Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/oYCB3x33qHLhV5FrNpQOJVxwi_Q.roa
File: oYCB3x33qHLhV5FrNpQOJVxwi_Q.roa (raw, json)
Hash identifier: o9UljPI0kpLKaxhAHQBiW3nIZSRgLahgqMm+uM5MZFg=
Subject key identifier: A1:80:81:DF:1D:F7:A8:72:E1:57:91:6B:36:94:0E:25:5C:70:8B:F4
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0B409F22
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/oYCB3x33qHLhV5FrNpQOJVxwi_Q.roa
Signing time: Thu 21 Apr 2022 10:37:46 +0000
ROA not before: Thu 21 Apr 2022 10:37:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62005
IP address blocks: 85.239.52.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188784418 (0xb409f22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Apr 21 10:37:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a18081df1df7a872e157916b36940e255c708bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:de:01:c6:fa:d9:df:69:4d:cb:d0:df:eb:72:
a5:db:37:cf:82:b2:45:a6:03:e5:ae:17:14:dd:37:
0f:62:a4:0d:d1:c2:1f:9b:08:c7:b2:6d:a3:e6:ae:
30:cb:23:70:78:e7:b1:7f:04:c9:d1:91:7b:ea:a7:
b3:af:a3:5e:c3:db:02:49:0a:87:65:3b:80:93:f5:
bc:d7:41:e0:0c:db:9a:41:77:69:b3:24:32:f4:4d:
de:d8:f1:b6:f9:d0:46:a4:d5:1e:89:fa:63:53:1f:
b9:b2:da:c4:12:6b:b8:11:d5:9f:81:6b:27:a3:9e:
36:95:93:dc:7a:c0:ba:09:15:6b:05:06:e8:96:f8:
50:8b:12:8d:3a:b3:65:fe:2d:dc:66:60:8c:6b:29:
b5:e0:95:dd:12:01:5f:d1:07:af:93:f8:e4:5d:96:
3e:ca:b0:37:a4:f9:43:c5:4e:53:4e:7d:29:1f:cd:
48:a1:c9:e6:4d:91:0e:0e:4e:59:29:9f:90:65:b5:
e4:5f:e6:9b:4a:9f:a1:69:a2:41:a1:30:ae:59:bc:
87:f7:9c:d9:1e:6b:f4:60:fb:ec:cb:1a:51:03:6a:
11:53:1b:0e:fb:3a:f5:5e:56:e2:02:7c:a7:2a:c4:
34:df:f8:03:3c:0b:cf:3f:e0:0f:bf:af:3b:a1:77:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:80:81:DF:1D:F7:A8:72:E1:57:91:6B:36:94:0E:25:5C:70:8B:F4
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/oYCB3x33qHLhV5FrNpQOJVxwi_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.52.0/23
Signature Algorithm: sha256WithRSAEncryption
56:6a:b7:04:f3:85:61:a8:27:09:4c:62:12:33:0f:d0:ab:58:
24:06:01:68:ff:da:bc:14:d7:ed:75:44:60:c6:ea:d5:2e:a2:
35:80:14:92:0f:9a:1a:d2:7d:8e:48:eb:2f:f7:09:be:60:49:
0e:5d:98:3d:e3:f3:be:22:35:97:9f:ac:f7:47:af:16:3e:1d:
43:13:a7:e5:dc:97:76:1b:07:a6:31:6a:b6:bf:46:35:91:11:
55:92:8f:93:ed:9b:80:f3:aa:40:01:69:20:6d:86:cd:84:2c:
03:5b:ba:35:fc:01:11:cc:fc:8e:7c:5d:aa:2e:d8:e3:42:00:
35:fa:fe:d8:72:b3:02:70:13:93:4c:4b:68:1f:33:41:99:5c:
b7:cd:21:3a:bb:dd:62:90:98:b4:fa:f1:63:58:7d:03:10:a1:
d6:15:34:64:ad:14:cd:bd:60:c6:f4:1b:ff:6f:d7:86:9d:b3:
bb:39:3c:fa:ff:b4:9d:21:26:ad:42:18:50:64:c4:4e:2c:8c:
82:78:13:4c:f6:6c:59:1f:49:79:b4:24:24:84:da:22:04:e0:
31:10:e5:38:3b:a5:c7:65:bd:a7:72:43:26:e1:5e:5d:c3:66:
a4:05:23:ef:47:66:e8:11:20:52:e8:d1:fc:53:88:53:98:03:
07:60:e2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org