Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iM7UZ8rvHkJDQJ2_UDVBwlE9Vmo.roa
File: iM7UZ8rvHkJDQJ2_UDVBwlE9Vmo.roa (raw, json)
Hash identifier: Sy+BctHZYcugVPgBMeg/3eEco2pTwiIkYeuri9o+6gs=
Subject key identifier: 88:CE:D4:67:CA:EF:1E:42:43:40:9D:BF:50:35:41:C2:51:3D:56:6A
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 0184CAF7B530FAC51447B9E1C455919F441E
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iM7UZ8rvHkJDQJ2_UDVBwlE9Vmo.roa
Signing time: Wed 30 Nov 2022 23:55:42 +0000
ROA not before: Wed 30 Nov 2022 23:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25098
IP address blocks: 85.116.10.0/24 maxlen: 24
85.116.8.0/24 maxlen: 24
82.136.16.0/22 maxlen: 22
82.136.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ca:f7:b5:30:fa:c5:14:47:b9:e1:c4:55:91:9f:44:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Nov 30 23:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88ced467caef1e4243409dbf503541c2513d566a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e7:c7:09:f9:06:b5:a7:5f:ab:5c:2f:10:2d:
7d:78:a4:8c:a3:dd:d5:b1:28:0d:0c:85:fe:6d:da:
6b:94:71:1b:c9:e4:6d:a4:df:d7:32:06:a3:4d:0f:
ec:b7:4e:20:e5:fb:e4:25:1a:96:84:f1:a6:8f:6b:
15:a1:20:d9:a3:d7:1c:46:9c:98:57:0c:8e:95:cf:
02:b8:32:b9:2b:2a:c9:f6:da:95:53:49:ff:07:56:
ba:e7:bc:0a:21:f5:5e:bb:4a:2f:72:83:5d:71:c2:
5c:c8:a3:ff:0b:53:05:f9:77:40:5a:e9:a8:38:a2:
5c:e6:27:24:e4:e4:2b:14:59:ee:1e:35:23:23:56:
b1:65:3b:8f:50:e6:0e:8f:c7:3b:53:8c:dc:00:7d:
ed:79:09:a1:4b:57:b3:d7:4b:ab:26:4f:76:70:01:
c4:81:32:04:7b:96:93:8d:e4:db:b0:e9:77:69:d8:
03:9e:91:d1:70:66:c0:e6:ba:04:72:19:09:d5:c1:
97:ee:58:9a:99:46:10:17:75:8c:b8:8f:45:44:fe:
9a:f3:9f:7b:37:20:25:ee:25:00:73:b1:c5:ce:bd:
4b:09:1f:b1:5c:2e:32:c0:a9:a9:8d:be:b8:00:02:
61:6b:f2:01:3a:90:f3:2c:b6:da:a8:15:d1:d8:1e:
28:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CE:D4:67:CA:EF:1E:42:43:40:9D:BF:50:35:41:C2:51:3D:56:6A
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iM7UZ8rvHkJDQJ2_UDVBwlE9Vmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.136.12.0-82.136.19.255
85.116.8.0/24
85.116.10.0/24
Signature Algorithm: sha256WithRSAEncryption
14:8f:71:4e:ae:1f:07:ae:9e:1b:cf:91:56:4a:69:04:ab:35:
fe:a5:95:7a:31:98:81:7e:0a:4b:c1:42:99:e0:69:ab:16:59:
06:61:05:38:88:80:c9:42:bb:cd:e7:d7:54:b3:f0:ca:82:b1:
ca:31:db:24:fd:86:bd:93:64:b4:9b:1d:82:67:90:dc:b7:31:
17:12:7c:a9:c7:5a:02:51:f8:18:f9:8c:2d:b1:ce:06:39:54:
ad:ce:27:be:7b:a4:7b:6e:0d:66:f4:de:4d:18:67:03:72:0d:
62:24:24:d2:02:b0:72:29:dc:0e:dd:df:6b:6f:7a:9b:b4:22:
a9:bf:90:c2:4f:fe:76:19:2f:20:05:6e:5b:1c:f7:51:3e:5e:
79:18:1a:fb:bb:6f:4c:eb:e7:be:e2:64:7a:74:3a:5d:79:08:
70:7b:b4:bd:37:ee:90:ac:7f:cd:4c:f3:1a:fb:84:40:4b:6b:
99:34:03:2f:a9:af:9b:dc:89:66:b8:71:d3:8f:07:49:71:9a:
35:57:bd:a9:6e:1f:12:62:64:bf:1a:6c:c2:2a:05:0c:90:34:
fc:84:3a:8e:5e:ac:21:20:e2:d0:27:7c:61:71:8d:9c:77:13:
3d:a9:a3:f3:60:ae:2c:c3:34:1b:55:24:f2:bc:f1:a2:ac:4c:
3d:cd:48:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:11 2023 by rpki-client on console-fra.rpki-client.org