Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/FGXVzmCWmdHm5pr60G983YG6FXY.roa
File: FGXVzmCWmdHm5pr60G983YG6FXY.roa (raw, json)
Hash identifier: TPJ+lHKphNRMQKHrbcszkvHFDE7BBoR5gAYoVVfyBFI=
Subject key identifier: 14:65:D5:CE:60:96:99:D1:E6:E6:9A:FA:D0:6F:7C:DD:81:BA:15:76
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01851A6BE34EB946420E41C7DD9F1A37C69F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/FGXVzmCWmdHm5pr60G983YG6FXY.roa
Signing time: Fri 16 Dec 2022 10:12:36 +0000
ROA not before: Fri 16 Dec 2022 10:12:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271993
IP address blocks: 45.8.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:6b:e3:4e:b9:46:42:0e:41:c7:dd:9f:1a:37:c6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 16 10:12:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1465d5ce609699d1e6e69afad06f7cdd81ba1576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:ed:3d:dd:3e:df:4d:87:1b:8b:bc:58:71:
bd:6a:f0:4f:5f:41:e2:fc:0f:ca:47:7f:e2:a8:1e:
0b:ed:26:7c:8e:c5:91:7d:77:3b:14:58:6b:e7:c2:
88:9d:7a:51:ee:21:59:a6:c8:2f:d3:96:b8:85:92:
0f:36:ed:ef:0e:a8:d1:d6:86:7d:6a:3c:c1:1e:8f:
c9:99:71:af:ae:55:72:4a:0b:ed:b4:12:9e:4e:6b:
b7:99:75:08:80:92:dd:a0:0f:b4:ae:1b:5f:ce:45:
e4:2c:84:4d:e7:4c:a0:d8:2b:6e:7a:2a:ac:a8:59:
88:c5:e8:83:fd:20:cc:c1:6e:14:83:4a:ef:05:b0:
ae:a4:dd:8f:c0:4c:29:0f:6b:63:d9:ba:a7:f5:43:
0b:67:26:d3:45:2f:9e:0a:46:88:e6:6f:fd:cf:a6:
6b:8c:2c:df:73:24:99:34:89:00:29:54:4e:21:8b:
c9:0c:fc:2b:40:7a:eb:dc:44:3f:c5:8e:9b:1d:c1:
cb:57:a6:d1:e2:c5:ae:39:f8:96:a8:3d:08:c6:7f:
29:a4:df:f0:0c:cc:ae:0d:b0:57:84:4d:ce:89:0f:
de:85:17:f7:22:05:3a:e8:46:58:66:b6:c7:6a:53:
64:ce:bc:71:b8:77:ce:e8:f1:b9:b3:7a:66:bf:a4:
5e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:65:D5:CE:60:96:99:D1:E6:E6:9A:FA:D0:6F:7C:DD:81:BA:15:76
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/FGXVzmCWmdHm5pr60G983YG6FXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.207.0/24
Signature Algorithm: sha256WithRSAEncryption
06:eb:6a:7b:e2:37:ef:38:f2:8a:f6:c2:6b:84:d2:49:1e:4b:
75:0c:5f:19:ec:76:92:06:ad:40:fd:40:25:c1:d9:93:3e:3f:
1d:a9:80:1f:73:7e:cd:30:ce:1a:79:9c:f2:99:63:e6:a5:2b:
32:5d:e8:2f:ac:d2:55:a3:4c:6f:a3:00:ac:16:d0:20:ef:67:
ff:7f:a5:4a:d4:88:90:c2:b3:59:ee:d8:fb:ee:51:6a:b4:57:
49:bb:c9:2e:f2:96:77:09:4c:88:fa:9b:27:5f:35:c4:95:3e:
53:ca:79:61:86:9c:9c:4a:86:d5:3a:09:9f:91:4e:77:6a:12:
a8:d6:f7:0a:a2:f6:31:95:35:8e:d3:40:7f:9d:a8:99:8c:15:
db:9c:fa:e5:03:47:ab:c6:45:cf:19:42:91:3c:10:65:73:59:
36:e7:ce:a8:5b:1c:17:2c:4c:a2:41:b0:67:4d:76:25:32:cd:
6a:96:92:1f:4a:82:b6:50:19:ff:38:e9:da:4b:77:79:84:ed:
79:5a:31:11:ba:ff:e2:6f:ce:1f:55:ae:28:62:97:dc:0d:19:
b7:c0:eb:3a:35:29:a3:95:a1:3c:4b:e9:30:e7:cc:b9:8c:08:
ca:a9:d7:15:02:8a:a4:6d:30:80:aa:79:a1:b8:ef:72:15:dc:
f7:37:8f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org