Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/59DHrvV73kHFOjJFNwMLrqLN46c.roa
File: 59DHrvV73kHFOjJFNwMLrqLN46c.roa (raw, json)
Hash identifier: YsYQ/9eNg/pNHhtf8Gyux3fPETOkmSIY2f4WwRlHPgA=
Subject key identifier: E7:D0:C7:AE:F5:7B:DE:41:C5:3A:32:45:37:03:0B:AE:A2:CD:E3:A7
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B10529D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/59DHrvV73kHFOjJFNwMLrqLN46c.roa
Signing time: Sat 01 Jan 2022 13:58:07 +0000
ROA not before: Sat 01 Jan 2022 13:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202399
IP address blocks: 85.31.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722490013 (0x2b10529d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7d0c7aef57bde41c53a324537030baea2cde3a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5f:02:46:b1:9a:47:da:8e:a4:f2:2a:e2:9c:
9c:00:02:4b:d3:ee:cd:1c:58:ce:57:bd:42:cb:ce:
bc:bc:96:93:97:de:24:14:bd:ea:8e:8d:36:3f:b0:
ae:84:50:d0:36:aa:d9:64:5b:26:80:99:06:4f:de:
84:cc:6b:2f:c1:1e:f6:fe:61:f0:96:38:56:6b:cd:
49:6c:86:7b:56:bc:e7:45:82:f1:6f:20:ca:88:e1:
67:50:f3:2c:1e:65:db:58:77:82:d0:a7:7f:4d:09:
db:d7:da:8c:e6:00:02:45:e1:de:fe:7e:34:3b:c7:
da:f8:b9:d9:2a:4e:93:2c:50:cb:5d:02:d3:96:e2:
63:4a:7d:1e:69:ae:be:3d:38:90:48:48:71:e7:8b:
05:84:ae:2f:c9:50:b0:9b:4a:63:16:aa:d5:01:f1:
2b:b4:5c:6f:94:40:d4:c6:80:57:c9:8c:2d:8e:df:
30:ce:ce:3e:6f:f1:c2:30:eb:cf:7e:89:ca:b8:d5:
20:44:23:ba:e0:3e:5f:2a:2f:0b:d1:8f:e5:2c:0d:
af:3e:a2:8d:a8:e2:ed:1d:96:c3:12:4c:b5:e6:19:
7a:eb:ee:61:eb:bc:35:a8:43:47:39:c5:2c:6c:5e:
47:c7:fc:0f:c4:ec:89:c9:4b:ed:05:de:83:86:8c:
de:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D0:C7:AE:F5:7B:DE:41:C5:3A:32:45:37:03:0B:AE:A2:CD:E3:A7
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/59DHrvV73kHFOjJFNwMLrqLN46c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.253.0/24
Signature Algorithm: sha256WithRSAEncryption
04:64:57:d0:a1:92:30:26:75:a4:ac:04:d6:70:f8:6b:01:ea:
07:14:12:03:1f:9d:46:0b:78:b0:52:a8:6b:de:dd:69:4a:3b:
90:cd:7f:b8:54:99:7b:3e:e0:7e:63:3d:cc:bf:70:ec:02:b0:
f8:ce:8e:d5:e0:c4:29:d3:08:79:a6:d7:bd:4c:03:96:26:45:
e7:58:9b:26:1b:f5:c1:3a:0a:8b:92:9c:b8:6f:b0:b0:ac:f9:
1f:ee:c9:5b:fa:aa:b4:b4:44:a1:62:87:55:3c:2d:31:c2:12:
6d:62:6d:97:cf:1c:54:d2:44:b2:63:6b:a5:38:7c:d6:62:76:
93:dd:23:65:33:55:16:2a:8d:04:40:61:9e:60:cc:1d:ca:6d:
7e:e3:9f:d7:0e:0c:03:47:67:6f:98:8e:b6:3f:4d:5f:45:67:
6c:9d:09:ea:0f:ad:08:c9:b9:f5:99:5b:33:50:b1:44:2d:3b:
34:d2:bd:0b:6a:d5:29:8e:68:08:f1:33:03:f2:b5:2f:a5:f5:
f1:e3:52:f3:c8:cb:14:b5:27:e4:66:f5:fd:28:7a:0c:1c:16:
18:0a:90:b2:60:b8:b3:bf:9d:d7:7a:a6:88:c2:69:80:ef:51:
c4:60:04:a1:29:ea:5a:76:d9:0c:f2:8a:4b:59:b0:62:18:15:
64:8d:5a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org