Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/OLKRzEDtuaauBiefzt7KR--y0tY.roa
File: OLKRzEDtuaauBiefzt7KR--y0tY.roa (raw, json)
Hash identifier: AZbIx6U8mAbFCEPuPnt0//cfRJIAJDmjSCVHR5xDDFU=
Subject key identifier: 38:B2:91:CC:40:ED:B9:A6:AE:06:27:9F:CE:DE:CA:47:EF:B2:D2:D6
Certificate issuer: /CN=ed5902bdfbd74c33ea76453d145e76f6aa857c41
Certificate serial: 084BFB27
Authority key identifier: ED:59:02:BD:FB:D7:4C:33:EA:76:45:3D:14:5E:76:F6:AA:85:7C:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VkCvfvXTDPqdkU9FF529qqFfEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/OLKRzEDtuaauBiefzt7KR--y0tY.roa
Signing time: Sat 01 Jan 2022 00:55:40 +0000
ROA not before: Sat 01 Jan 2022 00:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47658
IP address blocks: 85.116.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139197223 (0x84bfb27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed5902bdfbd74c33ea76453d145e76f6aa857c41
Validity
Not Before: Jan 1 00:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38b291cc40edb9a6ae06279fcedeca47efb2d2d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:09:44:d1:7b:92:fa:e5:48:1b:d4:19:75:e0:
8c:24:aa:93:08:4a:5f:89:57:13:37:15:5c:90:26:
ab:fa:a0:19:69:e5:79:44:05:16:ea:b4:a2:a5:de:
40:83:81:18:de:4e:86:fd:89:30:d7:d7:16:69:ad:
58:2f:16:a0:d6:8c:78:e8:c0:8f:49:b8:b7:83:2c:
0a:27:6c:de:e3:db:b1:62:d9:0e:46:8f:70:9a:89:
77:61:90:64:fd:f7:dc:8e:81:a2:6c:4b:6e:dd:7a:
13:df:40:c5:62:26:9f:ae:56:67:80:90:21:18:bc:
9e:39:fb:7e:d7:68:c8:03:4f:32:ca:c3:75:e1:de:
d0:38:55:a2:4c:f1:66:6f:61:f1:66:d2:e6:69:10:
21:7b:44:03:35:2d:d3:5d:bc:2f:fc:f2:25:90:8e:
ea:d7:c9:43:a0:ec:fb:25:39:b7:3c:0f:58:87:49:
3b:bc:57:08:0b:3d:4f:14:cc:97:1a:03:ad:0a:aa:
45:a2:74:12:19:5c:53:3e:56:8b:58:cb:bb:e2:c7:
e7:bd:ee:71:47:4b:4f:8f:09:6c:8c:34:b7:e7:a6:
55:f8:c5:c5:88:8b:d4:e3:5b:40:f6:73:21:ee:2c:
e0:02:cd:2a:5f:6f:88:b1:4d:c7:bb:49:8b:fb:ff:
f0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B2:91:CC:40:ED:B9:A6:AE:06:27:9F:CE:DE:CA:47:EF:B2:D2:D6
X509v3 Authority Key Identifier:
keyid:ED:59:02:BD:FB:D7:4C:33:EA:76:45:3D:14:5E:76:F6:AA:85:7C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VkCvfvXTDPqdkU9FF529qqFfEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/OLKRzEDtuaauBiefzt7KR--y0tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/7VkCvfvXTDPqdkU9FF529qqFfEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.40.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:71:5b:3c:3f:ef:c8:23:ab:b7:5f:a3:f4:90:36:31:16:f2:
df:05:c5:4a:bf:da:f9:a8:b7:63:70:cb:99:44:da:de:62:fb:
f4:e3:a0:af:c6:ce:82:0c:39:f3:f6:09:3b:8c:31:c5:7b:2b:
40:24:21:80:9b:01:d9:2f:d2:b9:f7:7d:83:89:2d:89:d6:58:
bf:e0:21:ff:6a:0a:92:59:36:b3:30:20:b9:65:e7:23:ca:a9:
78:4b:28:34:c4:20:9a:37:8a:d5:d5:1c:b1:a2:f2:5e:2e:3a:
9c:62:14:d9:fd:d0:62:87:8f:72:63:e9:12:d2:ba:23:fb:29:
85:8b:9d:45:27:22:a5:2c:3e:b2:f9:4c:3e:e8:23:66:86:26:
3b:79:8b:85:4b:c7:74:28:b4:64:37:65:bd:9d:08:af:94:72:
61:46:1a:4e:cf:eb:2a:31:7e:69:eb:62:ea:db:c2:ad:79:bd:
51:97:22:75:f0:81:ff:76:65:cf:20:69:73:81:f8:7e:05:df:
a1:43:fc:52:53:8f:14:e7:c8:17:09:c8:bd:4e:8e:c7:77:b3:
9f:1d:65:31:9f:7a:7c:6a:f0:36:92:69:8a:f4:9b:b9:ce:a8:
0a:02:48:a6:96:db:4c:5a:ad:34:ab:10:86:1c:b5:20:6e:50:
98:eb:ab:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:35 2023 by rpki-client on console-fra.rpki-client.org