Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Ke3ElXcauE7xOkS52jKFIBW154c.roa
File: Ke3ElXcauE7xOkS52jKFIBW154c.roa (raw, json)
Hash identifier: 7xw3Hs3xJ8f1pawPMeTvs0PkFSulvOBF8HPYRAbj41g=
Subject key identifier: 29:ED:C4:95:77:1A:B8:4E:F1:3A:44:B9:DA:32:85:20:15:B5:E7:87
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 02C4D3C8
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Ke3ElXcauE7xOkS52jKFIBW154c.roa
Signing time: Sat 01 Jan 2022 11:58:05 +0000
ROA not before: Sat 01 Jan 2022 11:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207710
IP address blocks: 85.28.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46453704 (0x2c4d3c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Jan 1 11:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29edc495771ab84ef13a44b9da32852015b5e787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:10:e8:4f:bf:a1:3f:03:0f:64:b4:07:59:3c:
0d:72:30:79:d9:5b:21:87:26:76:49:b6:00:5c:2d:
7d:c1:a9:e4:10:60:df:93:bf:33:82:04:8c:df:4a:
73:8c:5e:58:58:4a:93:8b:62:c1:57:3e:cb:64:1b:
29:fc:45:7c:e4:3c:5e:4f:a1:51:07:dc:80:91:c8:
b5:d9:c1:c4:82:e9:65:d4:db:88:e6:75:ab:ec:08:
35:6e:de:72:66:5a:78:bb:0c:a8:3b:56:56:04:a1:
e6:a6:93:65:85:3c:e1:ca:70:74:6b:9a:5e:fb:4c:
30:cc:eb:d6:38:fd:cc:19:84:31:39:5a:68:31:8f:
5a:ea:73:72:46:a4:01:d1:37:ab:a4:df:ae:c5:a2:
89:f4:66:bf:14:29:38:60:c0:a2:c4:f8:7c:22:77:
93:ee:05:17:30:76:bf:cc:c8:64:36:23:11:bb:e7:
1d:b5:3a:8e:4d:a4:cc:d7:58:a1:ae:00:e1:1b:14:
4a:56:9b:e6:13:18:2b:20:29:ac:02:57:34:54:8a:
a0:62:42:e4:1c:bb:5b:40:14:3c:09:58:c4:0c:6c:
d8:76:4d:63:8d:ea:ef:6f:ae:cd:76:2a:07:a6:70:
67:9d:b0:e6:5d:e2:21:6f:57:37:a7:64:46:0b:a4:
7f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:ED:C4:95:77:1A:B8:4E:F1:3A:44:B9:DA:32:85:20:15:B5:E7:87
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/Ke3ElXcauE7xOkS52jKFIBW154c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.59.0/24
Signature Algorithm: sha256WithRSAEncryption
44:98:48:f0:2e:fd:e6:4f:8a:b5:74:41:09:ff:0f:23:86:37:
cb:22:2c:85:a9:fe:97:aa:6f:7b:f1:4f:5e:9a:53:e1:16:dd:
aa:55:f0:01:fc:df:eb:13:70:3e:56:96:e1:34:ef:6e:dd:91:
19:b7:cf:56:79:67:74:b1:a5:63:35:d1:e7:06:b1:be:13:ca:
3b:b8:42:12:27:d8:bf:29:99:5b:e9:37:b3:d6:7c:38:d9:a9:
d8:cb:5e:b6:c4:f1:a7:8c:a1:e0:64:d0:0e:44:e9:54:63:36:
05:16:7c:40:0c:87:ec:80:7c:0e:9d:4b:8b:3e:df:a9:32:c0:
b7:1b:e9:05:8b:3e:d7:f8:9f:08:08:1a:1b:db:7a:3a:f1:6e:
2f:f6:eb:9f:9d:e2:ac:c3:97:af:d0:d9:6b:7b:4d:f8:08:45:
c5:17:88:97:76:18:7d:03:ee:5e:e6:93:08:af:f1:b6:fd:b0:
48:eb:c9:30:91:0b:70:a1:6b:1f:81:c6:90:90:dd:11:46:78:
0c:83:76:3a:ef:5a:73:ce:b2:ad:52:ac:22:9a:68:0a:45:42:
96:48:62:17:1e:46:a5:c3:a6:19:74:77:a1:89:3c:cf:f0:fc:
98:95:87:55:db:d3:8f:8b:11:0e:5f:bf:4e:15:a0:a5:6b:24:
6a:26:df:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org