Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/KtvFMqd7onrgALQ2ZPrgTTNB0XE.roa
File: KtvFMqd7onrgALQ2ZPrgTTNB0XE.roa (raw, json)
Hash identifier: 2PrLYeRdetYZIfKLezDC0FyM+EyBSywiJUfcfZz5SoU=
Subject key identifier: 2A:DB:C5:32:A7:7B:A2:7A:E0:00:B4:36:64:FA:E0:4D:33:41:D1:71
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 038B2082
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/KtvFMqd7onrgALQ2ZPrgTTNB0XE.roa
Signing time: Tue 10 May 2022 11:25:02 +0000
ROA not before: Tue 10 May 2022 11:25:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 85.158.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59449474 (0x38b2082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 10 11:25:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2adbc532a77ba27ae000b43664fae04d3341d171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fc:da:10:08:e8:e6:99:d6:05:38:b5:f7:63:
63:10:53:16:b4:6a:e2:e8:28:b5:65:b7:f8:6e:37:
aa:c3:b1:de:2b:85:a8:68:9a:22:5b:ff:14:7f:b7:
71:c9:2b:de:d2:86:6d:eb:29:2f:fa:03:75:2e:68:
ce:fb:8b:55:86:f0:73:fb:28:59:7e:12:79:a8:a7:
2e:8c:7d:19:00:35:e7:97:97:8c:45:30:3f:5f:9f:
95:e2:ba:d5:ed:62:35:6c:e8:5c:8b:1c:bf:be:23:
86:73:98:60:f5:2f:41:d0:84:30:47:22:e8:58:0e:
4e:0c:29:80:fc:ce:81:87:05:e0:8a:7a:4c:60:ad:
03:81:1b:32:1a:b8:16:09:96:b1:78:69:ae:ba:57:
0f:6c:40:0e:7f:6c:74:49:3c:06:e0:0a:ab:e2:89:
37:46:b2:84:72:f9:4d:e5:55:b7:68:d5:73:28:13:
04:59:0c:44:22:c5:fc:c7:c9:45:2c:0b:ac:73:05:
82:7b:2a:23:4e:67:87:27:92:28:c8:85:34:4d:25:
d2:a2:cb:03:c7:20:28:8a:78:d3:a4:9d:a9:96:12:
38:db:75:76:05:68:55:68:c3:5d:6d:e0:38:5d:e4:
5c:d7:a9:3d:3d:5a:8b:bf:96:5b:fc:c2:d0:87:e1:
c7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DB:C5:32:A7:7B:A2:7A:E0:00:B4:36:64:FA:E0:4D:33:41:D1:71
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/KtvFMqd7onrgALQ2ZPrgTTNB0XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.146.0/24
Signature Algorithm: sha256WithRSAEncryption
56:80:11:f8:6a:01:11:d5:ae:58:bc:72:06:98:4a:0d:be:41:
75:cb:9b:83:41:2d:68:05:7d:ea:a0:f8:64:70:86:55:71:01:
cd:33:ed:3f:7b:4f:74:89:b2:02:70:70:e9:0d:f7:0b:46:b2:
08:e7:0b:57:23:04:25:16:1b:0c:fd:54:bc:96:7b:49:e4:93:
b2:3c:42:48:ba:8f:da:13:a0:de:bf:15:e3:3a:80:fa:d1:ac:
eb:9f:d9:ac:16:a5:05:41:53:c3:58:69:90:24:45:07:5e:f8:
f8:95:91:85:6c:a3:bd:89:3d:49:23:23:42:98:23:2c:05:9f:
46:45:0c:5c:49:1b:cb:3c:24:04:76:41:ad:c6:f6:cf:e3:1e:
d2:9a:e9:97:77:74:aa:00:85:d0:fa:e9:45:d7:25:f8:3d:78:
b7:31:dd:d2:fc:f7:02:c1:18:66:70:30:d0:81:51:e5:6a:68:
bf:4c:db:22:40:d1:de:dd:f4:66:28:03:be:a3:a5:63:64:b3:
2d:48:df:d5:ef:99:73:8b:13:25:5e:39:d3:24:b2:a4:b7:c4:
9f:46:67:2f:f1:62:f9:a8:9f:7a:fb:34:a0:7f:32:da:c4:da:
61:02:0f:6d:ab:33:ff:68:ff:60:d6:6c:fe:9e:50:bf:e7:b0:
53:e1:20:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:00 2023 by rpki-client on console-fra.rpki-client.org