Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/0c6181-218f-400a-bb70-8c523a5bba78/1/B0uXXJkBQiyXAE4-JjuRMk5Rgnc.roa
File: B0uXXJkBQiyXAE4-JjuRMk5Rgnc.roa (raw, json)
Hash identifier: A1tmxwLPyYHAXwhyHqMDcZZ1nD2IKjdpT+w7uf7qORA=
Subject key identifier: 07:4B:97:5C:99:01:42:2C:97:00:4E:3E:26:3B:91:32:4E:51:82:77
Certificate issuer: /CN=cb8e6c5a928ba48ca72f707bb794de49d70a0e77
Certificate serial: 17E6BCF3
Authority key identifier: CB:8E:6C:5A:92:8B:A4:8C:A7:2F:70:7B:B7:94:DE:49:D7:0A:0E:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y45sWpKLpIynL3B7t5TeSdcKDnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/0c6181-218f-400a-bb70-8c523a5bba78/1/B0uXXJkBQiyXAE4-JjuRMk5Rgnc.roa
Signing time: Sat 01 Jan 2022 09:58:23 +0000
ROA not before: Sat 01 Jan 2022 09:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 85.118.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400997619 (0x17e6bcf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb8e6c5a928ba48ca72f707bb794de49d70a0e77
Validity
Not Before: Jan 1 09:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074b975c9901422c97004e3e263b91324e518277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3d:9e:28:4b:3e:98:d1:62:99:d7:43:a7:dc:
47:43:f4:7e:a8:32:01:7d:db:44:61:18:94:28:8a:
f6:09:a4:c5:75:49:b5:c6:55:bf:84:a7:e4:1b:9a:
de:65:b9:64:5e:70:84:60:bd:88:e4:16:42:ed:75:
9d:2b:43:52:ee:b9:51:53:ad:b2:c2:34:20:40:2c:
1f:6b:d9:e3:e9:a5:18:82:e7:d2:c5:48:71:2f:44:
28:09:ab:e7:47:f3:cc:f6:9c:fa:8e:2b:ad:b1:49:
ce:c5:60:99:df:e8:1e:77:f9:bf:ba:4e:a7:03:5f:
51:4d:53:86:97:36:96:ed:4f:51:be:44:86:de:68:
66:7f:0b:f2:7f:7f:40:20:81:81:61:04:4b:9b:88:
0e:2d:7b:bb:b6:eb:de:1f:a0:31:68:6c:31:ec:58:
1d:91:a1:86:f6:ea:e7:d4:eb:4e:ce:6e:e1:cf:ce:
91:3a:51:1c:3a:cd:80:54:b9:8c:43:6f:d8:52:41:
d1:fd:d6:cc:98:e4:5d:5b:dc:01:dd:ba:ec:aa:8c:
3e:7c:33:60:d0:24:e5:ae:d3:10:d4:a3:c5:c7:b6:
10:1e:90:a3:17:29:f4:24:51:16:94:b1:67:3c:e1:
0b:bc:17:b5:bf:c0:c4:26:20:35:85:85:d1:18:b0:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4B:97:5C:99:01:42:2C:97:00:4E:3E:26:3B:91:32:4E:51:82:77
X509v3 Authority Key Identifier:
keyid:CB:8E:6C:5A:92:8B:A4:8C:A7:2F:70:7B:B7:94:DE:49:D7:0A:0E:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y45sWpKLpIynL3B7t5TeSdcKDnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/0c6181-218f-400a-bb70-8c523a5bba78/1/B0uXXJkBQiyXAE4-JjuRMk5Rgnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/0c6181-218f-400a-bb70-8c523a5bba78/1/y45sWpKLpIynL3B7t5TeSdcKDnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.216.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:5b:81:66:9d:16:e7:2e:a6:c7:dc:ab:1b:61:f8:be:39:31:
37:ff:0c:58:a0:81:3c:74:e7:8c:b7:72:b0:c7:53:9e:b5:cc:
b8:37:c3:47:9c:97:08:9f:6b:cb:36:be:47:3f:14:49:82:d5:
f7:46:c3:34:b8:bd:bd:4a:87:67:f4:da:92:1e:29:25:9d:e2:
da:25:5a:6a:26:40:3c:d0:ca:94:25:67:4c:4d:20:e8:6c:ef:
44:c0:62:ba:3e:92:63:5e:a1:c9:08:14:c3:b6:b5:c8:97:e1:
f3:06:0a:a2:bb:b1:68:45:71:16:aa:35:a6:dc:15:47:df:92:
60:e7:06:b8:f6:c7:c3:0d:87:3d:21:47:f8:69:93:a7:c7:0b:
aa:26:eb:2c:b4:26:20:69:67:14:24:4f:16:18:3c:84:4e:7f:
49:2a:74:d7:97:ae:f8:b2:56:0e:09:c1:8e:0c:ac:65:4d:b5:
2e:f3:0b:a7:86:32:4c:d0:d1:67:b3:e0:0d:79:b9:4f:d8:7b:
ae:4d:56:d7:67:84:77:48:b7:b2:a9:28:29:7f:68:1b:3d:aa:
ca:c3:bf:47:d4:a6:f0:83:3a:99:87:19:7f:53:21:85:b3:8b:
b9:05:71:7f:00:9b:ce:93:c5:d4:e1:d0:13:32:52:15:e4:78:
45:91:44:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-fra.rpki-client.org