Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/031fcb-b74e-4e75-a7b9-90e65412252a/1/1-aVmeHsW_1h-ZQV7POWZn4ZFKlw.roa
File: 1-aVmeHsW_1h-ZQV7POWZn4ZFKlw.roa (raw, json)
Hash identifier: JsO5qtRyPcO9z5eBHL7BIcSA3CvFolpMP6JSLycOPfo=
Subject key identifier: F9:A5:66:78:7B:16:FF:58:7E:65:05:7B:3C:E5:99:9F:86:45:2A:5C
Certificate issuer: /CN=36a4668ff83814af90a78b4fc8d262325058cbc6
Certificate serial: 0873ED2E
Authority key identifier: 36:A4:66:8F:F8:38:14:AF:90:A7:8B:4F:C8:D2:62:32:50:58:CB:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NqRmj_g4FK-Qp4tPyNJiMlBYy8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/031fcb-b74e-4e75-a7b9-90e65412252a/1/1-aVmeHsW_1h-ZQV7POWZn4ZFKlw.roa
Signing time: Sat 01 Jan 2022 16:07:41 +0000
ROA not before: Sat 01 Jan 2022 16:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210096
IP address blocks: 85.235.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141815086 (0x873ed2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36a4668ff83814af90a78b4fc8d262325058cbc6
Validity
Not Before: Jan 1 16:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9a566787b16ff587e65057b3ce5999f86452a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:24:a6:e5:06:14:23:20:9f:15:36:3f:33:f4:
5a:d3:13:5e:0f:dd:60:94:60:78:c6:97:15:22:da:
02:8e:13:57:ab:28:a9:0c:e6:73:3c:3d:a1:15:d7:
6b:37:a9:9e:f3:a6:c9:ee:c8:3b:05:ab:ce:b4:cb:
cd:96:ab:85:f0:04:bf:fe:db:2b:3f:0c:91:e6:8a:
be:d2:00:70:10:43:d7:be:2d:8b:f8:c8:87:a2:96:
ae:86:60:ea:f6:f0:fb:3d:e7:8d:20:06:6b:d9:6b:
19:2c:23:d8:5c:81:1f:fe:d1:ca:9a:a6:ff:81:3b:
76:30:96:71:8e:49:32:08:5b:a7:0c:3d:3d:4f:5d:
38:97:60:e7:79:1a:36:c0:1d:de:dd:e5:bf:e0:c1:
d2:8a:61:d5:20:9e:a2:aa:a8:2b:16:24:e8:9e:01:
f6:7a:85:21:b0:f8:5c:12:e4:13:ab:20:7b:e2:ff:
04:70:06:0d:2c:28:c8:a8:5f:b7:b7:d5:f7:4d:14:
d2:f4:e4:3e:77:1b:5a:f6:4c:85:57:8b:f7:25:e4:
90:7f:d7:44:6f:9e:f6:5c:49:99:ae:cb:6a:6a:7b:
99:72:3b:4a:db:68:e7:17:d9:0e:b8:ff:5e:35:fb:
ae:c4:b1:d3:af:0a:8f:81:2f:84:6b:27:f7:a7:c5:
d4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A5:66:78:7B:16:FF:58:7E:65:05:7B:3C:E5:99:9F:86:45:2A:5C
X509v3 Authority Key Identifier:
keyid:36:A4:66:8F:F8:38:14:AF:90:A7:8B:4F:C8:D2:62:32:50:58:CB:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NqRmj_g4FK-Qp4tPyNJiMlBYy8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/031fcb-b74e-4e75-a7b9-90e65412252a/1/1-aVmeHsW_1h-ZQV7POWZn4ZFKlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/031fcb-b74e-4e75-a7b9-90e65412252a/1/NqRmj_g4FK-Qp4tPyNJiMlBYy8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.76.0/22
Signature Algorithm: sha256WithRSAEncryption
04:92:6a:94:c3:7f:99:0e:fe:66:6e:e4:89:c7:c1:46:7a:27:
8f:cd:00:f1:4b:0b:3e:53:ad:22:93:e0:ff:50:7d:93:fd:0c:
88:b4:c5:fd:7b:42:fa:a1:e1:ec:37:29:18:f5:85:e2:97:4f:
c3:bb:76:d2:bb:e9:c8:60:19:fc:b2:7a:38:33:b5:5e:74:c9:
aa:ba:c6:18:5c:bd:80:bf:21:b1:7b:c3:65:af:82:c6:59:52:
a5:0e:a9:b7:66:3c:7a:5a:c7:0b:0d:93:6c:82:8c:82:fd:1c:
96:d2:87:89:1b:1d:0e:71:d6:c4:c3:5c:db:8e:9c:99:f7:88:
be:39:44:1e:59:74:fd:27:73:25:50:ea:49:8f:fe:a8:b2:ca:
74:1d:5e:5f:62:89:b2:75:99:6f:5f:f5:3d:09:7b:4b:b1:3f:
4c:64:b7:0c:58:2f:d2:11:e3:61:2e:e6:81:87:9d:09:95:43:
4c:ed:04:71:d6:af:12:56:e4:f1:85:cb:aa:70:25:ff:b1:45:
d2:2a:a3:41:9c:16:a2:a6:aa:b8:03:2b:2f:56:92:8e:ce:90:
58:59:da:45:b5:81:5c:d6:ba:f5:c9:75:4d:62:fa:11:58:f9:
f0:0b:ad:ed:4c:33:6b:f6:82:84:78:04:76:7f:9c:8e:32:f3:
9b:61:54:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:53 2023 by rpki-client on console-ams.rpki-client.org