Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fyFOm-v0iJCCi6eCLMmtLBEv6dk.roa
File: fyFOm-v0iJCCi6eCLMmtLBEv6dk.roa (raw, json)
Hash identifier: HrxxFrEQlfRyOf+Z/K4ypWMvuFTwsN5UQ1e8WRdCLHk=
Subject key identifier: 7F:21:4E:9B:EB:F4:88:90:82:8B:A7:82:2C:C9:AD:2C:11:2F:E9:D9
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 056E16DF
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fyFOm-v0iJCCi6eCLMmtLBEv6dk.roa
Signing time: Sat 01 Jan 2022 15:07:22 +0000
ROA not before: Sat 01 Jan 2022 15:07:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60750
IP address blocks: 85.203.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91100895 (0x56e16df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f214e9bebf48890828ba7822cc9ad2c112fe9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ea:95:1c:f9:3d:f1:39:f7:8d:b0:6d:6d:94:
76:a8:ad:e3:23:26:91:ed:62:2d:12:34:d8:86:df:
47:01:82:8f:e3:a1:f2:a9:c6:44:ca:dc:fd:04:b6:
3d:30:9e:6d:7c:85:c9:67:76:d1:f8:d1:c7:80:90:
8f:ec:37:cd:26:e3:50:43:bb:21:85:8b:50:40:c6:
6c:f8:ca:b1:2b:f8:f7:b7:38:92:09:64:03:b2:3e:
6f:02:b2:a0:c1:67:c1:90:40:ed:88:0a:ce:df:55:
77:99:3f:9f:61:9c:60:1b:bc:61:ff:56:5d:29:e7:
a6:40:94:87:03:d9:cc:b7:9c:66:00:9e:ab:d4:00:
e3:e4:4a:77:0c:08:a7:0d:8e:0c:6d:f9:de:dd:71:
60:a0:f9:47:d2:8f:c7:d6:cf:13:28:96:88:3e:5c:
ca:8e:56:84:bd:d8:e7:6e:d0:82:33:02:d6:7d:ee:
a9:c2:a3:52:0d:d0:de:ff:8c:80:a6:83:12:90:d2:
71:3a:86:ca:87:d7:f1:05:90:74:4c:50:db:1e:bc:
fc:be:dd:75:ac:80:ef:6e:72:b6:57:bf:29:73:84:
6f:4b:39:04:84:dc:de:e4:e4:0d:e1:84:2d:da:41:
df:1d:2b:88:1c:62:f6:25:ae:91:8b:6a:84:49:d3:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:21:4E:9B:EB:F4:88:90:82:8B:A7:82:2C:C9:AD:2C:11:2F:E9:D9
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/fyFOm-v0iJCCi6eCLMmtLBEv6dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.11.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:83:4b:d2:09:6e:77:c1:03:82:3c:ef:71:9c:6d:bf:8b:1a:
ba:8d:50:e8:ee:de:44:14:4d:7b:d3:85:a0:80:51:5a:3a:29:
bb:65:53:06:36:ff:f5:f7:d9:7d:03:b4:12:f8:44:05:2d:4c:
3c:24:a0:ef:31:4b:28:a1:75:34:0a:a4:13:9f:bf:60:c9:fd:
4a:18:44:ba:09:88:18:3c:19:35:1f:17:c3:62:c0:5d:2b:3d:
ab:e9:53:b8:64:0e:be:99:db:5e:8a:69:8c:a6:f8:c7:64:11:
75:d8:7a:17:1a:f5:e3:98:36:56:b5:00:66:2d:88:1f:a6:b1:
c4:b7:5e:3e:4b:e8:6d:b1:e9:0c:99:42:c6:f6:0d:ec:2f:8c:
e3:a5:82:cd:01:d3:3a:e6:ee:ae:8d:3c:0f:c5:e1:bc:5a:37:
c8:3a:55:59:18:54:f0:cd:b4:80:a1:7f:45:7b:ec:c2:a2:4a:
4b:e0:c0:f1:ac:3a:c6:97:31:cb:4e:f8:5c:6b:9d:97:b2:57:
dd:39:56:b1:70:49:66:a3:85:13:90:2f:c4:19:60:3b:ba:99:
c8:a4:70:c2:43:14:b6:3d:67:53:a5:4e:ea:af:ff:8b:4e:64:
44:d9:ab:4c:dd:e0:b5:98:97:b9:03:79:65:92:5c:19:cc:71:
97:b9:94:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org