Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/jfyGrm85jLNAsGfd5hBjgcHeiZM.roa
File: jfyGrm85jLNAsGfd5hBjgcHeiZM.roa (raw, json)
Hash identifier: M2gIYpyC0lNAT2UEUIr2rNsP3sisn3HlH7HEEQCeNpU=
Subject key identifier: 8D:FC:86:AE:6F:39:8C:B3:40:B0:67:DD:E6:10:63:81:C1:DE:89:93
Certificate issuer: /CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Certificate serial: 3284461B
Authority key identifier: 66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/jfyGrm85jLNAsGfd5hBjgcHeiZM.roa
Signing time: Sat 01 Jan 2022 16:06:45 +0000
ROA not before: Sat 01 Jan 2022 16:06:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44821
IP address blocks: 85.118.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847529499 (0x3284461b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66de1d9dcdb25c1e532c5c9b69dfa757e306210e
Validity
Not Before: Jan 1 16:06:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dfc86ae6f398cb340b067dde6106381c1de8993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:4a:3c:16:3d:18:0d:82:36:95:1b:e1:60:
31:93:00:30:27:29:e7:53:40:39:ab:74:83:8d:20:
89:b0:16:61:71:82:95:47:9c:ad:38:49:bc:6e:a1:
b3:aa:78:a5:82:13:a2:a7:db:9f:30:02:11:f7:d5:
1c:2d:3d:37:05:de:59:d7:56:ef:bc:90:76:3a:5e:
6b:ef:3c:86:57:70:d3:f2:28:ac:95:e1:f6:4c:c3:
5d:14:92:41:78:81:1c:23:87:56:39:95:93:ef:db:
d2:3f:a0:85:c1:40:0f:02:36:fc:74:a5:9c:8a:9d:
f2:c7:e4:33:73:58:b2:00:7f:38:1f:09:36:94:71:
6a:0a:c2:a8:52:d3:30:57:33:d4:9d:e6:8b:7e:86:
3e:11:4c:e4:9a:a8:b3:d1:47:f1:bb:32:c9:56:78:
de:92:40:d7:a1:cc:07:b1:3d:4c:ce:5a:d9:89:9d:
14:a2:05:5d:16:c6:d6:97:e1:bf:bc:97:05:c7:10:
36:15:8c:2b:9d:00:a5:ae:f1:63:e4:09:c2:7b:ff:
11:0f:cc:f8:16:31:93:bf:4d:fa:2e:18:a0:e7:dc:
dd:07:2b:e3:23:c9:10:10:1d:7b:53:e1:1d:9b:12:
bf:2d:a0:64:c5:53:21:28:95:6a:b1:36:ca:c0:25:
7c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FC:86:AE:6F:39:8C:B3:40:B0:67:DD:E6:10:63:81:C1:DE:89:93
X509v3 Authority Key Identifier:
keyid:66:DE:1D:9D:CD:B2:5C:1E:53:2C:5C:9B:69:DF:A7:57:E3:06:21:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt4dnc2yXB5TLFybad-nV-MGIQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/jfyGrm85jLNAsGfd5hBjgcHeiZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/60fcfe-7b2c-4672-bc2f-40479870976e/1/Zt4dnc2yXB5TLFybad-nV-MGIQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.52.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:24:bb:73:38:c5:fa:3f:a0:23:aa:c1:ce:51:c6:04:66:68:
80:d1:42:51:87:5e:f6:0d:f3:65:08:39:6f:bf:f2:cd:3c:a6:
8b:83:06:1b:d2:5e:f9:60:f9:8e:24:d0:4d:64:08:52:58:06:
c5:52:8e:dc:27:6f:95:26:ac:25:57:f3:cd:c4:fd:52:18:6e:
1f:2a:f3:45:5e:a0:f5:14:4f:d3:b4:52:9a:70:35:a2:3c:4b:
6b:87:ad:9b:e2:13:f9:c3:46:c2:7f:79:3d:0b:6b:17:1f:fd:
5e:f0:af:2d:95:73:0a:d1:7a:36:3c:fa:4c:e1:0a:86:58:be:
f3:4f:78:8f:a9:17:4d:3b:0c:75:d7:44:46:28:6c:0b:ec:24:
d4:a1:9d:ee:ee:66:92:ec:7e:be:32:b7:4d:41:9a:cd:4a:f6:
2a:2b:23:25:92:bb:33:66:bc:6b:80:79:68:86:0c:01:3c:cd:
c7:74:0f:30:f8:03:43:aa:23:ad:0d:dc:ef:e3:f3:f3:4d:71:
10:5c:7b:55:73:0d:2c:d3:17:03:91:2f:69:9a:e9:2e:9f:81:
c0:4d:a4:0f:5b:4b:b5:7e:cf:ec:a3:37:00:e3:09:e3:8e:49:
18:c0:cd:37:6b:7e:b1:1b:71:ab:46:dd:df:00:4b:e4:66:15:
1a:e8:6a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:06 2023 by rpki-client on console-fra.rpki-client.org