Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/zS8BB8eTKzOmoi2a7qqOv5XfCGQ.roa
File: zS8BB8eTKzOmoi2a7qqOv5XfCGQ.roa (raw, json)
Hash identifier: qV4JL7VsJPoVb70t2G2czYjIx+WsW5uPmGV1ZyQ62DQ=
Subject key identifier: CD:2F:01:07:C7:93:2B:33:A6:A2:2D:9A:EE:AA:8E:BF:95:DF:08:64
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 176295C6
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/zS8BB8eTKzOmoi2a7qqOv5XfCGQ.roa
Signing time: Sat 26 Feb 2022 08:31:52 +0000
ROA not before: Sat 26 Feb 2022 08:31:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8941
IP address blocks: 85.143.23.0/24 maxlen: 24
85.143.22.0/24 maxlen: 24
85.143.21.0/24 maxlen: 24
85.143.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 392336838 (0x176295c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 26 08:31:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd2f0107c7932b33a6a22d9aeeaa8ebf95df0864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cd:1e:48:cf:28:a3:64:3d:2c:8f:3f:e5:c2:
b0:60:93:a6:c6:3f:2e:ea:ac:21:fc:f2:ac:04:03:
30:2f:c0:a0:29:f7:68:6a:e4:45:08:79:59:2f:bc:
61:c6:3d:17:a4:a1:ca:71:b1:b3:87:77:87:d1:3c:
6d:cb:fa:b7:91:23:45:d4:3d:b8:79:1c:ef:95:a4:
6d:b2:26:93:d0:9e:2e:96:e3:9c:57:83:be:a5:fe:
49:4b:ed:63:61:99:59:eb:73:15:3f:a7:86:41:6f:
55:69:03:75:72:74:69:db:f6:12:d1:50:bf:38:9c:
cb:a0:da:a0:fd:e2:49:4a:19:c7:5f:99:45:4c:f0:
86:1f:44:51:cc:87:d4:c6:80:66:93:2a:01:31:dc:
1a:23:54:4e:72:7b:1c:e0:15:65:62:c3:04:7c:ab:
76:e2:f5:6b:18:0e:81:20:11:d0:c8:53:f5:e7:74:
a0:c7:e5:e6:6d:1f:9f:84:33:93:22:87:bf:3f:9a:
17:bc:f2:21:9d:7e:43:bf:3a:61:b2:95:b0:a3:6a:
56:4a:74:5f:98:50:25:dd:b5:3a:7d:c1:9b:2e:01:
de:be:24:bb:ff:f8:ee:17:14:58:f1:24:77:e4:c1:
8d:54:ab:d9:89:4f:d9:e2:91:0c:35:f8:ae:b7:8e:
79:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2F:01:07:C7:93:2B:33:A6:A2:2D:9A:EE:AA:8E:BF:95:DF:08:64
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/zS8BB8eTKzOmoi2a7qqOv5XfCGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.20.0/22
Signature Algorithm: sha256WithRSAEncryption
82:7b:8f:22:c4:d0:cc:64:79:36:0d:17:2c:64:ff:45:83:b0:
76:9a:c0:9d:b6:89:8e:2d:a8:4a:70:60:97:4c:5a:4c:4f:bc:
45:ef:1b:a1:0b:0d:eb:8c:b3:b0:f2:f1:4f:19:62:4c:d2:d4:
ce:e0:92:5d:39:67:31:6a:73:11:c6:fb:6c:99:72:11:cc:a9:
46:73:eb:c4:6a:0e:85:2a:8f:31:b7:49:2b:87:29:68:bb:a6:
23:d4:87:fe:56:68:5c:cb:3c:8e:e4:c7:d0:ae:cb:d7:9d:04:
6e:42:00:ec:ba:63:c3:5b:e7:ff:ad:4b:76:e8:4a:87:5d:ce:
91:4d:70:b6:6c:c6:70:76:57:dd:2b:d5:59:25:4a:4c:cb:c4:
4c:83:c6:d6:2a:ba:8b:1f:8a:32:5c:ea:c8:1f:2b:10:d3:44:
22:81:4c:d8:ee:3a:ba:3f:d0:f4:25:f1:95:62:c3:64:45:2a:
e0:25:66:22:1e:86:62:43:bd:34:00:45:09:8e:d3:e7:ab:ae:
13:1c:6c:84:1a:19:69:3e:ad:b6:0f:70:32:38:a8:47:4f:8e:
7a:69:d3:2c:00:0f:99:c5:4f:e8:d2:e9:aa:f1:09:43:d9:b0:
0f:2b:ac:5d:03:c8:75:fc:5d:4f:35:a3:99:3e:e0:11:eb:1f:
e3:40:aa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org