70:11:
45:65:b5:70:f2:79:c5:31:88:aa:01:5a:8a:5c:2c:46:0e:4a:
db:37:fd:9e:bb:32:e2:a2:65:bf:f8:7b:7f:95:81:9c:88:3c:
87:ba:8b:03:71:f2:3d:d7:3b:f9:e5:e8:0c:56:5e:6f:10:b1:
50:db:f8:3b:c8:38:e9:f9:d6:0d:2f:a8:c3:e0:13:90:07:c6:
3b:d5:63:82:ed:c7:33:08:5f:4c:73:dc:08:0a:6d:4f:cf:cf:
d8:c4:6a:3e:36:b0:48:8a:76:78:95:f5:01:33:ff:89:e4:6b:
12:5e:57:1c:76:42:80:07:53:e3:e6:45:94:af:c4:1d:67:1c:
09:3b:8d:ab:05:18:22:14:ed:9c:a5:27:37:32:4c:17:9f:32:
08:ac:06:b8:9f:bf:6d:e9:76:b5:c4:36:05:d6:09:09:06:57:
ce:be:c4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org