Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa
File: 1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa (raw, json)
Hash identifier: J7nzLQF/f9jZVXi5Eh851JSU3a6pIGmEj9hShldpcUc=
Subject key identifier: D6:AC:B3:0E:98:F1:C5:6D:2E:44:05:B1:1B:DF:FD:5D:AA:BC:0A:66
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08CC9E03
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa
Signing time: Sat 01 Jan 2022 07:04:37 +0000
ROA not before: Sat 01 Jan 2022 07:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398859
IP address blocks: 85.117.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147627523 (0x8cc9e03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6acb30e98f1c56d2e4405b11bdffd5daabc0a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:f6:f1:0e:0d:a0:13:b0:32:a1:81:ca:b7:
bf:72:0c:77:6f:fe:1e:40:64:bf:c5:4b:63:6f:a4:
ba:b0:d0:82:73:ed:2e:03:ba:af:f3:2a:57:b5:ab:
fd:86:e3:c8:5f:39:82:da:f8:ce:fc:dc:59:c2:9f:
ad:73:4b:85:10:0f:5a:07:01:17:24:47:7c:f4:19:
65:14:f2:a3:9a:a1:db:5c:b1:c8:d6:bc:02:2c:1c:
db:e7:f5:aa:fe:f2:e5:4d:bd:b3:0c:de:a9:f7:6b:
6f:9e:fe:2b:95:3f:85:dd:61:4d:f1:cd:39:2a:8b:
28:0d:b4:01:ad:da:b5:d3:2a:a6:3a:6e:c5:e9:2a:
e9:59:8e:5a:0a:1e:67:df:d8:fc:2e:83:72:18:64:
36:3c:dc:2f:a3:e4:8a:b1:4d:32:5f:50:e7:6f:1a:
70:a2:ed:a3:f0:c3:60:2f:b6:52:68:9a:80:4f:40:
6f:64:f4:9e:0f:36:fb:eb:da:63:fb:c1:14:bb:ca:
c0:51:00:bd:9d:e2:6c:83:0e:95:a9:f0:19:b3:61:
1d:97:e0:90:d8:fd:c9:af:ec:7d:c8:20:ec:fe:8d:
a6:a8:fd:ae:27:97:d1:df:03:39:6d:49:53:e9:12:
48:6e:f9:7d:a1:cd:a9:eb:e9:d6:ce:7e:e8:95:bd:
11:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AC:B3:0E:98:F1:C5:6D:2E:44:05:B1:1B:DF:FD:5D:AA:BC:0A:66
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/1qyzDpjxxW0uRAWxG9_9Xaq8CmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.242.0/24
Signature Algorithm: sha256WithRSAEncryption
10:30:5a:ee:68:2a:9d:27:ed:64:b1:db:9a:24:ec:13:2a:81:
8e:38:07:8d:28:0d:1d:03:c0:a4:5d:54:d1:82:d9:e2:30:5c:
e1:1d:8a:ae:19:a3:97:8d:a3:e6:56:d5:56:75:bc:20:35:25:
3b:cc:84:73:e2:48:dc:ed:d4:cb:d0:62:fb:77:d5:a3:96:ca:
ab:f1:8e:50:7f:a1:6f:a2:a7:71:af:91:69:0f:55:a3:c3:06:
e6:e3:e8:b6:21:c7:e8:2f:12:30:ac:5c:86:ce:17:a3:cb:60:
10:c7:e4:98:13:38:fe:3c:94:5a:c9:60:85:9e:1d:d6:22:d4:
52:2b:c2:f6:97:d2:f1:e9:d5:a8:40:92:7a:a9:a4:e4:5d:cb:
e0:d9:03:1c:6a:0e:cf:c2:35:31:b5:e5:5c:da:ce:68:68:3c:
88:06:0a:53:46:93:f5:2b:9a:b0:c2:61:68:28:81:a4:9d:47:
4b:be:f7:0e:40:71:2b:83:ae:5e:e9:e0:88:b7:1a:ed:b1:98:
0d:be:8e:e7:46:29:e3:fa:6b:a9:2e:2a:bb:91:8e:25:d7:28:
25:f8:6a:4e:02:d4:1c:27:7c:d5:08:9b:7a:c6:51:19:79:9b:
d0:d4:d6:18:b9:54:6b:7f:73:66:47:89:f4:bc:24:b2:97:7d:
e7:44:5f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org