Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/44_pUiLT3-2SGN9BEloiRFEqIR4.roa
File: 44_pUiLT3-2SGN9BEloiRFEqIR4.roa (raw, json)
Hash identifier: j8XF0LqRF9f8LlfSEj0JwbHFAf9ZkSiAnIf9hfFUNrE=
Subject key identifier: E3:8F:E9:52:22:D3:DF:ED:92:18:DF:41:12:5A:22:44:51:2A:21:1E
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 03AE72E6
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/44_pUiLT3-2SGN9BEloiRFEqIR4.roa
Signing time: Sat 01 Jan 2022 12:55:34 +0000
ROA not before: Sat 01 Jan 2022 12:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201381
IP address blocks: 85.91.107.0/24 maxlen: 24
85.91.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61764326 (0x3ae72e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Jan 1 12:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e38fe95222d3dfed9218df41125a2244512a211e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2b:58:78:97:5f:80:82:e8:c6:2d:f9:9a:0d:
d7:12:e9:b8:e5:4e:72:7c:84:97:d5:c3:3b:b8:c8:
01:e6:4b:78:36:de:fd:3b:b8:9e:a7:2a:5a:44:9c:
ef:f0:64:94:07:34:31:0f:23:f6:79:08:0c:d5:f3:
c0:7c:f7:5f:a4:67:90:9a:c9:48:06:fc:b4:56:de:
c3:31:83:1a:a3:30:6e:96:f0:26:97:4f:3a:3a:30:
4e:fa:2d:fd:d3:14:38:75:14:e7:24:4c:e1:7c:a3:
41:31:a7:95:cb:04:fe:fd:89:83:41:f8:2d:ee:ef:
aa:9c:4d:94:19:b8:20:44:3c:55:b8:c7:e7:27:3e:
9b:ed:76:68:15:dc:67:4f:f6:13:a3:cd:61:a8:11:
30:df:f4:51:11:fe:19:10:3e:f4:5f:e3:84:76:b2:
68:f0:12:84:80:25:54:e6:86:d8:b9:0c:cb:73:7c:
1b:05:e9:ed:54:89:0c:f7:38:93:87:ab:c9:80:71:
2a:30:1d:d3:be:6e:ed:90:65:d4:02:0d:70:a9:fb:
63:d0:47:8b:5b:0e:d5:15:5a:69:b0:9f:4c:92:62:
8a:89:a7:d3:b0:83:d1:3a:7d:33:ad:67:3c:c2:0f:
6d:d2:0e:37:dd:93:7a:a8:6e:2b:f4:46:a5:35:67:
ea:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8F:E9:52:22:D3:DF:ED:92:18:DF:41:12:5A:22:44:51:2A:21:1E
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/44_pUiLT3-2SGN9BEloiRFEqIR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.107.0/24
85.91.123.0/24
Signature Algorithm: sha256WithRSAEncryption
84:16:13:4c:fc:55:8d:7e:8a:ab:ea:41:7a:18:67:b0:0c:83:
6c:71:51:96:f7:6b:51:b9:bc:5c:68:0c:d0:48:13:ab:05:a1:
4c:15:cc:50:01:84:3c:8d:aa:a7:e0:d7:74:51:8e:7e:ff:c1:
de:b0:48:1a:32:c4:f7:da:a6:64:fa:37:c2:d1:c5:b9:72:f8:
8f:94:a3:ab:07:e0:5a:3d:bb:5b:62:6e:f9:05:4b:a9:e4:d3:
2a:ca:53:47:73:3f:9d:b6:42:19:52:7e:b7:2c:4f:85:c3:84:
e4:0d:a4:66:77:ec:6f:dc:ee:1b:3d:94:44:06:9c:24:76:ee:
e5:bd:72:45:eb:f0:3e:03:7b:a5:cf:e0:79:43:a5:2b:9b:38:
4d:b8:5e:9b:08:0a:c2:34:05:69:f8:8c:7d:d7:b3:49:90:97:
97:26:28:7a:64:51:38:20:de:2f:74:ad:b3:f2:b8:eb:bb:6d:
23:e6:59:ef:ef:84:90:53:1e:f2:8f:45:dd:c8:47:97:99:3a:
8b:12:b7:7f:25:8d:1c:1c:7d:3e:53:a4:f8:c4:70:b3:a9:c9:
7f:fb:10:78:b7:66:a8:73:e4:95:61:98:dc:ea:dd:8b:e2:2f:
7d:4f:c1:c5:15:22:f7:d1:42:62:62:77:54:e0:a3:70:c0:3c:
8c:eb:f4:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org