Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rxIjYR8GaXmevmko2lDE2_XwDHM.roa
File: rxIjYR8GaXmevmko2lDE2_XwDHM.roa (raw, json)
Hash identifier: rLFtPRo7oo+tjssbAQtqlRBVWx3S0MDag33DFVmaulE=
Subject key identifier: AF:12:23:61:1F:06:69:79:9E:BE:69:28:DA:50:C4:DB:F5:F0:0C:73
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 092FF78C
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rxIjYR8GaXmevmko2lDE2_XwDHM.roa
Signing time: Sat 01 Jan 2022 16:00:54 +0000
ROA not before: Sat 01 Jan 2022 16:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211266
IP address blocks: 85.202.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154138508 (0x92ff78c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af1223611f0669799ebe6928da50c4dbf5f00c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:14:bb:a9:69:da:85:8d:40:07:b4:e3:58:
e0:33:55:3f:e9:09:50:89:89:f3:fa:18:a6:96:57:
2c:c8:f7:4d:b9:0a:39:51:75:60:65:62:5c:d5:e7:
45:b6:a9:2c:52:16:47:7d:6a:1e:ce:cd:0a:af:4d:
6e:2d:4b:07:f3:92:0b:c2:bc:08:e4:5a:76:9f:41:
c1:60:40:89:66:3e:04:43:4b:43:d5:89:dc:8b:9d:
a1:83:dd:69:e9:82:be:44:df:23:86:f6:6a:8c:03:
fc:2c:78:45:c7:5a:33:2e:9d:08:04:fa:23:03:23:
6e:fb:3f:58:bf:94:8e:a2:63:38:a3:76:c0:27:09:
52:24:a0:79:dc:33:d7:9b:21:df:eb:77:3d:b7:c0:
5a:28:4d:0d:aa:49:fa:ea:e0:58:b1:c3:c3:a5:7f:
5a:4d:b7:bd:79:86:20:bb:77:09:87:22:71:ab:c2:
31:07:d4:fa:d6:d7:3a:25:0f:ab:4a:02:0d:2d:13:
b9:cf:af:c7:65:35:c6:60:ca:8a:4d:6e:9d:c8:80:
92:ee:8a:6d:6a:d4:6c:a8:ca:af:fd:16:0b:9d:e5:
88:6d:9e:11:90:b4:72:8d:fa:b4:b9:11:e2:9b:ea:
1d:79:24:36:6b:aa:ec:af:36:9b:87:b1:fe:fd:14:
cd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:12:23:61:1F:06:69:79:9E:BE:69:28:DA:50:C4:DB:F5:F0:0C:73
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rxIjYR8GaXmevmko2lDE2_XwDHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.160.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:96:07:6d:23:25:8f:6a:2c:2b:bd:dd:b9:91:69:7e:cb:9e:
89:de:30:36:b6:4e:57:54:f4:cb:27:3c:72:cf:c6:22:0b:82:
1d:01:d8:80:81:d7:4d:53:df:53:37:a7:96:c1:52:bf:f4:69:
13:38:b1:3f:36:8a:22:cc:45:b5:57:11:02:27:9d:80:41:7f:
73:3a:65:7d:92:43:0e:c6:5f:9b:e2:e7:62:e6:9e:1b:7c:65:
36:f6:80:c3:10:e3:94:b5:df:41:10:44:12:23:c0:d1:fd:0d:
27:71:89:79:5b:61:86:2e:fd:95:f2:4f:08:6f:8d:24:da:58:
a0:70:aa:90:77:21:e3:92:0c:ff:b6:76:18:61:02:15:6b:82:
fd:2f:8a:4b:ca:4d:ba:6e:98:be:8a:59:8c:20:28:5f:79:e9:
6f:c5:40:a3:ef:9e:e3:a2:69:7b:ce:a9:77:9c:73:5d:2a:09:
3f:34:c0:7d:31:ff:f4:f4:74:25:64:18:a1:1a:3c:c9:a7:1c:
8d:fc:75:7c:19:4b:fe:54:2f:c9:98:e3:bc:1c:ab:22:43:45:
8b:77:ec:e2:f3:e9:f4:66:e8:2e:b7:6a:60:d7:df:41:ee:03:
70:01:5c:22:aa:6d:f3:c7:c8:71:05:9e:b5:77:b5:2b:06:e6:
1a:ba:34:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org