Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/fpRnOYiWbKhvTtnYzgCwXsh8fk4.roa
File: fpRnOYiWbKhvTtnYzgCwXsh8fk4.roa (raw, json)
Hash identifier: VwS4OcQmtf+KRFCRIOM1iaUKgYo2FImgRywrOMDADqo=
Subject key identifier: 7E:94:67:39:88:96:6C:A8:6F:4E:D9:D8:CE:00:B0:5E:C8:7C:7E:4E
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0CBC93ED
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/fpRnOYiWbKhvTtnYzgCwXsh8fk4.roa
Signing time: Thu 05 May 2022 21:26:58 +0000
ROA not before: Thu 05 May 2022 21:26:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12695
IP address blocks: 89.43.44.0/24 maxlen: 24
85.204.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213685229 (0xcbc93ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: May 5 21:26:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e94673988966ca86f4ed9d8ce00b05ec87c7e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:5c:94:8e:50:62:dd:3f:04:d6:e5:d7:51:
59:f0:c4:b4:04:78:8f:af:83:07:22:f0:d9:35:fe:
97:46:7e:b6:69:c8:f1:04:00:07:85:db:da:45:35:
05:a7:76:e2:34:d4:e2:55:22:5b:1b:f2:00:e9:34:
92:ac:0d:0b:b0:c3:65:76:32:74:08:7a:dc:fa:b0:
36:57:9c:11:19:15:46:55:a1:d2:8e:72:4d:6a:7d:
18:1e:e0:93:2e:15:21:02:11:23:20:09:31:26:fd:
07:33:b1:ab:f8:89:c2:a4:3a:2e:01:98:44:4b:f4:
e3:95:d9:e2:92:63:8a:db:fa:df:08:8d:af:e7:b3:
28:48:45:de:0b:f4:e9:c4:1d:3a:1f:82:d5:b1:d5:
20:82:32:78:74:4a:f2:62:ad:ae:89:a6:37:68:9d:
6d:bb:03:7a:9d:99:08:82:4d:be:fb:bf:4d:03:5f:
73:08:9e:a8:a1:66:75:b1:56:cf:2b:75:3f:f4:25:
80:56:1c:f5:a1:51:1d:0f:10:bc:69:1e:73:3c:10:
7e:58:95:a1:ca:bc:1d:fc:f9:93:c1:66:c1:20:74:
d3:00:16:bb:bc:40:5e:fd:a3:97:3a:0c:11:aa:88:
50:7d:b2:15:ab:68:1b:64:73:2f:43:74:cb:ca:5e:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:94:67:39:88:96:6C:A8:6F:4E:D9:D8:CE:00:B0:5E:C8:7C:7E:4E
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/fpRnOYiWbKhvTtnYzgCwXsh8fk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.78.0/24
89.43.44.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e3:77:49:4b:d7:e8:52:11:1a:c7:84:e4:5a:a6:62:46:47:
d4:80:02:8a:8f:97:fd:c4:b4:cc:2a:ad:98:7e:a0:32:ba:05:
08:43:53:67:a9:c6:32:a7:13:7a:c4:7c:76:52:5f:27:db:6e:
1d:f6:5a:b0:e1:45:17:98:c5:c9:72:42:d5:ab:e8:8c:55:55:
60:41:7b:0c:d0:09:6a:39:3a:c8:c3:07:39:f5:c9:8d:8a:f0:
01:0a:56:eb:be:74:45:1d:f5:05:83:b2:02:8a:06:ca:0e:86:
9f:f5:6d:e3:72:96:89:0a:5a:92:ee:0f:0f:d7:f5:52:4d:b0:
d3:05:4b:f1:77:ee:ca:5a:11:2f:9e:2a:b3:ee:c1:68:96:4c:
c1:1e:de:33:31:a2:4a:2c:e0:e5:ee:d0:35:71:30:3d:c3:c9:
6a:07:a8:a4:11:af:67:ae:e9:b7:c8:f2:55:4f:3e:75:88:3c:
96:5c:58:65:04:54:34:98:1b:42:2a:ca:fc:9a:59:ce:d9:c3:
56:09:ed:07:1c:74:86:0e:97:01:e9:26:fd:1e:2f:bf:d1:c4:
18:9c:cc:ae:74:b7:d4:8c:cb:8b:98:00:2b:f6:b0:8c:07:a1:
94:32:b9:fc:ba:a7:07:bc:19:fe:b9:dc:77:70:37:f0:c3:86:
f6:4a:4a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org