Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fddd4-526a-4807-b127-1bc31c62401f/1/2_FsdEn-Flm0ljZx_zv1xAQiko0.roa
File: 2_FsdEn-Flm0ljZx_zv1xAQiko0.roa (raw, json)
Hash identifier: s8FjzKzv5l9iepqmJmoQBgOwRck8ulFat9jQ2SGMHNk=
Subject key identifier: DB:F1:6C:74:49:FE:16:59:B4:96:36:71:FF:3B:F5:C4:04:22:92:8D
Certificate issuer: /CN=aafc41aafbbccaa96711849745ef722a5260ac7e
Certificate serial: 05DACC28
Authority key identifier: AA:FC:41:AA:FB:BC:CA:A9:67:11:84:97:45:EF:72:2A:52:60:AC:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvxBqvu8yqlnEYSXRe9yKlJgrH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fddd4-526a-4807-b127-1bc31c62401f/1/2_FsdEn-Flm0ljZx_zv1xAQiko0.roa
Signing time: Sat 01 Jan 2022 05:00:15 +0000
ROA not before: Sat 01 Jan 2022 05:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 45.67.92.0/22 maxlen: 24
2a09:7440::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98225192 (0x5dacc28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aafc41aafbbccaa96711849745ef722a5260ac7e
Validity
Not Before: Jan 1 05:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbf16c7449fe1659b4963671ff3bf5c40422928d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:62:96:64:da:b4:13:b1:2b:91:dd:f1:36:db:
9e:06:28:d8:e5:23:44:68:04:c8:10:c0:64:68:ad:
ea:87:82:59:47:43:f9:d4:3c:99:76:48:f2:a7:47:
c3:67:cf:e2:ad:c9:5a:3d:2b:af:e4:fa:6a:f6:4d:
c9:f0:ed:ce:85:a4:b5:e3:8b:61:22:85:cf:e5:23:
4c:14:2e:05:83:9a:fd:b6:2e:04:38:ce:2b:d9:24:
6b:b8:cc:a6:5c:f9:75:7b:09:50:37:bd:a2:d8:37:
26:c0:dc:98:52:0f:57:2d:89:32:1f:61:35:3c:03:
7a:27:f0:e5:dd:64:90:d5:49:83:4d:b5:5c:da:17:
3b:c9:f6:f1:e8:c6:b8:02:22:fb:38:20:a5:c4:0e:
01:46:90:9e:70:1f:2d:54:c4:8f:2a:db:e1:80:02:
36:3d:70:e9:5b:87:a5:c6:64:ad:a7:57:e5:8c:e6:
8b:f7:fc:be:50:85:dd:9c:13:bd:6b:e6:ab:db:72:
2a:d0:0b:d4:c1:8b:d4:e9:2a:c6:70:df:7d:e4:bb:
7d:d9:da:d7:5a:50:db:d7:28:5c:15:f5:72:55:9c:
f5:5d:36:d8:a6:a6:32:2d:e1:56:95:1f:81:d2:f3:
02:32:43:35:ef:7b:41:02:8c:21:86:37:02:fe:05:
63:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F1:6C:74:49:FE:16:59:B4:96:36:71:FF:3B:F5:C4:04:22:92:8D
X509v3 Authority Key Identifier:
keyid:AA:FC:41:AA:FB:BC:CA:A9:67:11:84:97:45:EF:72:2A:52:60:AC:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvxBqvu8yqlnEYSXRe9yKlJgrH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fddd4-526a-4807-b127-1bc31c62401f/1/2_FsdEn-Flm0ljZx_zv1xAQiko0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fddd4-526a-4807-b127-1bc31c62401f/1/qvxBqvu8yqlnEYSXRe9yKlJgrH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.92.0/22
IPv6:
2a09:7440::/32
Signature Algorithm: sha256WithRSAEncryption
a7:d7:a1:00:31:3d:b1:b0:e8:3f:59:6a:ca:56:ae:8f:8b:de:
10:99:69:56:17:59:4e:0c:85:80:bf:de:a7:81:c5:5a:33:94:
65:be:c5:5e:65:ee:1b:7a:16:3a:a5:62:e7:5c:8a:9d:cc:d2:
3b:af:af:f7:f9:d8:37:e6:b9:7b:72:c3:ed:67:4e:1d:0a:ec:
fb:ea:7d:16:ef:a1:aa:3e:92:9a:b0:42:79:fc:d2:70:5c:65:
6a:65:3c:7a:bf:a0:b3:81:9e:d0:01:fb:20:4c:f1:ee:0c:03:
69:fc:f4:9f:0f:00:97:40:5a:6c:90:85:7f:50:67:96:12:d3:
20:9b:bc:09:e7:f5:58:9b:ef:65:5c:b0:a7:2e:01:76:36:f1:
ba:c1:e2:89:0a:88:eb:55:fa:62:38:a9:03:3f:01:3f:23:23:
25:81:f3:d2:c2:f4:49:a9:42:01:45:2b:2f:54:a0:fb:63:de:
d4:27:56:c1:1e:85:8f:66:ec:89:64:06:bc:4e:bc:28:9f:25:
12:93:ad:7c:9d:51:c7:78:8f:7d:d1:8d:99:15:f5:22:36:7a:
90:a1:46:35:f2:0a:e6:f1:44:1c:3f:69:75:81:48:2c:2d:92:
4b:02:10:db:44:73:a4:d7:32:16:f9:41:17:15:e0:dd:38:59:
d1:bf:9f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:11 2023 by rpki-client on console-fra.rpki-client.org