Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/FwPinMuMHkHEti4_Qzxq2PWb22I.roa
File: FwPinMuMHkHEti4_Qzxq2PWb22I.roa (raw, json)
Hash identifier: kVD1QemiLlkHKiVI3n/VKL7mk753lQf1FBowD+SO/RA=
Subject key identifier: 17:03:E2:9C:CB:8C:1E:41:C4:B6:2E:3F:43:3C:6A:D8:F5:9B:DB:62
Certificate issuer: /CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Certificate serial: 08177C8E
Authority key identifier: EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/FwPinMuMHkHEti4_Qzxq2PWb22I.roa
Signing time: Sat 01 Jan 2022 07:01:29 +0000
ROA not before: Sat 01 Jan 2022 07:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 85.117.239.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135756942 (0x8177c8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Validity
Not Before: Jan 1 07:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1703e29ccb8c1e41c4b62e3f433c6ad8f59bdb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:51:9b:69:00:ff:ad:5f:61:66:cd:05:76:eb:
cb:73:90:2c:e5:e5:f7:77:97:bf:01:c9:5d:73:55:
b9:bf:07:7e:fd:19:0b:a8:86:4c:9f:52:d0:4b:6a:
e0:14:15:6e:3a:05:53:d3:89:e2:fc:5e:1f:26:31:
e6:5b:ca:14:6e:e1:d0:82:5e:09:be:51:92:49:2a:
7d:b2:46:37:f1:3c:77:76:93:7a:58:db:0a:54:d7:
b5:2f:3b:4d:d3:32:6e:70:48:55:ff:64:8d:c4:51:
a4:a0:ee:d4:6d:61:ac:26:f2:4d:34:d2:d9:43:46:
6b:0f:ef:23:2e:44:2f:89:38:a7:a0:d2:a0:7c:f9:
78:c0:be:f7:50:b7:4e:43:a1:64:ad:6f:3d:e2:9b:
43:d6:04:03:d0:a4:56:a5:a9:52:5f:a7:96:fd:3c:
9d:b7:cb:58:60:26:22:1e:e8:3f:6d:7f:f7:81:e5:
a4:4d:95:e5:f2:da:21:fe:a4:0b:1e:69:ef:23:68:
40:66:94:d1:91:68:ac:6d:10:ad:c7:fd:88:d4:7e:
7b:06:ca:9c:50:1b:23:cf:6b:0e:e3:63:7d:c5:95:
99:df:5c:28:2a:9e:ca:26:c7:3c:a3:0a:9c:07:e7:
a5:cc:05:f2:d7:00:ba:10:63:00:75:87:18:0f:70:
6c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:03:E2:9C:CB:8C:1E:41:C4:B6:2E:3F:43:3C:6A:D8:F5:9B:DB:62
X509v3 Authority Key Identifier:
keyid:EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/FwPinMuMHkHEti4_Qzxq2PWb22I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/7_2zPuX9Ui-vCiR-BXm78e785LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.239.0/24
Signature Algorithm: sha256WithRSAEncryption
af:6d:96:2c:3d:af:7a:68:f6:0d:bb:fc:1e:a5:1d:f2:b1:e5:
1d:f2:37:c9:f9:76:36:de:d9:47:22:56:59:11:29:2e:fd:8f:
9e:b9:62:51:80:51:b8:be:e2:7b:d7:c6:3b:03:27:a6:f1:b7:
45:83:ef:c6:a2:c0:6e:1c:e7:83:d1:0a:1b:c9:99:65:ca:90:
c9:0e:57:15:ea:d8:6c:0a:ff:01:6d:bc:e6:31:11:7c:c2:e7:
5d:3d:68:58:20:0a:6d:98:6f:4f:80:bb:a4:ce:0b:69:7e:78:
4a:4b:b6:f8:d7:a2:3e:3d:89:e6:25:53:17:b4:28:2b:b3:fa:
1b:b1:76:50:ab:4a:9e:55:fe:2f:81:42:2d:6f:07:21:fa:4f:
04:9e:30:7a:47:78:99:7a:b2:cf:1c:11:b5:72:fa:4a:7d:11:
48:04:45:f5:2f:7d:81:3a:2e:05:7c:c8:3f:ac:31:9a:0f:66:
7c:fe:aa:0f:9d:56:47:b6:5d:2c:4b:3b:b3:0b:3f:e9:59:40:
5d:ab:61:9f:6b:c4:ea:33:c6:21:b3:63:85:50:98:f2:1d:a0:
44:8b:ef:e7:ec:25:2c:3a:37:70:50:a6:90:5f:52:c1:b7:d3:
83:04:68:09:2b:d9:a6:2b:81:eb:b8:a8:89:99:8f:71:45:a7:
1a:bf:a3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-fra.rpki-client.org