Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FKc4WiEjIBa2P2U2cMj9AjlRmYc.roa
File: FKc4WiEjIBa2P2U2cMj9AjlRmYc.roa (raw, json)
Hash identifier: +QPbd7uv2L2to6Pfj02lwpgiy9UCN571eGicxjzIzA8=
Subject key identifier: 14:A7:38:5A:21:23:20:16:B6:3F:65:36:70:C8:FD:02:39:51:99:87
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0675E19A
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FKc4WiEjIBa2P2U2cMj9AjlRmYc.roa
Signing time: Wed 09 Feb 2022 15:00:28 +0000
ROA not before: Wed 09 Feb 2022 15:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210709
IP address blocks: 45.85.116.0/24 maxlen: 24
2a0d:f407:1032::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108388762 (0x675e19a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Feb 9 15:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14a7385a21232016b63f653670c8fd0239519987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dc:5e:7b:19:fa:2c:d2:e7:00:40:66:91:26:
72:ff:16:95:97:dc:cd:ce:53:3c:66:e2:b6:16:d8:
85:e1:9b:a9:d9:ba:98:3d:eb:57:86:9c:46:51:7a:
9b:87:48:78:43:ad:c6:01:88:e4:cb:6b:1d:03:ba:
7d:54:d3:2d:04:b8:0a:b6:0b:8b:e4:47:6f:75:24:
a2:a4:45:86:c5:60:d0:dc:82:e2:12:f9:9e:63:33:
e3:47:1c:eb:b4:71:62:68:8d:d3:09:c5:bd:d3:ef:
a9:59:01:df:af:20:85:bb:23:c2:3f:b0:16:1f:26:
ea:c7:0b:a1:14:02:8e:f3:5c:33:ee:e3:64:35:2d:
7f:6f:28:d6:7c:cb:f9:14:ef:05:b1:c7:30:3d:a7:
67:92:18:fc:9a:1c:91:32:73:56:a6:02:2a:f9:96:
ee:ef:fc:da:6f:04:5e:63:41:98:41:29:62:34:ff:
17:d0:79:a0:da:1a:ab:40:8e:ee:65:9d:5b:86:f0:
c7:e4:9c:f7:8d:b3:e0:b2:ee:4e:ab:e3:1f:47:73:
02:b7:95:9a:07:5a:10:9c:54:26:70:cc:2d:42:a1:
29:d4:8a:12:38:b3:ea:6e:f0:c2:8e:be:1f:bd:51:
b5:b0:68:57:27:c8:6e:50:94:0d:fb:04:02:85:dc:
2d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A7:38:5A:21:23:20:16:B6:3F:65:36:70:C8:FD:02:39:51:99:87
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FKc4WiEjIBa2P2U2cMj9AjlRmYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.116.0/24
IPv6:
2a0d:f407:1032::/48
Signature Algorithm: sha256WithRSAEncryption
25:66:05:e2:3b:a0:fa:d8:c5:10:fc:65:8f:87:56:a6:b2:5a:
38:48:b6:d6:bc:6e:fa:d5:f3:7c:16:10:79:ef:a8:a2:cd:2f:
3f:ed:39:24:61:b7:63:1e:f7:43:5d:23:17:3e:33:37:27:15:
fc:db:d6:fb:83:0e:90:56:c4:5e:f2:b8:75:19:f8:fb:e8:96:
1f:81:9c:8b:c0:37:54:da:5d:7a:fc:d6:1a:ab:9b:64:2b:82:
ab:4e:68:8d:1e:8b:06:6e:7e:ea:f1:57:38:fd:3d:7f:6d:93:
a3:bc:85:3b:e2:70:43:32:e1:95:0d:a7:cd:72:51:6b:85:cf:
49:92:06:19:a4:6e:42:c7:ec:06:50:4e:2a:48:e3:41:dc:aa:
2f:ee:87:d2:7e:86:98:1b:2e:b3:0d:2f:34:bb:90:3c:a0:c4:
0f:44:5f:7d:8c:44:c9:e7:bd:9e:e5:3b:47:87:8a:9b:cc:ce:
95:6c:35:ff:08:9d:33:8e:a2:9c:b0:36:4d:73:77:aa:f8:6a:
70:52:16:74:19:58:a0:7e:ad:59:b3:b0:87:ed:09:7a:d1:0d:
d1:4e:c2:86:32:11:9f:d5:36:af:1f:73:21:cc:b4:5c:62:9f:
b7:ba:5b:8c:b4:fa:1a:00:69:7a:ad:a5:3b:85:ca:fd:8a:d4:
64:00:d7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org