Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/YN2OP2RyqitMMy2sI8NJ_-Ajabk.roa
File: YN2OP2RyqitMMy2sI8NJ_-Ajabk.roa (raw, json)
Hash identifier: nzFzr+uOOruyZPvoH9n50XJgcTt+UamsO+X+0TA7o/4=
Subject key identifier: 60:DD:8E:3F:64:72:AA:2B:4C:33:2D:AC:23:C3:49:FF:E0:23:69:B9
Certificate issuer: /CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Certificate serial: 08191A7F
Authority key identifier: EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/YN2OP2RyqitMMy2sI8NJ_-Ajabk.roa
Signing time: Sat 01 Jan 2022 07:01:30 +0000
ROA not before: Sat 01 Jan 2022 07:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210618
IP address blocks: 85.117.238.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135862911 (0x8191a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Validity
Not Before: Jan 1 07:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60dd8e3f6472aa2b4c332dac23c349ffe02369b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9c:7c:a1:88:79:0e:f5:47:56:04:0f:18:16:
1e:9f:45:1e:bb:f4:dc:a3:8a:cf:a8:40:34:0a:b4:
df:f4:e1:3f:87:3c:d4:fb:bf:cf:bb:6c:b0:54:3d:
7f:7f:94:92:70:86:d7:4f:c2:15:29:29:8c:a7:dd:
dc:38:6b:92:19:d7:7a:e5:22:d8:43:5d:a1:1f:f2:
b5:d1:87:32:f6:fd:09:b9:84:49:67:30:f8:57:a7:
bf:df:45:58:d7:ff:50:36:17:10:9b:b9:4f:b4:16:
a3:0d:ee:75:d9:36:30:22:4e:5e:28:13:5e:5c:80:
9b:17:ae:f4:0a:a0:8a:d1:56:25:09:c3:7c:fb:75:
26:bc:63:7a:86:d3:87:e4:1a:ef:39:10:d6:76:9d:
40:3c:76:e9:ac:21:c5:f2:1e:c8:97:14:3d:c9:c1:
03:55:81:21:52:02:b1:8a:1f:56:30:81:14:22:16:
60:dd:55:77:b5:f7:2c:f0:d8:32:a7:26:3b:fc:0a:
cf:5b:70:22:c7:d4:0b:ca:a4:f9:10:8e:25:4e:9c:
62:0c:6d:2d:82:55:03:14:50:84:c5:ff:e5:85:e9:
27:86:e8:ce:e3:65:82:10:a2:11:cb:21:5f:32:45:
a9:f1:49:06:35:93:66:4b:4e:bc:5e:01:71:b0:e8:
75:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DD:8E:3F:64:72:AA:2B:4C:33:2D:AC:23:C3:49:FF:E0:23:69:B9
X509v3 Authority Key Identifier:
keyid:EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/YN2OP2RyqitMMy2sI8NJ_-Ajabk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/7_2zPuX9Ui-vCiR-BXm78e785LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.238.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c9:e2:29:3b:58:55:63:0f:67:ab:ce:23:19:cc:79:9f:5b:
e7:c3:27:cb:7f:ac:7c:1e:99:5f:01:72:d6:4c:a3:52:b7:1d:
86:55:25:d5:b7:92:05:97:aa:ae:42:63:94:b0:a6:23:6e:d2:
0d:e4:cc:56:86:2f:85:8e:63:79:b3:bb:e3:be:cb:b0:bf:e5:
02:b6:1f:bf:ab:a1:57:b1:91:a5:b9:9c:c4:5d:d4:c9:a6:f6:
45:4b:1c:b6:2f:8e:ba:ac:cf:31:da:81:75:88:ab:92:35:a6:
03:05:a2:d8:ae:33:23:0a:4f:fd:cc:16:9e:52:97:50:a9:24:
3f:a5:90:68:0f:12:b2:34:c7:49:8e:74:7e:12:5b:0f:1b:28:
1e:c3:b6:9d:2a:c5:3d:45:89:fe:a5:7a:18:d3:90:8b:46:a8:
82:21:eb:59:63:33:6e:d9:0d:7a:3a:8b:0d:cd:97:e0:c8:f9:
2e:28:25:8a:54:8c:d2:c4:52:b1:81:1b:ae:4f:e3:b6:7c:6f:
ff:63:7f:96:55:86:79:39:06:d0:ce:a0:7c:e7:12:f4:f6:e2:
45:27:e9:c4:ed:33:5c:64:38:aa:7e:02:3c:0d:12:6d:c9:ac:
85:d8:44:88:71:d0:fb:9a:89:bd:7a:45:dd:92:48:2f:d9:57:
f3:db:80:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-fra.rpki-client.org