Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/YjBUvIHXhorkzXCVoADpCjITeXs.roa
File: YjBUvIHXhorkzXCVoADpCjITeXs.roa (raw, json)
Hash identifier: xomGQbzmjiOtfWW2a0r/gG9t4cUmYvEzwiWIUnk7zsw=
Subject key identifier: 62:30:54:BC:81:D7:86:8A:E4:CD:70:95:A0:00:E9:0A:32:13:79:7B
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 01852A19B6012DE5F783CF502883BFF06D0C
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/YjBUvIHXhorkzXCVoADpCjITeXs.roa
Signing time: Mon 19 Dec 2022 11:16:46 +0000
ROA not before: Mon 19 Dec 2022 11:16:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62442
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:19:b6:01:2d:e5:f7:83:cf:50:28:83:bf:f0:6d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Dec 19 11:16:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623054bc81d7868ae4cd7095a000e90a3213797b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0f:af:b6:1f:be:4b:a9:c4:61:b8:25:bb:95:
0d:57:ef:02:7f:89:ce:d0:f7:1c:99:79:ca:df:6f:
37:a3:68:69:1c:96:12:89:81:e0:09:38:d2:54:d4:
05:a1:84:4b:32:6a:19:fc:69:df:f9:88:ab:2f:7b:
14:1b:b2:58:4b:03:39:37:99:86:df:da:50:a7:dd:
77:de:c3:5a:99:09:04:40:80:77:f8:1f:13:98:f3:
78:1d:bb:38:b3:24:46:d0:db:9d:70:37:72:de:15:
26:e4:54:e8:a1:a8:7e:7f:ca:1b:22:2e:1e:a4:11:
3d:98:d6:eb:c2:49:11:ce:3b:b9:17:50:10:f2:d1:
55:ad:6e:ca:ee:77:11:c2:c7:7d:a7:9a:f5:00:15:
6f:41:e2:1c:89:75:ef:f8:95:81:31:f4:e7:3e:6c:
02:a0:c3:d2:4f:7f:3d:90:7d:c4:b7:f1:8d:7e:9f:
88:4e:58:87:d7:6c:a2:6f:77:61:ae:51:e7:3a:85:
74:b6:f5:59:c5:cb:87:78:82:a1:ca:3a:06:e3:3f:
d5:4e:57:a2:32:0c:76:a3:c6:f1:8a:93:96:99:3f:
80:20:b8:31:11:1d:32:c0:24:0b:7e:2e:42:28:64:
b6:3e:ff:8b:9b:a1:e8:00:68:fa:15:76:da:d5:1d:
e8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:30:54:BC:81:D7:86:8A:E4:CD:70:95:A0:00:E9:0A:32:13:79:7B
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/YjBUvIHXhorkzXCVoADpCjITeXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:42:4e:23:44:ff:a0:11:bf:1e:52:b5:e2:3c:8d:59:04:ac:
5d:33:3a:cf:cc:a3:5b:92:b1:c9:60:ce:b8:e7:06:f9:7f:23:
93:f9:2e:80:38:b8:c8:2c:54:a4:da:61:c1:44:8d:09:5c:4a:
99:6f:35:a3:9a:be:d2:b0:c2:d2:d1:c6:0f:12:87:ad:72:3a:
fe:10:bd:f7:f3:ad:fa:6b:7e:f9:54:71:06:ad:b2:14:83:e2:
4b:6e:91:42:65:51:f6:88:28:9e:43:5a:c3:d3:fe:35:e2:79:
94:85:21:d2:59:76:df:08:87:ab:26:be:bf:45:35:6c:4a:af:
84:5d:47:b5:d8:2c:6b:ed:2e:3c:34:87:be:10:2c:14:76:45:
e9:26:5e:d6:f6:b7:17:69:d1:d3:67:e7:9b:d8:04:49:73:00:
72:58:9b:ba:a8:37:5f:68:8b:61:fd:bf:26:55:e3:54:20:d9:
c1:58:a7:11:ce:a1:96:64:8a:be:72:24:aa:ac:f9:4a:20:fd:
c1:1d:ca:48:d7:60:80:0d:79:52:53:26:0c:b1:4e:b5:85:54:
08:57:84:2f:4b:dd:6d:03:4c:44:66:06:a1:2d:a2:9d:17:8d:
18:42:58:e4:db:ae:88:66:83:a0:43:08:e1:07:d9:80:78:de:
a7:75:92:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org