Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/Dqrnnn1iSHZobLGzn_rv7_sSo_A.roa
File: Dqrnnn1iSHZobLGzn_rv7_sSo_A.roa (raw, json)
Hash identifier: 9W1KqjPfg8tc9Ytar0itkTZ1+2jGk/CTp7kFSy+d3dw=
Subject key identifier: 0E:AA:E7:9E:7D:62:48:76:68:6C:B1:B3:9F:FA:EF:EF:FB:12:A3:F0
Certificate issuer: /CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Certificate serial: 081824F7
Authority key identifier: EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/Dqrnnn1iSHZobLGzn_rv7_sSo_A.roa
Signing time: Sat 01 Jan 2022 07:01:30 +0000
ROA not before: Sat 01 Jan 2022 07:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 85.117.239.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135800055 (0x81824f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Validity
Not Before: Jan 1 07:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eaae79e7d624876686cb1b39ffaefeffb12a3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e7:e7:32:59:5f:9d:c5:91:21:d8:e2:fe:c7:
d7:04:7d:dd:0b:71:1f:e1:5a:1b:78:51:3f:d6:2a:
e8:49:13:c0:43:fd:9f:42:08:83:a5:97:9f:45:e6:
63:54:b6:4a:0f:b6:30:55:c6:2c:36:5c:17:d3:fc:
e0:1d:4c:72:e5:0c:2b:bc:8c:d3:53:1a:f4:58:7d:
d8:e0:45:c0:d4:38:1e:5d:f1:03:32:7f:3b:26:86:
7f:57:56:17:ec:f6:47:25:34:3c:f4:c5:fe:fe:f6:
33:de:83:b7:9a:ef:3d:55:1c:d3:99:f7:c6:6d:e3:
51:b1:87:ae:ee:03:aa:a7:20:98:8a:cf:9d:75:c1:
4e:0a:64:bf:4e:15:d0:2f:17:6e:32:48:b3:bf:f6:
93:71:21:13:e2:0e:52:86:66:bf:ce:9e:d0:bf:9e:
80:30:36:32:6e:7e:8a:d4:27:c3:5b:74:2a:49:1b:
bd:64:1f:3d:fd:35:7c:c4:4b:59:b6:dc:ef:ce:c8:
88:3e:d7:5a:65:77:76:15:b8:2f:a4:fe:0a:1d:e8:
3f:e1:ec:e6:1c:95:83:91:ed:dd:9a:54:07:cf:55:
60:78:cf:26:2e:88:89:9f:bd:4b:3c:95:31:df:7f:
03:32:50:3b:5a:a2:eb:db:63:bd:e9:72:2a:32:f5:
48:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AA:E7:9E:7D:62:48:76:68:6C:B1:B3:9F:FA:EF:EF:FB:12:A3:F0
X509v3 Authority Key Identifier:
keyid:EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/Dqrnnn1iSHZobLGzn_rv7_sSo_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/7_2zPuX9Ui-vCiR-BXm78e785LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.239.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:65:67:34:fe:b7:fd:90:23:27:34:8e:80:63:4d:56:09:0e:
f2:0f:be:4f:da:04:f0:55:ab:7d:a5:f2:e2:bf:09:e4:83:40:
d5:5e:b7:7c:f7:1c:c5:25:df:bc:8b:de:f1:d6:86:04:65:f2:
1d:97:a4:50:a4:8d:72:7f:36:3e:a1:c5:2d:bd:6b:82:7f:d5:
f8:99:86:20:0f:33:8e:c8:1c:6c:3b:ad:d5:a0:26:71:45:2c:
0b:c3:86:35:e7:a3:1e:c0:e7:4f:b3:16:54:48:c0:2f:7a:6f:
0f:99:82:e1:0e:cd:10:3a:10:fa:e1:f6:fc:d4:ba:59:c9:5e:
98:4b:2b:b7:18:c9:26:26:46:15:19:97:64:01:ed:f6:1d:6f:
a7:07:94:37:ba:7e:c4:1f:25:c8:75:01:49:a9:f8:8c:13:4e:
d4:11:17:b8:9d:76:16:dd:7b:6e:f8:72:13:31:1f:75:56:ec:
45:d6:02:4a:1c:db:5c:e2:24:e2:ca:0e:c8:7b:e7:ce:30:b1:
f6:7b:48:42:10:e2:9d:ee:a4:85:f9:b3:ed:ef:3e:67:09:33:
1b:40:65:a7:ad:36:85:69:10:d1:57:b3:9c:37:7e:55:7f:f4:
3a:72:6a:93:aa:41:62:82:28:48:58:7a:71:4c:9a:e2:a5:24:
44:3b:ab:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-fra.rpki-client.org