Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kZI2f1H_spSziaYfGcQWwJ14Gks.roa
File: kZI2f1H_spSziaYfGcQWwJ14Gks.roa (raw, json)
Hash identifier: tnVOAscUKvHwQaF2hXCm0Jid+wLrg6u/suHpn/06CJc=
Subject key identifier: 91:92:36:7F:51:FF:B2:94:B3:89:A6:1F:19:C4:16:C0:9D:78:1A:4B
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018552BF86D7BE472F36489D062269830937
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kZI2f1H_spSziaYfGcQWwJ14Gks.roa
Signing time: Tue 27 Dec 2022 08:42:41 +0000
ROA not before: Tue 27 Dec 2022 08:42:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209698
IP address blocks: 85.143.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:52:bf:86:d7:be:47:2f:36:48:9d:06:22:69:83:09:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Dec 27 08:42:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9192367f51ffb294b389a61f19c416c09d781a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ec:ac:d0:c3:a3:e7:d1:62:a6:6b:14:4e:1e:
df:54:e0:e1:e9:3e:60:b6:30:c6:10:5c:45:9e:f9:
e1:e9:67:94:34:16:1e:69:e6:e8:c9:49:79:12:f2:
b6:65:69:af:b6:c6:ba:99:0f:6c:39:ca:d4:ab:96:
ea:98:ea:a2:15:56:71:cf:dc:12:c8:38:2f:1b:5f:
99:bb:31:8e:90:45:1d:ff:3c:41:08:9d:cd:c1:20:
fa:f1:d5:91:95:1f:71:88:50:04:b3:5f:6c:a5:81:
37:a6:da:84:be:97:87:b7:93:c6:4e:7c:1c:ca:ac:
0e:56:dc:d4:32:50:ca:92:90:27:a6:a3:96:32:8a:
13:0f:6e:71:11:f8:17:54:7b:6f:2a:33:3d:dd:14:
33:cd:0a:d2:b2:e3:3b:2d:1e:bb:2e:72:1b:ef:05:
bf:79:4b:a7:dc:32:1a:98:5e:2f:50:90:9e:0c:c1:
55:02:c9:7d:1a:8a:6e:31:cb:14:f9:e4:02:3b:f8:
2a:a1:81:03:d6:e1:d6:4b:d5:24:dc:49:34:fd:fe:
ab:56:df:da:77:c8:14:68:83:05:10:74:8b:b1:f8:
c5:c7:68:bb:4a:e2:c2:47:bd:b1:36:dd:1f:02:52:
62:41:32:75:ac:ac:ca:b0:4f:6d:74:93:19:8c:76:
af:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:92:36:7F:51:FF:B2:94:B3:89:A6:1F:19:C4:16:C0:9D:78:1A:4B
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kZI2f1H_spSziaYfGcQWwJ14Gks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.16.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:64:5d:12:fa:1d:0e:8b:88:67:26:ea:52:df:27:67:65:27:
12:e4:5f:6b:62:88:a4:3a:fd:92:d5:95:f0:dc:d7:0a:8e:d5:
41:9b:79:f6:6c:35:2a:6c:bc:a4:a6:86:ae:94:01:75:f0:f4:
e3:2b:59:4e:45:23:74:f9:46:a0:d9:aa:2c:73:16:e5:6d:8b:
40:15:ad:d6:56:ca:ce:be:5c:13:1a:da:68:58:fb:21:58:75:
12:37:9c:df:19:77:d5:9b:23:5e:cc:fa:52:9d:52:6e:5d:ff:
d8:25:4e:48:17:2f:b3:64:4a:2b:b2:4f:90:21:e5:1c:fe:26:
31:29:1b:30:16:26:34:45:f0:dd:aa:d6:d9:50:49:c0:a9:db:
cd:08:3a:9b:db:35:56:cd:5a:ce:5e:89:66:88:20:1b:62:3b:
56:e7:54:e7:6d:b0:3c:f4:6e:05:e5:dd:b4:bf:a6:92:1d:c4:
62:d4:d7:c6:a5:2d:c3:54:d5:82:b9:35:41:82:54:fc:7c:45:
88:8a:c2:78:2b:7f:95:ac:41:9d:c8:a6:da:4f:47:f3:e1:e0:
6b:ea:00:58:a9:8e:00:b7:7a:27:d7:52:2e:33:23:09:92:8b:
cf:cf:41:84:93:b8:9f:2e:5e:74:98:1e:4a:94:66:49:09:7f:
ca:ea:21:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org