Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/KVGq70cfXjoAHsLFR1pt740bIHQ.roa
File: KVGq70cfXjoAHsLFR1pt740bIHQ.roa (raw, json)
Hash identifier: z4xb9rqXQT590XX+AsUNvTb4EVO/YAou8BtYEOKBAaM=
Subject key identifier: 29:51:AA:EF:47:1F:5E:3A:00:1E:C2:C5:47:5A:6D:EF:8D:1B:20:74
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 089507D0
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/KVGq70cfXjoAHsLFR1pt740bIHQ.roa
Signing time: Sat 01 Jan 2022 03:51:04 +0000
ROA not before: Sat 01 Jan 2022 03:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212974
IP address blocks: 85.248.37.0/24 maxlen: 24
85.248.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143984592 (0x89507d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2951aaef471f5e3a001ec2c5475a6def8d1b2074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ad:54:b2:16:8d:d3:80:c3:f6:0a:9b:93:ea:
8f:30:eb:89:53:a2:9c:ef:3c:e9:b4:14:f2:1a:30:
76:8f:f0:12:02:74:6a:43:e7:f6:23:aa:da:be:3d:
a7:26:75:27:b6:d3:ab:26:23:70:3a:68:58:f7:a3:
08:3a:ff:0a:c6:ea:f1:4f:0f:e7:45:51:53:05:83:
60:e4:0d:85:40:e1:e4:13:86:c2:6d:83:0a:3b:1c:
60:13:7a:95:60:d0:49:49:c1:b0:3a:66:3b:0c:69:
af:78:45:64:d2:76:dc:7c:0a:3c:e6:38:88:e1:8a:
2b:53:50:02:e0:82:2d:cc:4c:0b:62:21:e5:10:cf:
26:11:23:06:9d:57:0e:5e:68:03:1c:57:75:8e:48:
e0:19:d0:30:e8:1a:ad:0d:d4:a0:e5:42:69:aa:1b:
e1:79:2f:30:7f:59:39:68:88:0f:b7:46:6f:68:78:
83:dc:2c:2b:b8:c8:e6:bf:da:d0:33:8e:b0:46:3b:
eb:73:2b:1c:f1:40:30:39:08:93:3f:1b:37:c7:6f:
31:e8:ae:a3:2f:78:90:39:88:a2:16:9f:01:2d:7e:
ff:88:03:e2:b7:fc:e8:d5:b9:92:be:4b:e8:86:49:
25:08:92:a1:06:a2:63:2a:f1:6d:23:b3:13:65:b4:
cc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:51:AA:EF:47:1F:5E:3A:00:1E:C2:C5:47:5A:6D:EF:8D:1B:20:74
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/KVGq70cfXjoAHsLFR1pt740bIHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.248.36.0/23
Signature Algorithm: sha256WithRSAEncryption
03:18:89:d3:66:e6:99:21:91:d0:81:33:19:c9:fc:d2:b9:7e:
47:91:8c:c3:40:20:19:ce:3d:31:be:fa:98:2f:8f:ab:24:c3:
c8:b2:5b:63:10:4e:d7:e3:62:0b:2e:d1:de:23:f1:81:bc:ef:
be:df:ee:d6:53:e4:3d:28:bf:66:eb:5d:2f:4f:96:54:da:b5:
39:e5:a5:25:34:38:92:eb:d3:1b:36:1f:11:db:e4:a4:4f:08:
b2:0a:83:82:dc:06:e4:95:48:ba:aa:2b:14:20:17:60:31:8a:
6d:ae:59:00:4e:3e:61:fe:42:c0:5d:ec:bc:7a:cc:97:af:a9:
01:a3:10:08:1a:c1:cc:53:f8:39:12:5e:f5:25:5c:15:af:75:
df:86:17:00:f8:1b:33:41:4d:74:1a:1f:bc:e4:94:5b:f8:36:
92:3e:7e:8a:1b:78:ec:5e:89:67:ff:b0:c0:6b:21:b2:1e:76:
e9:6e:f1:16:30:fa:e8:fa:45:6d:78:0b:28:25:b8:8c:4c:cc:
a1:08:97:2e:de:1f:bb:26:d8:76:c8:b8:21:d6:8f:bc:12:35:
05:90:ba:d4:2d:00:45:c7:93:83:95:af:82:9c:cd:3a:69:b4:
f5:42:88:4e:84:1b:7a:ba:bb:7a:d5:80:06:ed:64:3d:5e:c7:
48:d4:e5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:23 2023 by rpki-client on console-fra.rpki-client.org