Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/DvUoNN6XpXsuPHq6JHJ1QI-xycM.roa
File: DvUoNN6XpXsuPHq6JHJ1QI-xycM.roa (raw, json)
Hash identifier: gwllm6v9mNP85ipKYD6eOx1VMwOsJu842uRltJ1Z4DM=
Subject key identifier: 0E:F5:28:34:DE:97:A5:7B:2E:3C:7A:BA:24:72:75:40:8F:B1:C9:C3
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 39F18ADA
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/DvUoNN6XpXsuPHq6JHJ1QI-xycM.roa
Signing time: Sat 01 Jan 2022 14:00:29 +0000
ROA not before: Sat 01 Jan 2022 14:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24756
IP address blocks: 85.219.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 972131034 (0x39f18ada)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ef52834de97a57b2e3c7aba247275408fb1c9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:18:4a:8f:f1:83:c6:b2:37:89:11:7d:4f:f9:
2b:7e:65:84:18:f0:5f:a2:ec:28:c6:2d:45:e7:86:
d0:3f:62:ea:03:10:bf:f9:f0:1c:4f:05:a1:39:d8:
d5:0f:9d:c2:24:0f:fa:c2:f1:06:2a:8f:39:00:78:
5c:2a:6c:60:3a:d9:a1:90:a6:92:43:0a:ef:96:3b:
74:66:1c:a2:2b:1f:70:44:53:d4:48:3c:56:3e:b2:
d1:8f:b0:9b:07:5f:87:96:08:27:15:6d:bf:49:19:
9f:22:a1:a2:56:4c:0d:54:8c:34:8c:9e:7e:f5:1c:
25:d3:ae:fa:91:ba:0d:2f:9f:31:36:c9:d2:2c:93:
13:de:05:5c:51:f8:3c:b4:37:a8:7e:ee:84:3b:94:
d4:2f:15:ed:74:7d:43:75:ce:05:74:5b:47:5b:0d:
72:3b:f2:2f:c0:b5:2f:d1:0e:99:a3:2b:0f:64:61:
8f:55:ce:20:de:87:c0:02:d1:97:c1:fe:05:39:c0:
d0:1e:67:41:bd:a7:89:a2:2b:4e:b2:09:2b:ca:6d:
7d:4b:c1:af:4b:87:0f:80:6d:ab:7e:64:bc:50:0f:
46:8a:32:c4:f7:a8:40:03:53:b7:15:03:7d:42:c2:
79:6e:da:1f:99:d8:ac:07:34:20:20:a9:b8:98:70:
16:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F5:28:34:DE:97:A5:7B:2E:3C:7A:BA:24:72:75:40:8F:B1:C9:C3
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/DvUoNN6XpXsuPHq6JHJ1QI-xycM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.219.198.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ec:5f:bf:b3:e2:d3:29:d5:0d:a8:92:c4:b8:26:ed:63:c6:
bc:1c:cd:cd:a8:93:c3:89:15:97:fa:7b:51:99:3f:d3:e4:20:
c0:41:11:07:0e:f7:de:14:e5:b7:28:cd:db:50:c1:fb:a1:c9:
86:01:7f:9f:5e:d2:2f:67:c3:e3:29:ed:66:39:cf:14:ae:d7:
ee:41:14:4f:d0:e8:c5:aa:4b:34:db:c3:a0:b1:cd:17:dd:a5:
d4:87:75:1c:6f:8f:e6:83:bb:10:2a:ca:bd:ea:ad:f5:c1:8a:
92:e6:6c:35:24:e9:e2:7e:27:55:f2:bc:1a:ca:c7:62:e4:a5:
6a:b7:f9:83:94:2d:fe:01:9c:be:60:5f:ed:a8:9f:60:d8:59:
fa:29:b1:ea:b7:32:0c:3b:7e:f0:ec:65:20:c6:6e:ac:63:cb:
eb:04:1a:9b:2a:9a:7a:b7:d8:b6:4e:5f:d0:7d:78:c0:cf:25:
30:89:f5:7c:13:f7:79:88:dd:55:93:2c:45:10:fd:29:25:6d:
db:de:8e:0c:aa:e8:15:6d:7b:5b:95:6f:87:43:83:21:69:a2:
f8:91:de:cf:f4:ea:b4:b2:a2:e2:42:9b:f8:0b:c5:53:36:19:
3d:b7:ef:6d:19:15:57:78:2a:f4:29:60:ca:5b:50:3d:ae:a9:
c7:f6:f8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:02 2023 by rpki-client on console-ams.rpki-client.org