Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PTHFsZUMPnVEPulDAxBQAr3Xk40.roa
File: PTHFsZUMPnVEPulDAxBQAr3Xk40.roa (raw, json)
Hash identifier: bRP8McqX9Z5KIxMwBWi1BvX1aIPlO/OXqywFezgCnEY=
Subject key identifier: 3D:31:C5:B1:95:0C:3E:75:44:3E:E9:43:03:10:50:02:BD:D7:93:8D
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B1E437C
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PTHFsZUMPnVEPulDAxBQAr3Xk40.roa
Signing time: Sat 01 Jan 2022 13:58:15 +0000
ROA not before: Sat 01 Jan 2022 13:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208807
IP address blocks: 85.31.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723403644 (0x2b1e437c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d31c5b1950c3e75443ee94303105002bdd7938d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8a:84:c6:f5:24:d7:b6:c3:ec:3f:43:21:26:
6b:d8:a6:78:e3:12:28:ce:92:10:fc:f6:e9:95:61:
3f:d7:ea:00:19:01:49:5d:f5:b9:fe:02:42:af:9d:
e3:dc:d2:53:80:11:05:62:0f:86:2f:7b:63:dd:9b:
6b:ea:c9:40:bf:ee:fa:41:8c:c7:a9:28:5c:5e:87:
11:e6:7d:1f:30:c9:98:9d:7f:cb:9c:aa:86:c2:48:
0f:c9:1f:5e:b1:e8:af:06:71:65:e0:e7:ca:96:a5:
4a:32:65:07:fc:39:7a:f1:07:0c:8f:66:98:52:3c:
81:12:2c:69:ce:63:3b:bf:14:e4:b6:5c:d0:b6:a6:
fa:b1:47:54:82:d2:67:40:ae:cd:c5:72:21:a8:f0:
90:61:6f:7c:f7:67:97:6a:7b:f6:5f:6d:0b:2d:9e:
81:20:42:a2:3d:d2:eb:11:63:04:49:89:5d:56:3c:
bb:90:0a:3b:05:d9:90:81:30:60:7a:bc:af:bd:34:
23:66:e3:c3:ae:ef:4b:99:53:57:ba:d2:c5:df:eb:
3e:98:c3:0d:1e:14:81:fe:02:e7:63:75:9c:30:0c:
3a:14:43:30:7b:bd:5f:65:54:16:b5:05:63:c8:22:
d5:48:6f:51:b1:4f:9f:1f:7c:ea:ef:b4:31:a7:89:
58:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:31:C5:B1:95:0C:3E:75:44:3E:E9:43:03:10:50:02:BD:D7:93:8D
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PTHFsZUMPnVEPulDAxBQAr3Xk40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.31.246.0/24
Signature Algorithm: sha256WithRSAEncryption
53:95:76:ad:67:76:85:03:ef:39:d2:a5:41:39:b4:c6:d6:a0:
e8:07:c2:b0:a0:a6:5b:fc:b8:f9:ae:50:37:72:3c:10:cd:18:
4e:c4:a0:e2:6e:9c:b4:e9:b8:5b:54:61:af:c9:51:fd:46:94:
af:f4:32:41:67:f2:3e:97:69:e9:cf:77:28:13:ee:1f:f3:72:
de:0b:b8:e7:1b:2a:97:36:5d:a6:8c:7f:c9:59:db:56:5b:05:
fd:c4:c4:46:ad:f6:ae:65:08:cb:3d:24:7f:76:09:aa:4f:7c:
4e:11:33:96:5d:7d:5b:f2:00:26:e9:b4:4d:76:e6:cf:c2:ae:
c5:05:14:f5:99:23:5f:8f:0a:f3:da:72:28:45:d9:96:44:b4:
5f:65:a5:fd:6d:79:97:b3:da:05:43:e4:fd:42:5a:fc:f8:ac:
d8:b5:99:e6:85:35:9d:9c:a1:8c:e4:a9:49:ee:60:7e:fd:58:
c0:f4:75:3a:6c:e0:14:f1:84:6b:0c:24:1d:74:b5:92:d0:f4:
e7:07:80:db:1a:df:bd:ca:5f:be:f0:56:12:3e:38:b7:8b:8c:
6f:cf:0f:8f:33:a9:ac:34:5b:4e:18:65:4e:a1:e8:7c:ef:62:
03:35:c3:80:8d:19:fe:99:5a:e9:24:2d:1d:e6:90:3e:a2:9b:
f9:4f:f9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org