Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/4iXGNKP_MGmQGfVZyrhpq62rljs.roa
File: 4iXGNKP_MGmQGfVZyrhpq62rljs.roa (raw, json)
Hash identifier: +qxRIVtMR6Re2szbdAWis+8Fj4+vG7jpCWik83Z0TbY=
Subject key identifier: E2:25:C6:34:A3:FF:30:69:90:19:F5:59:CA:B8:69:AB:AD:AB:96:3B
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 018552B65FA2AB3D1426E588CBE7353840B2
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/4iXGNKP_MGmQGfVZyrhpq62rljs.roa
Signing time: Tue 27 Dec 2022 08:32:41 +0000
ROA not before: Tue 27 Dec 2022 08:32:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201128
IP address blocks: 85.153.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:b6:5f:a2:ab:3d:14:26:e5:88:cb:e7:35:38:40:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Dec 27 08:32:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e225c634a3ff30699019f559cab869abadab963b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2c:9b:1f:6e:44:d8:95:f1:f9:3c:a8:2c:46:
3f:32:29:7a:89:6f:b1:ff:58:21:0f:04:f9:cf:42:
81:a9:17:4a:42:a3:60:8e:80:b7:61:ad:7f:50:18:
bb:0f:65:ff:cf:0a:2d:ed:69:9a:3c:35:12:4e:c8:
4f:f1:dd:1b:fe:bc:aa:e2:b1:7e:7d:56:a3:f5:50:
8b:1e:bf:75:5a:f0:20:99:f2:d6:42:d2:29:25:8e:
c4:ae:9a:5f:52:7c:b0:73:7e:7e:86:e8:da:a0:a2:
d0:9d:ad:98:3e:9a:41:f7:9d:8f:93:63:d0:a4:2e:
97:ac:b0:94:86:f2:0b:f0:96:65:a8:9b:bd:f4:7e:
c8:d8:27:75:c2:2d:d4:3d:d0:9b:4b:d9:f5:d6:50:
1e:86:d8:19:f2:c2:2f:11:4a:59:88:84:d0:ac:8d:
90:2e:70:ee:12:1d:dc:a6:90:1c:1a:ed:7b:b5:89:
88:79:3d:a0:da:a1:b0:71:38:8d:8b:07:ee:44:4b:
46:af:f3:16:e5:72:87:28:45:76:cd:a2:5d:7d:fd:
65:60:bc:e4:f6:18:3d:45:f6:44:ae:9e:2a:e7:f4:
47:90:bf:6c:a0:fd:b2:3c:48:ed:20:72:eb:9b:ed:
06:e7:20:bc:f8:e2:f7:6c:3d:8a:f0:73:bf:09:75:
04:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:25:C6:34:A3:FF:30:69:90:19:F5:59:CA:B8:69:AB:AD:AB:96:3B
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/4iXGNKP_MGmQGfVZyrhpq62rljs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.64.0/24
Signature Algorithm: sha256WithRSAEncryption
42:da:ce:da:72:a2:34:08:3a:0b:c2:7f:bd:81:71:28:3f:a4:
6f:3d:29:cc:5a:55:73:b6:d5:db:60:cb:96:81:4b:2f:d7:ca:
00:5a:fc:46:30:7a:fe:18:b3:51:99:47:8d:9f:ed:cd:53:32:
89:b0:6e:76:8b:d1:08:d9:82:aa:f8:06:6b:f1:b3:8e:7e:72:
5e:d0:73:9d:c1:96:9a:8b:0d:b3:77:1c:32:55:ea:9d:2a:fb:
f2:63:df:20:8a:db:94:5d:45:c1:f8:86:8a:fa:c6:d8:c2:8e:
bd:3a:90:6c:9c:69:b1:2f:57:0e:04:fb:ad:af:d0:6a:f2:37:
95:e3:bf:12:c2:91:d2:7f:ec:ba:5e:f4:c2:25:9c:9c:2d:33:
3f:25:7e:53:c3:2f:53:9b:d1:56:32:ee:52:97:86:20:e1:16:
14:a2:a6:7f:65:52:71:a6:b9:06:66:75:d1:b2:8f:10:f1:cf:
61:ae:42:f1:da:c1:6f:5d:fd:7e:40:cd:82:d8:c2:f1:8c:b4:
88:a9:d1:7a:f4:89:cd:de:8d:8a:fe:1e:72:f5:a0:14:e6:da:
ce:ee:d8:78:14:55:61:b2:f0:3a:d9:f8:16:14:d3:5c:88:a9:
cb:0c:3c:2e:59:87:93:0d:93:df:5e:5a:cf:a8:25:c7:8e:b8:
df:4d:5d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org