Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/wiXqztN3FjAnJLV__OgqW5ouNpM.roa
File: wiXqztN3FjAnJLV__OgqW5ouNpM.roa (raw, json)
Hash identifier: +YnDxja6XXOqyD7ro0t/dJEoC4YHJnEQbTLG3g02KK8=
Subject key identifier: C2:25:EA:CE:D3:77:16:30:27:24:B5:7F:FC:E8:2A:5B:9A:2E:36:93
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42910289
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/wiXqztN3FjAnJLV__OgqW5ouNpM.roa
Signing time: Thu 21 Apr 2022 09:06:52 +0000
ROA not before: Thu 21 Apr 2022 09:06:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34951
IP address blocks: 85.204.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116799625 (0x42910289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 21 09:06:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c225eaced37716302724b57ffce82a5b9a2e3693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5e:41:d1:44:b2:68:51:8b:b1:ad:c9:d8:e0:
d4:52:20:2e:e9:d5:22:d4:6e:f1:5f:b4:50:c1:b7:
1f:fc:20:c9:b5:6c:cf:7b:5f:f3:af:e9:8d:0e:db:
88:b0:5f:fc:2a:95:4c:97:a9:a9:05:eb:29:d9:54:
85:b3:c9:81:56:4c:29:f4:78:9b:d5:97:89:b9:8c:
ae:0a:25:41:02:60:9c:6e:f3:44:cf:ab:8f:81:91:
e2:d4:e2:d8:e1:3a:18:2d:ef:56:43:2f:f9:0f:22:
46:d7:c5:83:a9:b4:fd:98:03:f1:5d:d5:b1:b5:d9:
17:98:f8:ab:b5:6c:63:ef:bb:1e:69:99:1f:b7:d1:
e2:d2:ea:85:fa:94:41:bc:5f:29:87:4c:b4:49:4c:
f0:ce:7b:21:00:86:62:0d:96:40:9a:be:f1:f0:4e:
c7:96:8c:ea:29:43:f9:db:34:15:04:ab:18:60:41:
73:0c:c0:a8:41:98:9f:f5:f4:0e:9f:a8:60:21:09:
f1:7c:89:ed:ea:6a:ba:6a:ce:3e:d6:07:2a:fd:8c:
89:f4:c5:ac:ca:1a:fe:5d:57:b0:f5:44:04:0e:2a:
ea:9f:ec:19:14:8b:48:59:62:86:75:0b:66:57:8d:
28:9a:45:c6:5d:d2:4b:12:a1:d6:9b:e1:e9:7c:8d:
f8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:25:EA:CE:D3:77:16:30:27:24:B5:7F:FC:E8:2A:5B:9A:2E:36:93
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/wiXqztN3FjAnJLV__OgqW5ouNpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.199.0/24
Signature Algorithm: sha256WithRSAEncryption
14:b4:f1:ba:9a:c1:bc:1e:05:c1:7b:b1:60:a7:a8:27:d9:61:
3d:c4:fe:9b:ad:31:53:2c:f8:c9:d5:c7:20:4b:d3:16:4c:30:
07:78:31:58:e2:c1:3c:81:10:ef:30:eb:1e:b6:c7:ad:1d:8d:
63:c7:46:0f:f3:62:20:b6:7b:e2:96:df:c9:f0:52:e5:19:65:
78:8a:f1:82:0f:04:89:7d:a3:76:c6:27:ba:d7:eb:3c:07:05:
20:f2:f0:97:0f:f9:f0:48:e2:ef:d8:ab:e1:ea:70:06:1b:c7:
a3:e8:df:46:17:8c:2f:d6:d3:8b:50:47:91:17:fb:4f:e2:20:
99:1d:2b:ee:80:b6:1b:2f:e1:1e:c2:8b:5b:f6:06:49:82:c7:
ac:2e:08:ab:55:04:da:56:5f:7f:a0:b6:ef:f8:26:61:4d:4b:
c5:13:4b:1c:fd:b0:1d:17:fa:31:41:7e:c7:62:f2:f9:9d:8a:
b7:f7:d9:23:75:82:3e:bc:7f:2e:be:da:0a:25:92:60:d8:7d:
e4:ab:52:47:02:ec:3e:3e:33:63:12:39:01:72:60:7d:af:a0:
7f:f0:f9:d4:97:87:29:16:a7:e7:e1:72:0d:f9:c1:97:81:13:
b7:fd:5d:62:ac:17:03:96:7a:0f:de:95:84:a4:7e:f5:b3:b4:
5f:56:b1:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org