Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M3jMt2aLfK11cQLucSq1UwCqeHc.roa
File: M3jMt2aLfK11cQLucSq1UwCqeHc.roa (raw, json)
Hash identifier: fuxOKH/Th0ZvhAAsNiF7/hVmAjL/GyRXypC8cmzroW4=
Subject key identifier: 33:78:CC:B7:66:8B:7C:AD:75:71:02:EE:71:2A:B5:53:00:AA:78:77
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A74C06D
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M3jMt2aLfK11cQLucSq1UwCqeHc.roa
Signing time: Sat 01 Jan 2022 16:07:04 +0000
ROA not before: Sat 01 Jan 2022 16:07:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35499
IP address blocks: 85.187.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175423597 (0xa74c06d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3378ccb7668b7cad757102ee712ab55300aa7877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1d:85:21:1c:6e:e9:40:d3:48:6a:b4:66:cf:
04:d0:52:be:9e:1a:70:86:12:6e:a9:c4:9b:0d:43:
00:aa:a4:3a:25:66:37:c9:9a:3a:76:b1:bb:36:d4:
68:35:4b:16:83:ef:76:df:98:02:4f:c9:09:6a:05:
d9:6d:b7:47:b6:4f:8d:ff:6f:5e:83:28:3f:56:7d:
4f:ae:ff:e0:2a:2b:3a:36:3e:be:92:bf:57:91:98:
40:cc:97:bd:85:ed:68:a8:03:f4:b3:3c:ec:6d:e0:
af:76:8e:57:fd:6b:74:09:b1:b3:87:59:86:1d:81:
9e:d6:91:e7:75:76:1b:81:ab:d3:c2:3d:08:ce:83:
29:6d:de:90:48:ef:aa:66:1a:c5:de:4b:40:8e:1b:
75:f8:57:f8:5f:24:7a:a4:f2:a1:1f:20:38:84:af:
6a:c8:69:0e:a4:57:b6:08:32:53:cc:69:2f:da:cd:
5a:81:95:7b:75:a6:4d:10:9f:4a:d2:b6:c8:8c:cf:
1f:a3:dc:fb:3e:24:cb:38:96:03:46:4d:12:96:43:
26:ae:ea:db:2f:ac:a8:6f:ec:2d:75:f8:ac:27:4b:
0c:24:c6:a7:8c:b4:c5:7f:69:41:df:52:d6:77:4d:
85:46:53:77:43:e0:18:37:66:49:28:f2:85:db:4f:
e4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:78:CC:B7:66:8B:7C:AD:75:71:02:EE:71:2A:B5:53:00:AA:78:77
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/M3jMt2aLfK11cQLucSq1UwCqeHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.21.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:a5:d6:00:df:11:f1:ed:2a:31:6d:96:35:3c:2e:16:7d:84:
e9:7e:9d:09:6f:1d:86:8e:49:23:25:11:79:73:1e:92:77:f3:
b4:50:1e:33:17:e0:35:9c:08:eb:93:3b:f0:2e:aa:76:5c:c9:
21:76:73:e9:f1:50:79:1d:8b:07:65:21:14:53:5f:65:dc:93:
93:fc:8d:b9:8a:6d:b4:af:85:14:0d:4f:3c:8c:3c:af:42:25:
ff:9b:ae:d2:c4:1e:a3:df:ac:de:27:84:16:01:27:fb:6c:7d:
31:b5:c1:f6:c6:94:00:8e:23:c0:1e:e7:f3:bc:1c:95:13:fa:
c4:c0:24:b8:07:99:eb:33:6e:2b:f4:f8:9e:63:d4:35:cc:00:
7e:e8:a3:8d:67:49:ce:68:6a:a9:5b:4d:dc:a9:f3:62:e4:73:
e1:5c:47:58:35:ca:f7:51:17:07:57:19:c7:c0:09:17:1f:90:
62:bc:32:9f:4a:3d:77:92:72:08:d7:28:79:57:13:c0:e2:d7:
2e:b9:b6:6d:9c:99:5d:f5:f3:76:84:c1:27:1f:14:c5:29:a7:
51:1a:de:a6:ca:ec:d8:e0:93:0b:66:ff:45:3a:d8:b5:32:b7:
c0:29:45:01:78:e2:ce:62:1b:80:2c:fd:1e:12:8f:2b:16:10:
b9:1b:33:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org