Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/fc5DyrqqvorgfLLVeQkKH-GyWC8.roa
File: fc5DyrqqvorgfLLVeQkKH-GyWC8.roa (raw, json)
Hash identifier: IWIdX8y7z4dxCYQBXyWfxi9X3tizIJVMRXtfAWTD0vU=
Subject key identifier: 7D:CE:43:CA:BA:AA:BE:8A:E0:7C:B2:D5:79:09:0A:1F:E1:B2:58:2F
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0185302E1B65AD79A0AA1E0A2AD7E2B177BC
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/fc5DyrqqvorgfLLVeQkKH-GyWC8.roa
Signing time: Tue 20 Dec 2022 15:36:46 +0000
ROA not before: Tue 20 Dec 2022 15:36:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64399
IP address blocks: 212.16.70.0/24 maxlen: 24
212.16.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:2e:1b:65:ad:79:a0:aa:1e:0a:2a:d7:e2:b1:77:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 20 15:36:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dce43cabaaabe8ae07cb2d579090a1fe1b2582f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:93:b7:a8:dd:90:75:02:cc:b8:81:c4:d3:4e:
ae:6b:8b:28:ad:c3:83:92:df:3d:0d:10:36:3f:50:
41:d4:e5:48:1c:e6:2b:b0:d9:75:f7:4f:99:2f:57:
6c:21:ed:f0:ba:2e:23:fd:ed:51:13:02:89:77:51:
f3:d5:ea:9c:e3:24:a8:1c:22:f9:76:2b:de:3c:14:
c8:e0:56:e9:82:65:9f:f2:42:3a:c5:c4:7e:49:ba:
c9:a4:7c:d5:38:b0:36:c4:11:59:75:07:75:c6:69:
37:c6:6d:80:17:86:9f:24:3d:78:fd:2e:1e:ba:18:
28:f2:0d:55:d9:3e:c3:12:27:40:ae:be:7b:d8:89:
f4:c8:05:fc:1f:61:6c:28:79:0a:b4:87:b8:ed:b8:
07:4a:3f:32:7a:d1:c9:48:c7:95:72:55:ef:b6:1c:
c8:d5:33:04:1e:d5:c0:25:74:57:3d:6f:c4:64:55:
a1:c2:d3:40:83:de:57:4b:0e:45:c9:77:d2:5b:0e:
cc:4d:a1:0d:5c:e6:c2:8a:c5:a9:f7:5b:47:ff:bc:
57:97:ae:c2:10:68:78:d8:0b:2d:33:8c:ea:c5:60:
02:62:d9:0a:9a:23:d7:69:bb:31:81:bf:07:69:7c:
90:f4:fc:73:c4:40:7c:02:c6:78:11:ff:5a:8b:d2:
b9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CE:43:CA:BA:AA:BE:8A:E0:7C:B2:D5:79:09:0A:1F:E1:B2:58:2F
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/fc5DyrqqvorgfLLVeQkKH-GyWC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.70.0/24
212.16.73.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:63:a3:a4:d5:02:e0:7f:d0:04:82:b7:ef:cf:7d:86:7d:ef:
11:74:a4:0a:9a:87:a0:8d:cb:4c:a2:42:a2:34:fc:e9:7b:43:
d4:8e:de:87:46:f4:a4:c9:c9:77:40:50:7f:21:e8:42:ff:e6:
0e:be:9e:88:41:4d:6c:2e:df:05:96:a8:c2:17:c0:70:a1:27:
af:8c:31:6b:e5:81:70:15:7a:18:dc:2a:bc:64:2d:53:7d:58:
d4:58:7c:09:25:0b:6a:b9:36:09:5a:8f:66:29:5b:1e:3b:87:
8b:59:3e:cd:46:36:32:32:52:ac:39:12:bc:18:97:23:44:bf:
86:49:43:51:6e:ef:d9:ea:4b:00:54:e5:45:c7:6f:3c:d4:f8:
01:e1:f7:10:70:9c:dd:4c:ab:89:01:e3:8d:db:a8:53:dd:67:
8f:32:59:c4:b8:68:00:d2:c1:82:c0:5c:a1:d8:70:8f:29:40:
35:32:41:6d:7a:2a:dc:37:c2:c2:24:2c:32:e1:53:60:4c:ae:
9e:ff:4a:46:0d:21:15:99:37:55:21:09:15:f1:e4:44:37:ee:
04:7a:a0:78:fa:f6:07:d6:f5:a4:48:b6:ec:d3:8c:86:22:bd:
30:ef:3e:2f:ce:25:fe:ac:be:a4:51:53:3c:f3:45:01:9e:0b:
8f:07:db:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org