Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9oz5UyWszhZhv9Q8dU3NsV1-3h4.roa
File: 9oz5UyWszhZhv9Q8dU3NsV1-3h4.roa (raw, json)
Hash identifier: IXOoyubply/GbTqzvnXgnksBA5bjL1yeRf0Rad6FZxM=
Subject key identifier: F6:8C:F9:53:25:AC:CE:16:61:BF:D4:3C:75:4D:CD:B1:5D:7E:DE:1E
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 057077EE
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9oz5UyWszhZhv9Q8dU3NsV1-3h4.roa
Signing time: Sat 01 Jan 2022 15:07:23 +0000
ROA not before: Sat 01 Jan 2022 15:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201011
IP address blocks: 85.203.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91256814 (0x57077ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f68cf95325acce1661bfd43c754dcdb15d7ede1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:84:88:42:2f:75:c1:36:b0:f0:54:fa:54:
1d:c4:43:cf:ea:c5:e4:7b:20:96:31:c9:3b:ca:15:
b4:7a:36:9e:cb:f2:2f:08:02:c8:3c:5a:b2:4b:8e:
54:24:0c:3a:3f:c3:9a:e2:33:1b:f5:a6:77:11:ab:
3c:a9:fb:dd:db:f0:07:18:5a:59:b4:07:e3:f1:30:
46:ef:9f:6c:9a:e2:b2:fc:02:66:5f:29:e4:c3:cb:
87:8f:c1:76:a6:6f:e3:19:e1:fa:94:6d:1f:38:08:
b0:b0:61:86:d6:9f:fc:61:03:cc:07:56:e3:04:57:
85:48:59:b9:eb:15:5a:19:d6:d4:f9:50:49:c8:b4:
13:37:a8:08:a9:6e:27:38:af:7a:09:66:21:7b:28:
5e:49:b8:9d:45:b5:74:6a:77:1b:ed:50:85:81:3a:
13:be:d2:2f:f4:31:90:4d:3f:ca:a5:fc:86:2e:fc:
24:3a:a9:f6:c3:ea:3a:04:8b:c5:52:d4:99:4b:dd:
26:17:c7:b3:08:4b:07:a3:c0:40:37:5c:22:01:2b:
10:73:f3:d8:f8:8c:b2:db:11:30:b0:c3:ad:f7:91:
b6:6c:c8:c1:fe:ca:cc:35:f6:6a:4f:4d:cd:dd:41:
69:5e:95:bf:93:fa:36:3d:d4:76:f1:f4:66:38:a7:
23:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8C:F9:53:25:AC:CE:16:61:BF:D4:3C:75:4D:CD:B1:5D:7E:DE:1E
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/9oz5UyWszhZhv9Q8dU3NsV1-3h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.15.0/24
Signature Algorithm: sha256WithRSAEncryption
26:9e:92:8e:9f:9b:aa:51:d3:45:49:27:6b:0b:f6:01:1d:a2:
15:62:cf:21:db:14:89:62:3b:62:79:32:74:26:17:bb:56:25:
8c:e7:c6:dc:ae:8a:32:66:df:65:9b:69:d6:34:f3:0b:46:ee:
cc:ad:4e:20:64:bd:4b:9c:ff:6f:41:a5:9f:f1:a9:b6:db:14:
0b:e1:e9:b6:71:06:59:11:2f:9c:d8:4a:77:36:b4:71:99:8d:
7e:49:50:1c:31:fc:d5:ca:18:5c:b0:6e:37:2d:46:dc:e0:08:
6d:38:76:c9:42:dd:c5:8f:dc:55:85:12:ff:83:34:8d:64:e2:
ca:ae:bf:f4:bc:8a:48:70:b8:d8:05:e5:29:b3:06:b0:53:88:
2d:05:8d:ff:aa:e0:23:22:b0:89:3c:1d:61:39:6c:b5:58:68:
b0:d5:9c:5a:cc:1d:e0:6b:ee:f9:19:2c:b1:95:b0:48:ca:af:
9c:58:4e:53:99:7e:21:7b:3f:ff:de:6b:40:1d:c5:59:94:1e:
ff:4a:c5:ad:bf:d5:b4:1c:49:75:c6:dd:76:2c:f8:79:81:92:
f6:45:75:44:72:3f:42:31:29:61:cb:c2:d5:b0:d1:18:2f:ed:
ae:f8:f3:37:d6:f8:c7:0e:80:b8:dd:68:0d:f8:33:16:64:0b:
29:1b:af:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org