Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iPiZ0jyp1R4Xsvgni0d8T-o4_Ew.roa
File: iPiZ0jyp1R4Xsvgni0d8T-o4_Ew.roa (raw, json)
Hash identifier: 5ZDsAEMWf+PShXleqMPrzkDtnSdyxgPk/Lz7hf7O3H8=
Subject key identifier: 88:F8:99:D2:3C:A9:D5:1E:17:B2:F8:27:8B:47:7C:4F:EA:38:FC:4C
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 018472ED927C2D8671BFC642125595976540
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iPiZ0jyp1R4Xsvgni0d8T-o4_Ew.roa
Signing time: Sun 13 Nov 2022 21:38:02 +0000
ROA not before: Sun 13 Nov 2022 21:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25098
IP address blocks: 85.116.10.0/24 maxlen: 24
85.116.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:72:ed:92:7c:2d:86:71:bf:c6:42:12:55:95:97:65:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Nov 13 21:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f899d23ca9d51e17b2f8278b477c4fea38fc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9c:96:0b:98:0d:58:4b:80:c8:45:07:3c:76:
51:02:c3:3f:5e:72:de:49:57:26:0f:0c:86:b6:d7:
79:76:9e:11:b3:72:cc:50:5d:97:8c:de:05:46:fc:
be:a7:8d:f1:d8:b8:79:04:18:10:c5:43:5a:22:89:
58:1d:b9:f8:96:54:64:26:28:cb:d3:b6:23:e3:da:
db:76:1d:87:7d:68:12:5d:a9:8a:2b:b6:f6:ed:89:
71:a1:ed:e0:70:f7:04:9c:8e:ad:fd:37:2c:aa:1d:
62:1d:96:16:9f:ca:6b:35:01:03:c0:73:22:b1:28:
fb:73:33:25:e1:08:d2:35:5f:47:88:44:fa:cc:4e:
55:55:27:8f:b4:b1:a7:67:3f:e3:05:1b:65:f4:2b:
64:7d:ed:52:f4:0c:d2:cd:83:00:8f:8c:75:40:05:
cc:85:ee:50:76:be:4e:3a:5d:af:96:8a:26:b3:9c:
96:84:1e:d5:54:56:40:70:c3:6c:e3:58:f6:be:5a:
55:01:98:0c:d0:28:53:e3:bc:3b:d7:22:c7:e5:c9:
1a:83:88:0a:93:49:72:a4:22:8b:ee:09:7c:f6:9d:
91:de:e5:6f:c8:2f:4c:fc:3b:e9:67:7b:c7:7e:cc:
06:82:a9:d1:1b:df:26:7f:20:01:bf:a9:b0:d6:9b:
a6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F8:99:D2:3C:A9:D5:1E:17:B2:F8:27:8B:47:7C:4F:EA:38:FC:4C
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/iPiZ0jyp1R4Xsvgni0d8T-o4_Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.8.0/24
85.116.10.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b0:3a:51:bc:f7:18:46:2a:4a:ad:b5:1e:e8:8c:72:8d:d7:
4b:b7:54:7e:36:16:dd:b4:c2:73:86:ab:37:1b:65:df:35:9a:
74:82:d2:f2:12:d3:bf:88:b8:bf:87:70:b7:80:bb:2c:49:37:
1e:32:bd:3f:be:1f:d1:a7:c5:08:ca:b8:eb:f2:22:18:82:09:
8b:c3:93:39:49:9a:e5:62:62:76:fb:42:df:c4:b8:93:d1:1d:
a6:d7:95:20:1d:6d:cf:76:38:98:d0:02:34:bd:cf:7e:d3:28:
9f:78:85:36:48:51:b2:c3:a7:c6:96:a5:0e:2f:49:a8:6e:2c:
de:b9:65:c1:fb:6f:47:e0:0b:c8:ea:97:44:f9:0e:6f:a5:cd:
98:5e:99:ab:26:77:75:55:9b:5c:f7:6d:69:7b:86:89:32:ff:
4b:db:8a:10:ea:3d:7d:df:0c:8c:81:3a:a2:83:37:96:05:a3:
36:f9:df:90:6a:a8:93:01:d6:3f:2e:3e:3d:d8:c3:e6:90:96:
30:99:57:45:56:3c:92:fb:ed:de:d4:52:ff:78:27:84:95:54:
74:73:9f:d9:28:ef:22:bc:7d:34:6e:64:77:81:9c:38:e5:65:
a1:06:83:0d:be:23:1e:38:d3:ac:da:1a:f7:f5:1b:a8:9d:24:
26:96:37:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:11 2023 by rpki-client on console-fra.rpki-client.org