Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fe8ynH0ORHlnfwau2gMm2I11dXM.roa
File: fe8ynH0ORHlnfwau2gMm2I11dXM.roa (raw, json)
Hash identifier: CgFltHK0D/cViTxUOcJQmalyQPgh6MrvaTk5CUWY/Kc=
Subject key identifier: 7D:EF:32:9C:7D:0E:44:79:67:7F:06:AE:DA:03:26:D8:8D:75:75:73
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 16CE88C0
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fe8ynH0ORHlnfwau2gMm2I11dXM.roa
Signing time: Sat 01 Jan 2022 02:51:21 +0000
ROA not before: Sat 01 Jan 2022 02:51:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201848
IP address blocks: 85.143.208.0/20 maxlen: 20
85.143.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382634176 (0x16ce88c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 02:51:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7def329c7d0e4479677f06aeda0326d88d757573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:68:06:9d:e6:ff:e6:1e:43:c8:78:2e:97:66:
c1:68:29:22:0f:42:f1:1d:74:5b:66:1b:7f:39:31:
52:51:3d:be:d9:8e:39:14:82:99:bb:31:ca:d1:08:
ab:a7:ee:02:21:19:9a:95:b9:9b:3b:53:e6:b3:a8:
6c:48:dd:7c:78:d6:86:e7:6e:e9:0d:9f:1a:bd:eb:
75:87:df:66:9f:c1:ae:1a:a7:5b:41:2b:75:7b:f9:
7b:ab:14:c7:3d:f8:f0:27:0c:fe:eb:91:a6:b8:fd:
99:6b:4d:1a:47:4f:66:d5:52:0b:2c:e3:49:0f:b7:
8b:76:ec:a4:d4:04:f7:e9:05:1a:03:14:44:c2:10:
8e:2f:80:94:59:44:7f:53:6c:21:58:64:17:f5:39:
cb:4a:f4:c7:22:51:e1:1e:12:f5:de:3d:da:34:3a:
fa:eb:ad:de:bb:b0:aa:28:4e:57:ae:df:8e:3c:81:
4e:ef:84:b1:f6:14:d1:ad:0d:2f:a6:65:b6:5c:59:
43:08:e5:44:74:ec:11:c3:5b:23:59:d7:53:76:fa:
f5:77:78:1d:77:3d:e6:c1:57:6b:ab:aa:1a:59:16:
62:3b:2f:b3:b0:c1:e5:82:d2:6e:2c:84:5d:01:19:
af:6e:94:04:1f:ec:50:b0:4e:f0:a6:47:fd:3f:3f:
a9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EF:32:9C:7D:0E:44:79:67:7F:06:AE:DA:03:26:D8:8D:75:75:73
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fe8ynH0ORHlnfwau2gMm2I11dXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.172.0/22
85.143.208.0/20
Signature Algorithm: sha256WithRSAEncryption
26:9d:c3:f2:bb:09:58:c2:63:a7:8f:ac:ef:01:4b:3e:a3:38:
91:1f:20:47:e0:bb:26:db:58:35:8e:cd:22:a2:0b:7b:b7:4c:
8c:29:1a:a7:85:de:bf:65:29:64:35:c2:7d:09:d2:5a:23:a1:
fe:b7:7e:17:1c:b6:86:41:54:1d:dd:d6:b8:9d:62:a9:52:71:
64:db:91:61:f5:52:40:c1:16:05:28:65:9f:62:8a:68:f8:f0:
8a:50:ff:96:4a:fa:1b:87:f9:24:1f:b6:25:8c:4a:12:74:41:
1f:89:86:ec:b7:19:9c:a2:96:dc:f8:73:88:7f:20:50:02:55:
23:c3:77:35:18:45:15:50:4f:b6:14:88:6d:72:9e:e4:66:6d:
ef:3f:33:de:af:58:11:a5:fb:9c:eb:aa:c8:c1:25:bd:dc:a3:
62:56:1e:3f:9a:23:97:dd:00:32:ff:bc:b3:cc:03:81:b9:21:
8f:e4:5c:36:46:5a:16:c0:6e:2c:71:48:c0:ab:19:81:4f:ad:
ee:0d:ec:34:e5:da:58:7c:e6:43:12:91:8b:df:39:04:67:8a:
1f:31:8c:26:d0:f9:0f:ea:12:f7:da:f1:68:07:d5:57:ea:09:
3a:17:2e:59:17:c4:e9:4f:1b:9b:6c:08:ef:01:2d:a5:48:45:
5b:ec:17:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org