Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RLdRC3WMpwBLQ9H6ExS5mzaSdP0.roa
File: RLdRC3WMpwBLQ9H6ExS5mzaSdP0.roa (raw, json)
Hash identifier: tlfSIdN7tAIylu1dTuNKZXCrZ78ALDj8ckLe/qHzazw=
Subject key identifier: 44:B7:51:0B:75:8C:A7:00:4B:43:D1:FA:13:14:B9:9B:36:92:74:FD
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1BB08F5E
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RLdRC3WMpwBLQ9H6ExS5mzaSdP0.roa
Signing time: Thu 07 Apr 2022 12:10:18 +0000
ROA not before: Thu 07 Apr 2022 12:10:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12978
IP address blocks: 85.153.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464555870 (0x1bb08f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Apr 7 12:10:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44b7510b758ca7004b43d1fa1314b99b369274fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:42:7f:4b:72:d5:46:9b:0c:f9:39:94:5b:78:
f0:a7:a8:79:bf:93:20:63:42:56:a0:75:c2:39:f1:
0c:cd:32:0b:7f:41:65:db:57:3c:01:ac:5f:b2:b2:
b8:bd:52:57:3d:4f:6a:77:90:d9:c0:d1:8c:48:98:
61:72:c0:5a:14:c5:a9:d6:30:2c:5a:1c:60:2e:a4:
f1:65:0f:e0:e6:4b:7b:ab:58:0b:ca:0b:08:88:cb:
a1:b5:d6:1e:aa:6e:3a:cf:f7:86:72:3c:bf:22:ae:
1d:2e:a6:f0:9c:4f:b2:97:59:9d:d1:10:ce:2a:71:
83:d9:b7:21:54:e5:21:62:8b:6c:d1:fc:f0:a1:0b:
d0:a8:67:2a:d3:67:f3:ae:37:ae:ba:86:bc:1a:af:
c1:1e:47:8d:de:1c:17:dd:ff:f8:f7:7f:33:86:db:
b6:5a:32:64:d1:5d:57:13:46:5a:b3:56:5b:c8:9f:
bc:91:1f:91:51:fb:4f:a6:94:39:31:09:c9:ab:c5:
07:05:f6:ee:53:a2:9c:2c:5c:0b:b1:67:44:ae:e7:
a0:e7:64:f4:05:7d:6b:d8:71:21:c1:fb:e7:80:a9:
b1:09:cb:c7:6e:50:2c:ee:ed:3e:39:57:d9:d2:92:
91:75:bf:32:5f:5c:26:6a:8d:7d:1e:11:53:45:ae:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B7:51:0B:75:8C:A7:00:4B:43:D1:FA:13:14:B9:9B:36:92:74:FD
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RLdRC3WMpwBLQ9H6ExS5mzaSdP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:20:a3:e0:71:1e:3b:6f:d9:67:7a:a1:13:c6:b8:24:0f:7a:
17:23:02:e9:0e:c6:59:ff:21:e7:2b:a7:73:10:b5:21:ee:73:
73:fd:0b:a5:ee:e3:cd:8f:77:4e:0c:ab:83:9c:5a:52:cb:3b:
4f:df:f0:18:86:2c:f8:52:b0:05:15:78:bc:01:9c:5e:ad:b3:
ef:e8:24:29:97:06:91:3b:94:f1:a5:64:d7:ec:2c:fb:df:36:
35:38:9f:93:5e:fe:26:5f:6a:1c:71:eb:9b:fe:4d:95:f9:d1:
d2:48:7d:f4:dd:5f:86:22:e6:2a:e8:86:11:29:e8:c7:67:75:
66:ec:51:bb:cc:36:af:29:d6:31:2d:03:b9:31:6b:3c:47:83:
81:4b:1a:f8:01:67:dc:c3:dc:cf:45:b0:ea:95:31:8b:65:29:
ac:f0:e3:0f:b1:f5:79:20:7b:d8:ad:db:f8:50:81:98:63:8c:
2e:a9:e2:8a:6d:38:a7:8f:d7:60:26:b5:71:fc:8d:dd:bb:73:
94:72:b2:ba:99:8f:64:7c:23:8f:3e:ef:bb:e3:f6:50:dc:cd:
36:27:1f:ca:14:e0:a6:ff:93:03:a8:80:8a:bc:b8:48:7a:a9:
ef:a1:75:a3:de:0e:b6:b3:bc:a6:c7:6e:6b:8a:e7:b9:7a:ba:
c6:ca:ae:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org