Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/utSLaVgn0jTeZOYZB_htOwRKIYY.roa
File: utSLaVgn0jTeZOYZB_htOwRKIYY.roa (raw, json)
Hash identifier: XZnQkfLWN4v5+Tp3EBgKLfrOXFtN0mxXaUbGzCyCp5g=
Subject key identifier: BA:D4:8B:69:58:27:D2:34:DE:64:E6:19:07:F8:6D:3B:04:4A:21:86
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 06179777
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/utSLaVgn0jTeZOYZB_htOwRKIYY.roa
Signing time: Mon 07 Mar 2022 21:48:27 +0000
ROA not before: Mon 07 Mar 2022 21:48:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 85.203.21.0/24 maxlen: 24
85.203.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102209399 (0x6179777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Mar 7 21:48:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bad48b695827d234de64e61907f86d3b044a2186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:f6:fe:55:58:12:86:44:d6:bc:51:b5:71:
52:05:16:ae:1d:66:1c:55:2e:74:e4:e8:aa:a7:2b:
b0:91:4b:e7:1c:99:3e:4a:fd:b9:65:83:04:89:b7:
79:47:b0:ba:27:8c:1c:7f:1f:9b:83:4d:0f:79:48:
24:25:07:9a:7e:a1:52:f7:93:5e:9c:48:af:8c:a1:
55:70:4c:1a:89:a9:e8:6a:05:46:01:b3:97:a0:6c:
1c:b7:db:88:d9:2d:4d:54:29:0d:ff:3e:39:2c:3a:
7b:63:d3:f3:1d:d5:b6:3e:4b:f8:b9:0b:a8:f4:24:
5c:0b:cc:83:e2:a1:41:6f:01:79:b4:eb:b8:3e:83:
4d:aa:f6:da:2d:9c:41:cc:52:65:7e:dd:82:9d:84:
18:51:9b:51:e9:a5:5f:8a:5b:3e:c0:84:42:ed:a7:
0a:55:40:b5:41:d9:8c:da:28:a0:fc:32:2f:3c:58:
32:67:3c:a4:b3:b6:bf:e2:0f:f8:a6:ce:29:5b:39:
a4:0f:ee:ba:91:f9:cc:2b:43:b8:f2:f2:6c:45:dd:
f3:32:bf:9d:b1:63:9f:ae:5f:da:63:c9:90:96:52:
7d:b2:35:8a:a1:28:9a:43:5f:23:78:53:ff:09:0e:
c8:5c:5c:81:b7:82:e6:fb:b6:25:6b:cd:4b:4d:b9:
73:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D4:8B:69:58:27:D2:34:DE:64:E6:19:07:F8:6D:3B:04:4A:21:86
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/utSLaVgn0jTeZOYZB_htOwRKIYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.21.0/24
85.203.34.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:7a:62:78:35:8a:23:8e:e1:dc:00:6c:36:22:89:cf:9d:cb:
27:ed:79:3e:4c:29:aa:01:9d:e1:50:17:1b:ca:06:2c:23:11:
3a:fb:bd:24:06:dd:7d:59:37:dd:a8:65:b9:44:b6:5e:6a:74:
08:88:19:c7:e1:57:7e:fd:42:2c:f7:15:5d:b1:a6:e8:5c:81:
e2:c5:27:ee:d5:05:b8:3b:f1:2a:34:82:b8:a4:81:a2:cb:87:
70:07:2d:8d:43:5a:44:80:fd:6c:59:25:61:a6:b2:5a:91:2c:
94:e2:3d:1a:b2:18:ff:76:f9:74:26:41:0e:4c:a1:cb:5c:98:
7d:21:4b:d7:3e:4d:96:ff:3e:ef:b0:31:c2:b8:c3:a3:e2:b9:
87:e3:da:9f:9c:2e:82:27:84:87:69:a0:a3:8f:a3:c7:43:2f:
2c:09:4f:dd:66:76:d8:5a:4b:65:c1:64:47:48:11:49:14:ee:
dc:d7:ce:65:18:60:74:9a:6d:3d:89:f9:92:c4:c0:34:1c:aa:
b3:f7:45:27:99:30:d9:37:eb:0b:fb:be:e0:2c:cf:97:ef:2e:
16:00:02:2b:e3:8d:7f:bd:91:0a:9a:8a:10:7f:6b:d2:4c:cc:
73:8b:4b:f9:5f:06:97:12:06:50:66:bd:53:df:43:55:bd:e4:
d5:2c:11:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org