Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/FzaHxgJgtA7lAi_HOvVslzhrZPY.roa
File: FzaHxgJgtA7lAi_HOvVslzhrZPY.roa (raw, json)
Hash identifier: odJYRFiIZcH/ZR91AqCS/226dYNODBBA6fFSMWxweFE=
Subject key identifier: 17:36:87:C6:02:60:B4:0E:E5:02:2F:C7:3A:F5:6C:97:38:6B:64:F6
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CA02557
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/FzaHxgJgtA7lAi_HOvVslzhrZPY.roa
Signing time: Sat 01 Jan 2022 04:59:34 +0000
ROA not before: Sat 01 Jan 2022 04:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30725
IP address blocks: 85.232.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748692823 (0x2ca02557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=173687c60260b40ee5022fc73af56c97386b64f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:64:6c:21:b0:6d:b5:c2:13:38:02:63:a5:fd:
9e:ec:d0:df:cc:a6:84:15:b0:7f:b6:49:66:17:a3:
59:35:54:14:7b:37:b9:d9:a1:d3:34:ea:cc:8d:2e:
87:f0:2d:ea:57:8e:97:b6:f8:0a:59:af:11:86:69:
83:70:e7:ed:41:23:b6:cd:f9:f5:57:8a:b4:e8:cc:
8c:60:d7:ac:77:c1:af:a3:99:cf:1d:f8:b2:f2:d7:
03:a8:e9:41:e8:d9:a6:14:16:72:65:01:4b:4c:ac:
11:80:a4:2f:f9:b3:0b:5a:6b:34:c8:51:6e:1b:cc:
1f:9d:3a:ac:93:37:98:66:cf:5d:b3:b0:9b:38:8b:
19:b3:1f:fd:66:88:38:77:70:20:de:6e:13:5f:86:
26:33:da:50:68:db:a7:76:4d:aa:22:6a:eb:62:b3:
66:b1:fd:f5:5a:63:9c:b4:03:56:88:1f:33:b4:f1:
fe:0a:47:6f:69:0a:09:90:e6:0c:12:14:c1:7f:17:
2e:77:a5:b5:77:13:b1:a3:68:50:b4:ab:a5:f4:53:
e3:05:da:84:52:76:a1:38:66:3e:58:54:2d:8e:54:
0d:b1:98:33:0e:41:4a:be:3e:db:9b:ca:ec:e0:d5:
2f:6c:64:ea:45:cf:7d:db:24:a5:4a:b2:37:09:10:
37:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:36:87:C6:02:60:B4:0E:E5:02:2F:C7:3A:F5:6C:97:38:6B:64:F6
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/FzaHxgJgtA7lAi_HOvVslzhrZPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.232.244.0/24
Signature Algorithm: sha256WithRSAEncryption
59:33:d5:ed:06:eb:42:36:a2:89:19:69:4b:47:bb:9c:c9:a1:
b8:0c:62:e4:d7:b3:30:0e:99:7d:2c:5e:90:30:81:52:ad:4a:
84:aa:e9:3d:4c:32:5e:a7:bd:1f:95:47:61:32:20:17:44:ae:
05:24:a2:99:f9:69:12:aa:7e:77:6b:5c:e8:db:2d:f9:27:02:
3c:bf:c8:e8:20:3f:e6:19:fa:ae:58:bd:30:e4:2e:45:88:94:
6b:98:be:1d:81:69:10:b3:77:f6:0d:9d:3c:b1:f2:ab:66:b8:
89:71:be:9e:bc:1e:f4:d5:8b:e9:8e:f9:d4:81:d7:21:0c:d3:
61:e0:84:b3:58:7e:16:35:a7:ef:2f:d0:de:b4:9c:31:9d:0e:
2e:19:d8:02:e5:2f:75:13:5d:de:3b:38:24:9b:0b:b6:b4:ba:
c0:8c:72:78:da:cd:9d:37:e8:c4:46:ee:f7:d5:59:53:5e:21:
88:1e:0a:fa:87:3b:9f:dd:85:40:5a:64:6e:b6:a6:50:66:10:
52:de:ee:7b:35:ff:4c:ac:2c:00:90:03:df:89:d3:b9:a6:5f:
f8:bb:ec:07:fb:55:88:9a:29:64:92:92:e6:cc:35:84:a2:4e:
d2:e8:6f:68:a8:40:02:6b:37:f6:4d:b4:33:12:87:74:b8:57:
c8:08:19:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org