Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kypDKgyeanyqralvnB5Uiem3rhA.roa
File: kypDKgyeanyqralvnB5Uiem3rhA.roa (raw, json)
Hash identifier: FulOVmDaFOdkyhsXi4Ng5DcFLkW3UUKdC4WylfqxayM=
Subject key identifier: 93:2A:43:2A:0C:9E:6A:7C:AA:AD:A9:6F:9C:1E:54:89:E9:B7:AE:10
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 16D52972
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kypDKgyeanyqralvnB5Uiem3rhA.roa
Signing time: Sat 01 Jan 2022 02:51:27 +0000
ROA not before: Sat 01 Jan 2022 02:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207259
IP address blocks: 85.143.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383068530 (0x16d52972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 02:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=932a432a0c9e6a7caaada96f9c1e5489e9b7ae10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7a:36:00:d7:4b:93:be:3f:90:5c:e8:2f:43:
2a:f9:b3:9a:cc:6e:1d:b5:7e:19:3c:a7:20:d1:e2:
33:cf:1b:db:86:b6:e5:40:cd:2b:19:10:a0:09:30:
d8:80:68:47:d4:e8:db:ba:73:52:38:e3:1b:c9:51:
ab:60:d0:c2:e6:72:d1:3f:26:0c:23:e8:91:40:56:
a1:b1:dc:e6:b7:e5:35:b8:bf:47:49:b0:d2:d0:b0:
d9:d2:d1:d6:a0:f3:26:1a:8f:5a:4c:9d:c8:73:60:
7f:06:16:f4:2a:1b:54:73:bc:86:b6:67:2a:df:6a:
e5:13:e3:75:19:9c:69:42:93:c1:30:71:8f:40:b1:
a6:60:9a:b3:f9:a2:ad:c0:2e:ea:80:5b:3d:f3:fb:
bb:8f:7c:3d:b0:57:61:1b:bd:58:f3:bd:fe:40:9e:
b5:d3:7b:fe:77:d5:d6:2c:bf:77:ab:74:4e:22:a5:
e4:46:9a:1c:eb:dd:34:0d:4b:4f:5d:c9:0e:fb:c0:
17:59:f2:04:f1:16:e6:b8:37:08:a0:22:02:72:53:
9e:ae:7d:2d:b9:76:f2:d8:e9:21:fc:44:bc:72:98:
54:6b:75:17:cd:80:9b:ba:74:4c:30:8a:cb:69:7a:
d9:7c:fb:55:9b:18:a0:5b:49:39:19:8e:75:5c:ec:
92:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2A:43:2A:0C:9E:6A:7C:AA:AD:A9:6F:9C:1E:54:89:E9:B7:AE:10
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/kypDKgyeanyqralvnB5Uiem3rhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.246.0/24
Signature Algorithm: sha256WithRSAEncryption
91:89:bf:3f:d5:8c:bf:be:2a:62:c8:07:28:dd:1d:94:b0:5c:
3f:4a:31:70:38:5c:27:7e:19:f2:36:19:2d:9d:ea:75:25:cd:
08:00:72:bd:6c:ec:f0:2f:dc:c1:64:a6:13:0a:cf:f8:fb:98:
f3:b0:26:f9:7e:39:23:ec:57:e0:60:06:1a:8a:22:70:17:c8:
87:58:d9:e4:77:dc:5f:88:29:b5:83:b6:58:90:a9:80:44:07:
a7:3c:cf:28:a4:20:f1:b1:1d:b3:b4:70:94:7f:cb:22:a1:d6:
de:1c:00:3c:b0:4f:5b:46:83:ed:88:42:bb:0e:61:c7:8f:43:
47:29:41:32:8c:2f:9b:80:98:22:9b:97:bb:a8:76:6a:b2:49:
ed:b9:39:26:3f:02:2c:45:73:1f:57:51:f2:3d:ce:74:de:a7:
e5:c9:23:71:d1:80:94:02:bb:ce:7f:84:5a:6f:f7:09:1b:4e:
83:6d:fe:f0:57:5f:74:85:f9:7b:d5:bf:f1:2e:d5:d2:3d:de:
3b:6c:5a:29:68:5c:42:9f:5e:63:a5:98:41:14:98:f3:7e:de:
f0:b0:ad:f8:62:21:f2:f1:33:82:76:a8:29:e0:f7:09:83:7f:
60:8a:47:89:08:18:d2:8f:24:2f:65:d1:41:d6:b5:66:62:bc:
0c:9a:55:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org