Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/FnSQIkCHsy2HpY1cNCC7LPSdzeU.roa
File: FnSQIkCHsy2HpY1cNCC7LPSdzeU.roa (raw, json)
Hash identifier: eMAMblqXYX/dOTMPAJT1YaDkUhCpRaRb2RAPAPeCkTE=
Subject key identifier: 16:74:90:22:40:87:B3:2D:87:A5:8D:5C:34:20:BB:2C:F4:9D:CD:E5
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 08CC505B
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/FnSQIkCHsy2HpY1cNCC7LPSdzeU.roa
Signing time: Mon 11 Apr 2022 15:05:02 +0000
ROA not before: Mon 11 Apr 2022 15:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 82.115.217.0/24 maxlen: 24
45.140.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147607643 (0x8cc505b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Apr 11 15:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=167490224087b32d87a58d5c3420bb2cf49dcde5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7b:9b:34:a8:b5:48:a0:9c:e3:f1:c4:a5:42:
d4:80:b0:8b:cb:31:49:c8:2c:3c:09:e3:54:60:da:
ca:b7:78:7f:cb:2b:4a:e1:16:a1:80:54:5a:0a:e9:
e8:76:ff:59:68:4d:97:7e:2c:f3:b9:ca:01:85:30:
7e:09:81:73:d8:fd:a3:16:72:5c:af:65:3c:15:e9:
b5:9e:ef:2e:9e:51:2e:31:9a:94:2e:54:94:e2:24:
1b:32:b0:99:fa:06:c5:95:1a:b1:2b:99:70:de:ae:
e1:39:6b:31:cf:03:34:fb:79:cf:1d:05:d3:44:12:
6f:ea:21:4d:c1:5f:6a:70:5f:c5:18:2d:eb:0b:06:
9f:59:c8:ea:43:b5:8e:48:96:63:38:1d:91:02:a8:
59:32:19:b0:d5:28:02:b6:7d:ab:bf:eb:4c:31:8f:
0c:5d:a9:8f:51:e5:40:86:72:6b:01:79:9a:d4:66:
f2:03:c7:0b:5a:12:ea:21:e8:ab:06:f2:ce:1b:c0:
b5:a6:33:c9:42:be:28:05:c2:2d:22:98:da:40:85:
84:6f:aa:c4:fb:58:90:dd:d8:25:5a:8f:7d:00:7a:
6f:40:d9:38:91:f8:7f:d5:0d:9d:5f:c0:db:15:c8:
ba:3d:31:b9:93:18:10:b1:a9:27:f9:ba:dc:f9:0c:
e7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:74:90:22:40:87:B3:2D:87:A5:8D:5C:34:20:BB:2C:F4:9D:CD:E5
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/FnSQIkCHsy2HpY1cNCC7LPSdzeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.211.0/24
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b3:28:27:fc:26:c9:8f:c4:27:1f:a1:5f:61:d6:af:c6:4c:
bb:b2:fe:84:17:8e:f5:ba:66:c2:85:4d:0f:ad:fe:3f:3c:27:
18:16:a2:a6:7f:7f:a3:3b:17:08:74:a1:90:87:d5:43:4f:2b:
28:52:57:42:64:4f:e0:61:f9:ed:59:ee:f1:30:99:40:c2:e1:
be:48:c7:04:41:3f:40:82:b4:79:20:c6:ef:b2:21:55:05:51:
10:d8:b4:71:fb:0b:35:49:0f:6d:3c:f1:2a:58:c9:9c:64:cd:
db:ef:00:c5:f5:cc:01:db:fd:7a:e4:7d:7f:a7:fe:46:ff:a3:
ef:f8:50:2a:8e:ec:37:3f:65:c2:97:8b:91:d6:1e:d2:b4:ca:
30:ac:06:e7:d4:1f:34:90:94:ad:4f:aa:2f:84:32:ca:82:66:
81:e2:3e:f7:be:94:ff:0f:b3:7d:79:4d:6d:88:db:a0:1c:91:
c8:da:e7:83:19:95:64:86:b3:64:fa:d6:a8:3e:a8:fa:39:9d:
bc:d5:2b:03:95:8f:17:34:31:b8:2d:76:2a:d7:db:dd:0a:d1:
96:f5:cd:39:c8:96:0a:4e:73:28:2e:12:05:7b:0b:3d:26:c7:
a1:4e:3e:d1:29:d6:f2:74:d8:71:f0:1d:c4:c8:0d:4c:0f:fa:
8b:1e:82:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:44 2023 by rpki-client on console-fra.rpki-client.org