Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ROb4V8Na5keVrckNvVg-LojTzos.roa
File: ROb4V8Na5keVrckNvVg-LojTzos.roa (raw, json)
Hash identifier: WWrsUR97/M2RCFksFASoIpoxHmi8dqAReSJ4yuoDIxY=
Subject key identifier: 44:E6:F8:57:C3:5A:E6:47:95:AD:C9:0D:BD:58:3E:2E:88:D3:CE:8B
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 057183FA
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ROb4V8Na5keVrckNvVg-LojTzos.roa
Signing time: Sat 01 Jan 2022 15:07:23 +0000
ROA not before: Sat 01 Jan 2022 15:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 85.203.17.0/24 maxlen: 24
85.203.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91325434 (0x57183fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44e6f857c35ae64795adc90dbd583e2e88d3ce8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4f:ac:c1:c2:76:aa:16:fe:42:a0:88:3c:b2:
8c:a6:38:e5:74:6e:e1:61:30:8a:0a:f8:c6:68:62:
dc:2f:8f:c9:71:31:dd:93:62:5a:65:02:5d:d3:29:
d0:26:bf:97:f3:8b:cb:08:f9:ee:fe:d5:3d:ae:27:
cd:42:62:61:d3:36:71:f7:e2:ff:76:eb:b0:b8:42:
68:99:66:0f:0f:2a:e0:58:14:d8:8d:fc:44:0f:27:
d1:e6:5b:74:c0:51:31:ef:30:b7:c6:37:7f:16:0a:
51:ba:c6:5e:b7:be:3d:af:dd:1a:cb:3f:36:c9:67:
8b:46:13:2b:da:2d:44:6c:3d:6d:aa:71:95:39:06:
38:ab:b4:1a:f7:5a:19:aa:f2:e7:bf:78:10:11:f5:
2d:80:ec:70:a4:b4:bc:89:f8:86:49:54:85:48:db:
c3:fc:37:ff:5f:56:60:8c:14:91:d3:33:77:c2:0c:
a7:30:89:25:ed:8e:ce:43:65:d4:a9:6f:72:46:de:
75:d5:88:b3:ab:64:e9:33:42:cb:aa:44:b7:4d:d8:
97:2c:92:a4:76:8f:89:ae:b7:8b:04:08:3a:a5:38:
12:d4:4d:f2:f0:3c:7c:d4:0b:37:1e:c1:4c:c0:3b:
91:37:fe:a7:4c:bd:fa:f7:5f:a9:2d:9e:55:0e:6e:
79:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E6:F8:57:C3:5A:E6:47:95:AD:C9:0D:BD:58:3E:2E:88:D3:CE:8B
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/ROb4V8Na5keVrckNvVg-LojTzos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.17.0-85.203.18.255
Signature Algorithm: sha256WithRSAEncryption
2e:e7:92:f2:56:58:27:98:9d:3d:d2:d9:c8:f4:2f:45:e0:40:
9b:b2:8f:e9:1d:58:bd:2e:b2:8b:0d:8f:be:58:f5:54:62:8d:
97:e5:f7:00:fa:f9:8f:19:46:a9:6a:62:4f:76:6a:ce:f9:31:
66:dc:ab:ae:02:ab:81:ce:20:c9:1a:ca:0e:c1:c3:89:57:c1:
d6:39:5d:61:67:4a:d4:b8:13:f4:f3:b4:58:1a:c2:da:1c:65:
70:27:f4:25:02:ea:5a:0b:b5:26:c5:28:35:c7:5e:58:f5:01:
92:d6:89:d8:31:06:6f:d2:03:50:84:60:16:67:09:9f:4d:44:
b8:36:51:01:fb:e2:64:c3:ce:6e:4e:a4:dd:59:9f:7a:72:5f:
f1:0f:02:ff:46:d4:fd:39:0a:ba:ea:63:43:2c:09:5f:55:8b:
9e:67:56:c8:de:0b:c7:de:a7:79:fb:b3:da:5d:d3:42:b2:e9:
19:c7:91:94:cd:6d:b5:f3:b8:ba:2f:68:39:43:3e:3b:6b:b3:
9d:b0:85:3b:f1:c1:4f:50:a4:21:48:2e:23:19:09:54:f2:c7:
fd:db:18:5b:6d:dd:80:29:b5:dd:a3:2a:a0:7c:6d:bc:5f:1b:
29:54:fe:0a:9e:ae:b3:e1:cb:3c:7b:1d:7c:43:d4:12:2c:8d:
a5:02:6d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org