Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/fg4BtMFqQvZ9BXS2Pb0AYRVyD4o.roa
File: fg4BtMFqQvZ9BXS2Pb0AYRVyD4o.roa (raw, json)
Hash identifier: A5+hIVoe0B0dxD5du1gx21jFifU8+/fDBnsHdItYy5c=
Subject key identifier: 7E:0E:01:B4:C1:6A:42:F6:7D:05:74:B6:3D:BD:00:61:15:72:0F:8A
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 095BB4DF
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/fg4BtMFqQvZ9BXS2Pb0AYRVyD4o.roa
Signing time: Tue 22 Feb 2022 14:02:04 +0000
ROA not before: Tue 22 Feb 2022 14:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398704
IP address blocks: 85.92.112.0/24 maxlen: 24
85.92.114.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157005023 (0x95bb4df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Feb 22 14:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e0e01b4c16a42f67d0574b63dbd006115720f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:c1:35:c0:fa:9a:b3:73:15:70:5b:ae:09:
ab:0f:9e:08:87:82:51:48:d9:78:37:00:d8:24:47:
97:a8:0c:c7:c0:6e:41:79:a5:af:38:11:48:0b:36:
99:b3:96:5e:34:ba:26:d7:4c:10:1c:ea:f3:32:f1:
0f:5f:11:21:7f:31:53:20:19:e0:bd:9b:3c:a1:b5:
62:e9:c4:ab:9e:4e:92:14:94:84:73:11:ac:6a:de:
a7:ee:31:06:93:d0:4c:00:0f:19:66:a5:78:68:ec:
3a:7b:c5:72:6e:fd:ed:8b:21:d5:da:8c:23:2c:63:
f9:ef:22:dd:0e:e3:51:b5:69:85:be:1f:0a:6c:4c:
6b:c0:d0:1b:0a:c3:a3:b2:58:cb:c0:94:10:2a:9d:
74:32:2c:ef:b3:c1:a5:90:c7:bb:5f:3e:b4:29:6b:
29:e0:e2:d3:e6:9f:8f:95:ff:d1:42:e5:a3:6f:95:
ae:39:bb:7f:2c:07:1b:e6:80:76:7b:53:58:3f:48:
a6:54:54:b0:eb:f3:a5:60:bd:db:0d:0d:c4:eb:e3:
56:39:92:79:f5:96:e9:83:e6:d3:dc:58:45:63:aa:
f1:68:9e:fc:05:b4:3c:4f:0d:f6:bf:ed:5a:a7:ce:
a4:d0:05:22:4c:2d:fa:00:57:92:83:09:a3:eb:c1:
1d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:0E:01:B4:C1:6A:42:F6:7D:05:74:B6:3D:BD:00:61:15:72:0F:8A
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/fg4BtMFqQvZ9BXS2Pb0AYRVyD4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.112.0/24
85.92.114.0/23
Signature Algorithm: sha256WithRSAEncryption
94:af:21:f9:e9:16:a5:33:07:3a:ce:27:dd:46:1c:a8:c4:ad:
1c:c6:bb:1e:4b:8f:4f:ad:c3:26:c3:7a:27:87:8b:af:5c:8e:
09:de:09:0b:16:7b:ce:cc:63:9d:86:28:df:77:fd:0f:e8:d0:
02:8e:db:c6:e6:c6:f1:86:d0:d3:ed:32:b1:f7:2c:2a:33:f4:
fa:2b:2e:05:0c:28:f3:12:da:f7:02:f5:ca:d9:9a:04:b6:b3:
24:52:11:8f:78:0e:a1:7c:40:6b:4f:53:cb:5e:88:d5:5e:f3:
9a:08:4e:5e:29:c7:d3:37:93:81:9c:8d:ff:f7:83:a8:eb:20:
28:42:9f:06:73:f7:12:f3:5f:2d:bb:07:ef:3d:68:14:61:eb:
9d:f2:4c:a3:f9:04:ae:ef:0a:7d:86:68:37:e4:ca:8a:48:a0:
97:b3:99:55:ce:06:39:f4:54:31:2b:1e:59:ee:31:ba:80:53:
f7:b9:f2:a2:b6:0f:41:c1:e5:36:46:ad:a5:70:0f:0b:87:7a:
d9:93:18:0c:c7:fb:0d:27:f8:38:e9:ae:c3:e2:82:71:3e:0f:
5e:28:f9:dc:64:01:7f:b5:5b:f9:4d:a5:f6:16:55:9d:21:94:
c1:2b:f5:01:7a:54:07:32:44:b3:7c:bf:24:ec:00:fb:87:99:
d8:49:a0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:03 2023 by rpki-client on console-fra.rpki-client.org