Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/cV2No3A65UQlMOdtknPq4mdmuHc.roa
File: cV2No3A65UQlMOdtknPq4mdmuHc.roa (raw, json)
Hash identifier: YG0U/c8VCJy6Rae259CEJotPwhHsCCtUeVN1n5ekJeI=
Subject key identifier: 71:5D:8D:A3:70:3A:E5:44:25:30:E7:6D:92:73:EA:E2:67:66:B8:77
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 05E2F15C
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/cV2No3A65UQlMOdtknPq4mdmuHc.roa
Signing time: Tue 15 Feb 2022 08:41:40 +0000
ROA not before: Tue 15 Feb 2022 08:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 85.203.21.0/24 maxlen: 24
85.203.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98759004 (0x5e2f15c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Feb 15 08:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=715d8da3703ae5442530e76d9273eae26766b877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f0:9b:5a:55:3c:c3:3c:1d:1a:53:f4:16:35:
98:da:98:5d:6d:13:0b:6a:fc:7d:37:3a:f7:a2:94:
16:a3:1a:e2:3b:42:b0:dc:dd:48:42:09:58:19:07:
88:c1:cb:8c:5c:e9:9f:fa:b0:da:6d:23:b7:4b:2c:
dc:d7:1c:5d:ae:5a:4d:9c:2d:cd:bd:f1:75:5a:6c:
3b:ab:60:4b:33:11:8d:50:78:70:a6:69:fc:4b:23:
77:7a:82:27:63:76:bf:dc:f4:cc:81:65:16:c1:36:
3a:8f:6b:9e:a5:27:c0:59:e8:d3:f8:68:e8:2f:98:
0c:14:b5:ee:6e:e8:47:81:04:8d:6a:78:3c:4e:0c:
4a:15:0c:5d:25:fc:5a:76:3a:ee:dd:aa:5a:f2:18:
4f:94:76:c0:d1:4a:e4:fd:79:7b:bb:64:54:55:d5:
89:af:41:ca:26:91:22:ba:13:c5:c6:fd:b6:81:f9:
34:40:27:ad:27:e0:f1:60:fe:96:d0:97:72:e2:26:
1e:9b:17:e6:b5:58:91:83:a1:f1:3a:e7:f0:fb:c7:
6a:39:ab:6a:de:c9:be:e4:f6:2a:ec:3b:4f:aa:e4:
b7:fb:58:9c:30:8c:c6:06:3f:e9:91:ab:c7:cd:91:
55:c4:c0:29:ed:66:7d:2d:62:d9:98:3e:83:cf:c6:
e1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5D:8D:A3:70:3A:E5:44:25:30:E7:6D:92:73:EA:E2:67:66:B8:77
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/cV2No3A65UQlMOdtknPq4mdmuHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.21.0/24
85.203.34.0/24
Signature Algorithm: sha256WithRSAEncryption
50:6a:6b:26:24:07:12:2e:31:96:5b:eb:4c:08:19:0a:8d:dc:
c9:47:6c:91:21:1d:40:01:80:b6:02:dc:28:c3:7c:1d:4d:83:
2f:e9:8e:53:ce:f9:40:4c:ba:e1:bf:20:12:fb:2a:a0:56:5e:
d3:3f:49:81:74:33:57:e5:54:a2:56:35:47:bb:a4:1d:e4:59:
ef:b0:dd:a3:4d:40:f0:88:d1:b3:d4:0b:66:c3:a3:5a:a3:25:
e2:66:90:e0:f7:7e:53:2d:98:ac:cb:2c:86:d9:bb:89:97:13:
51:4a:7e:27:75:59:dd:97:cc:af:24:98:50:72:a4:27:63:24:
84:c8:4a:72:00:3f:34:7c:92:e2:6e:4f:08:22:b9:c5:0d:db:
f7:6a:42:68:51:1c:9e:54:4f:13:71:28:f7:22:35:92:94:f8:
8b:40:11:ab:08:11:56:da:db:19:4a:9d:b7:fd:ed:f9:37:22:
c6:db:65:c1:ef:47:12:8b:2d:ba:98:8f:a9:77:a7:4d:0b:81:
e4:7c:10:c3:d1:7b:db:fd:02:20:9a:ec:73:8f:c6:84:d4:46:
92:97:d1:66:88:d5:f2:58:a7:79:14:25:51:e8:1a:35:23:bd:
3f:32:d0:93:68:1a:5e:49:51:73:bb:dc:91:cd:1d:c9:08:9e:
dd:d4:d3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org