Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/btSIZiv3uM4U0bdIa0WkIinScPs.roa
File: btSIZiv3uM4U0bdIa0WkIinScPs.roa (raw, json)
Hash identifier: KOGms05VOJK6ZCbHZnDdG0meTUzqS+0KbutaCYaXHjU=
Subject key identifier: 6E:D4:88:66:2B:F7:B8:CE:14:D1:B7:48:6B:45:A4:22:29:D2:70:FB
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018552C0717C58BCF921E0EF0C3CFF1BCC50
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/btSIZiv3uM4U0bdIa0WkIinScPs.roa
Signing time: Tue 27 Dec 2022 08:43:41 +0000
ROA not before: Tue 27 Dec 2022 08:43:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207373
IP address blocks: 85.143.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:c0:71:7c:58:bc:f9:21:e0:ef:0c:3c:ff:1b:cc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Dec 27 08:43:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ed488662bf7b8ce14d1b7486b45a42229d270fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:1b:b7:07:72:45:d5:bb:89:87:f3:60:e9:
ff:89:10:f1:3b:7e:56:a1:14:26:35:dc:8b:01:4d:
b8:81:56:9e:65:60:89:54:bc:88:bd:f6:40:f1:94:
6c:06:fd:88:de:46:14:fa:dc:ae:1c:b8:f3:44:52:
bb:42:88:57:76:0b:33:e0:2b:cf:80:7b:97:86:15:
e5:19:83:02:af:ef:a8:06:77:b6:2a:9a:ba:33:76:
b2:df:e5:cb:fc:e6:d0:3d:51:cc:8d:04:41:ef:39:
9d:b3:69:a6:98:4a:46:a7:a4:02:8b:f5:21:09:2c:
cc:ec:9b:da:5d:a7:7e:72:6b:2f:d2:09:e1:32:e9:
e5:ed:fb:b0:7d:61:2d:95:e3:68:a5:77:46:03:73:
1e:3a:a6:a1:ee:ab:02:e2:35:fc:8f:58:13:fc:ac:
e5:7d:d3:b2:0e:f7:92:60:6a:73:8d:67:d2:9e:85:
6a:15:a5:65:51:66:74:2a:5b:6f:3f:18:22:dd:ce:
83:33:7d:5b:74:6d:8d:95:ab:51:83:24:e8:97:40:
eb:5e:fe:a8:79:71:f4:b5:cc:25:41:74:97:bb:16:
44:a6:43:e2:f9:0e:dc:2e:b7:de:7e:60:cb:65:ec:
c7:f3:6b:6c:fc:6a:36:4a:d1:65:80:24:b0:3c:8c:
ee:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D4:88:66:2B:F7:B8:CE:14:D1:B7:48:6B:45:A4:22:29:D2:70:FB
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/btSIZiv3uM4U0bdIa0WkIinScPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:37:19:93:f9:9a:68:49:78:a0:94:28:e6:8b:0e:b5:b6:e6:
09:6c:37:88:bf:d1:ad:c7:50:82:46:ec:fd:25:52:d0:c0:e7:
7f:82:0d:d3:0e:34:66:e3:c4:ff:8c:c8:8b:1b:7d:1d:f9:e8:
b2:92:22:70:46:95:a0:b3:7e:2a:08:88:52:94:7b:37:81:db:
42:12:73:ff:bf:b9:96:43:29:58:54:8a:85:fd:cd:01:ea:fe:
76:c8:8a:23:82:cf:88:ec:5d:5b:a4:35:eb:a8:ab:d7:8d:28:
df:04:ed:d9:f0:a2:16:a5:4b:90:01:d2:21:ac:d0:1d:e4:2e:
96:41:3e:87:38:c2:98:40:3e:87:f5:c5:7b:3d:fc:1f:81:4e:
1d:c3:cb:b9:27:40:85:db:58:32:50:ce:7a:dc:53:f2:e4:dc:
9c:0d:84:dd:1d:96:5b:9c:da:ba:5c:1a:1c:38:3d:76:f9:de:
e3:b3:e4:3a:51:3b:34:af:4e:a7:39:d0:74:82:24:c6:0d:f4:
5c:34:bf:b4:ad:c8:ef:56:a7:7d:17:f4:72:d2:96:81:06:8b:
4a:2a:72:2b:df:00:e0:4e:b5:c4:51:9a:c7:a2:37:f4:46:66:
10:7c:6e:5b:e5:ae:59:ae:3c:16:be:de:3f:88:86:d1:e3:0f:
a1:74:21:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org