Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/E6vYfemCxhCdx4pkP6lComNVYG8.roa
File: E6vYfemCxhCdx4pkP6lComNVYG8.roa (raw, json)
Hash identifier: 5L2i6MaKtnXgnV9PZtmkll/S/ZdPjZk4JU+KBUehODY=
Subject key identifier: 13:AB:D8:7D:E9:82:C6:10:9D:C7:8A:64:3F:A9:42:A2:63:55:60:6F
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A0DEC59
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/E6vYfemCxhCdx4pkP6lComNVYG8.roa
Signing time: Sat 01 Jan 2022 14:00:44 +0000
ROA not before: Sat 01 Jan 2022 14:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204009
IP address blocks: 85.219.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973991001 (0x3a0dec59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13abd87de982c6109dc78a643fa942a26355606f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:45:e8:9a:ee:37:56:e3:c7:6b:df:9c:55:4f:
d4:b9:b3:f2:0d:0d:af:f9:e8:9a:e7:f0:9b:1f:52:
6e:81:4a:4c:f3:30:2f:e1:f9:62:af:18:eb:e4:e9:
e9:04:55:db:b9:b9:75:21:c5:d1:fd:ab:da:2b:c8:
95:bb:7d:d8:d0:e0:b6:f5:5c:3c:14:62:17:17:75:
62:2a:7f:11:5a:06:8f:b8:30:a7:62:0f:71:3a:8b:
5e:69:82:e1:dc:13:f1:3a:be:cb:44:94:b7:17:2b:
ad:0a:cd:9b:3f:d4:37:0d:c7:29:75:b8:35:37:09:
c3:a9:65:ac:14:08:4e:90:ca:89:85:d9:fa:a7:bc:
c9:63:5d:ce:e2:10:86:88:de:58:67:b3:a5:fe:7f:
4a:87:b2:11:20:09:e4:db:00:f7:cc:98:58:bd:c4:
df:9e:45:c9:18:ac:68:e8:6f:9f:30:b1:24:4c:6f:
16:76:a9:9b:86:72:ec:36:e1:c3:b9:de:ca:86:ce:
70:a0:b2:22:60:f2:ec:a2:d2:b8:bb:cd:72:1d:7b:
c3:d9:b4:ad:f9:c3:c6:86:05:0a:b1:a5:9d:7e:c1:
74:ca:d9:c8:7a:2f:7c:c7:04:ff:ef:63:00:98:c6:
4a:27:f0:ea:a3:06:e3:9f:97:48:87:75:bb:00:9c:
17:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AB:D8:7D:E9:82:C6:10:9D:C7:8A:64:3F:A9:42:A2:63:55:60:6F
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/E6vYfemCxhCdx4pkP6lComNVYG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.219.229.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3c:82:70:ce:30:65:c9:b2:fd:d7:0a:58:9b:85:6f:a1:af:
9c:de:44:5d:af:63:45:38:49:ad:bd:b0:ff:2e:18:8d:af:61:
36:5f:1f:e6:1c:64:cd:e5:01:44:dc:7d:3e:90:b1:34:29:fd:
c8:60:2e:94:f3:92:63:fc:d8:f7:dd:d7:16:b5:64:26:c5:84:
0e:c8:ce:ec:02:13:5f:16:13:43:ae:4c:fe:56:bc:32:f3:75:
57:34:81:0b:7f:9d:84:42:12:8e:7b:25:e9:7c:7c:d6:fd:aa:
55:bb:57:9d:55:b2:cb:d6:49:f9:da:bd:21:e3:33:fd:bd:90:
c0:c5:7e:bc:a6:1d:14:cb:e5:ec:79:5d:fa:e0:71:b7:ca:b5:
4b:11:86:ff:b9:7d:22:be:92:cd:3e:57:51:d8:86:a4:52:2e:
41:03:ba:4e:f7:5b:93:f5:71:e2:c4:82:e5:f8:5a:91:23:fe:
3a:e5:01:90:a0:e7:24:1e:ce:d7:1b:e0:3f:69:00:fa:20:45:
59:3d:58:54:93:66:42:32:e8:b7:60:c9:84:74:9a:65:81:a5:
92:02:5d:a2:ad:51:0b:ac:23:b8:ca:4c:2c:f4:be:35:65:ac:
f4:5b:eb:f5:2f:a1:6c:94:ae:8a:66:75:0e:e4:a6:17:79:a6:
fd:41:d7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org