Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/yvQ1ZNzTktcNXTI9Bs-yzj1P0O4.roa
File: yvQ1ZNzTktcNXTI9Bs-yzj1P0O4.roa (raw, json)
Hash identifier: KYFpuwuQ5e3R9sMNgPvtWSDGc/cHWldg08os1LHztvQ=
Subject key identifier: CA:F4:35:64:DC:D3:92:D7:0D:5D:32:3D:06:CF:B2:CE:3D:4F:D0:EE
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 06FB78C8
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/yvQ1ZNzTktcNXTI9Bs-yzj1P0O4.roa
Signing time: Tue 03 May 2022 15:14:22 +0000
ROA not before: Tue 03 May 2022 15:14:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42337
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117143752 (0x6fb78c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: May 3 15:14:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=caf43564dcd392d70d5d323d06cfb2ce3d4fd0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a9:22:bb:7a:39:cb:0e:32:b3:c3:26:72:e9:
11:36:48:9f:d0:66:88:55:c0:98:75:1f:e8:7f:8f:
1a:a1:fb:46:1d:59:13:eb:73:8f:11:62:e9:52:88:
eb:1a:78:30:6e:79:19:57:c5:2d:cf:9c:8a:91:61:
9a:eb:84:22:7e:c5:9f:ed:51:3d:5f:92:68:af:16:
bd:d2:4d:f8:66:9b:89:f1:f9:d2:1e:63:4e:5a:b3:
cc:3a:77:2b:a1:1d:ee:0c:ef:8b:35:8c:8b:8e:85:
c1:0b:fc:61:07:eb:10:50:a5:6b:e2:c7:e6:a5:28:
3f:f5:73:40:6b:4f:59:50:3d:c3:ef:ee:49:d8:4e:
ac:69:11:33:61:a8:e8:84:a2:02:88:66:c8:8e:c9:
8f:7b:55:c4:a8:e5:69:3c:f8:1c:94:2d:88:d0:e2:
29:5c:da:d6:04:e0:9d:07:c3:0c:79:c1:6a:00:66:
4f:cd:21:d7:cb:27:f4:a3:2d:e5:ff:81:6e:53:e2:
9f:54:56:c9:1d:74:ef:9b:31:19:ba:97:df:3e:ab:
a1:51:cd:a6:f8:f8:46:0e:3c:fe:9c:8e:27:7c:19:
7b:fc:03:a0:4d:1e:26:f9:7f:88:38:b5:9a:78:06:
5d:98:36:e5:77:52:4f:3b:57:f2:c5:3b:84:65:40:
c1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F4:35:64:DC:D3:92:D7:0D:5D:32:3D:06:CF:B2:CE:3D:4F:D0:EE
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/yvQ1ZNzTktcNXTI9Bs-yzj1P0O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
68:5c:1a:b6:d5:dd:de:9b:47:f4:3e:93:1e:ed:95:9c:71:d6:
5a:65:2d:6c:09:92:3d:2b:17:59:63:2a:5d:b3:e1:ff:02:de:
c0:bb:fa:f4:c6:f2:2c:e8:8c:28:cf:b6:08:65:72:21:0c:6d:
da:dd:6f:1b:e5:73:20:15:ec:84:91:ca:0e:4b:d6:4a:9f:c2:
dc:f7:06:66:00:1b:f6:e0:e9:23:de:9c:c8:ff:09:e2:57:da:
4a:48:52:83:22:af:f0:0f:60:ee:e3:65:62:fb:0f:fb:aa:cb:
40:64:2d:8c:0b:12:57:84:32:96:21:9f:4f:4c:ae:27:30:33:
d2:d1:6a:fb:14:04:cc:ca:80:01:9c:5c:fd:99:69:f5:49:cd:
df:0b:44:07:19:93:b7:10:78:24:ad:6f:70:44:3f:fc:a3:6a:
15:6e:5f:7f:f9:43:c3:84:55:fb:a0:5c:19:da:6f:a8:5e:30:
80:84:eb:2c:fc:65:df:05:09:50:d1:f3:cd:db:7a:f3:9d:77:
17:ed:16:d2:ba:6d:87:c4:d3:2b:65:cc:7b:eb:d0:78:7c:72:
db:6c:6e:cc:5e:86:51:42:d9:96:bd:bc:3c:8b:61:4c:42:f4:
55:b4:71:ce:f0:22:10:43:63:5e:df:ea:ae:00:8d:96:cb:43:
4d:37:85:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org