Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/7-HtO7mZNjqhJyOaYblaLQKG2R0.roa
File: 7-HtO7mZNjqhJyOaYblaLQKG2R0.roa (raw, json)
Hash identifier: O4d+feq9esUX3qnWfXAcUogsbmTtk0sZIbp92MgMMvU=
Subject key identifier: EF:E1:ED:3B:B9:99:36:3A:A1:27:23:9A:61:B9:5A:2D:02:86:D9:1D
Certificate issuer: /CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Certificate serial: 03A85AF3
Authority key identifier: 52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/7-HtO7mZNjqhJyOaYblaLQKG2R0.roa
Signing time: Sat 01 Jan 2022 10:56:04 +0000
ROA not before: Sat 01 Jan 2022 10:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35050
IP address blocks: 85.223.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61364979 (0x3a85af3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52b9b9e256580c4344bb241445b4d52e54fdd50b
Validity
Not Before: Jan 1 10:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efe1ed3bb999363aa127239a61b95a2d0286d91d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e4:d0:91:af:ae:27:7d:94:8e:67:80:e6:14:
60:d0:3c:09:d4:18:a5:2d:fb:51:f7:02:da:34:86:
eb:18:7d:5b:5c:c7:a1:9d:d9:12:7a:e8:ee:52:a6:
2b:26:16:20:ba:ac:2f:9a:66:49:4c:09:b1:a3:7f:
dc:96:15:9b:00:e3:2d:80:fd:cb:bf:fa:fc:ab:ad:
70:b7:60:c2:81:fd:78:27:f2:18:90:71:c3:35:4b:
00:ce:e0:92:bd:da:6c:ff:03:b5:61:85:cd:38:1b:
ea:d2:a6:33:09:3d:f3:38:e5:69:84:3e:dd:bd:a6:
fb:3e:46:d3:85:28:1e:ed:6c:e5:24:80:f9:3d:77:
e1:61:97:4e:50:51:fe:d3:64:51:c9:90:b2:f2:07:
c5:58:5b:7d:1b:09:66:00:ae:37:0f:89:47:63:fb:
4d:77:90:e0:74:10:60:14:c4:38:f9:61:e7:a8:f5:
d4:8e:57:be:51:5e:43:cc:ba:81:13:7b:98:ad:47:
59:30:ac:20:ab:fc:55:be:9e:99:3e:ef:38:b7:bb:
8b:f3:3a:63:53:ae:c4:66:12:5b:68:d4:78:f7:6f:
ea:6e:c6:3a:22:1d:54:cb:5a:4f:7a:66:a3:ee:d7:
7e:5a:d2:9c:80:82:ca:74:20:6d:cb:8c:45:93:a5:
d3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E1:ED:3B:B9:99:36:3A:A1:27:23:9A:61:B9:5A:2D:02:86:D9:1D
X509v3 Authority Key Identifier:
keyid:52:B9:B9:E2:56:58:0C:43:44:BB:24:14:45:B4:D5:2E:54:FD:D5:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Urm54lZYDENEuyQURbTVLlT91Qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/7-HtO7mZNjqhJyOaYblaLQKG2R0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eaf81d-a9df-4a6a-b610-de05c54045bb/1/Urm54lZYDENEuyQURbTVLlT91Qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.223.136.0/24
Signature Algorithm: sha256WithRSAEncryption
14:44:64:3a:63:83:9d:bf:cd:34:96:45:9f:c5:28:0e:88:2b:
c0:53:b0:23:17:26:94:df:1c:65:71:18:19:85:23:39:31:e8:
78:be:28:1e:94:c5:7f:39:39:5d:89:a4:de:8d:55:de:ef:ff:
32:78:f1:e4:cf:67:1e:d6:d2:3d:15:e2:38:e9:c7:d3:7a:26:
6b:8f:a6:fe:8e:ff:8f:00:c8:b7:16:38:66:51:cb:5f:e7:b2:
80:12:e3:03:d1:f7:03:d1:51:a8:2e:d6:25:ae:9f:99:2d:c0:
c2:15:bb:03:4a:a2:df:06:3a:d1:af:3c:41:d3:2c:25:64:be:
73:f7:a2:a9:f5:22:fb:a7:50:0b:78:18:08:bd:d0:b7:82:90:
2a:28:10:2b:ef:07:c9:52:2e:f2:1d:80:e2:7b:b9:e2:39:19:
6c:8e:2c:f2:e1:c1:d1:06:16:7b:a5:dd:b7:62:2f:31:04:14:
b6:51:67:60:71:78:bc:dc:41:d7:30:4c:98:ad:fe:6a:6e:53:
6b:65:5a:3e:7b:9d:be:3c:0f:e6:41:8e:10:e7:e9:a2:eb:78:
ac:a0:a1:e1:45:a8:7c:fc:c2:96:65:ee:37:1d:9b:b5:27:46:
16:0f:37:0f:7c:d9:22:75:b5:b6:dd:15:09:ad:67:f4:fd:2c:
9f:a3:a8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org