Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/Afv7t2ISQVKULAELiWS-VH62wAk.roa
File: Afv7t2ISQVKULAELiWS-VH62wAk.roa (raw, json)
Hash identifier: ydQO6AcJT87MIY4sFp1yntNmDNuN8eN0ygG7wsb5s6A=
Subject key identifier: 01:FB:FB:B7:62:12:41:52:94:2C:01:0B:89:64:BE:54:7E:B6:C0:09
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 055AE694
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/Afv7t2ISQVKULAELiWS-VH62wAk.roa
Signing time: Sat 01 Jan 2022 13:02:25 +0000
ROA not before: Sat 01 Jan 2022 13:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62033
IP address blocks: 185.127.129.0/24 maxlen: 24
45.132.34.0/24 maxlen: 24
2a10:5d80:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89843348 (0x55ae694)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Jan 1 13:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01fbfbb762124152942c010b8964be547eb6c009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:47:60:ed:c2:c4:ed:f8:be:b4:00:b6:2b:70:
78:74:67:5e:e1:0e:63:e2:4d:34:36:68:4f:4f:ee:
a7:3e:6e:95:f5:f9:54:8e:e5:df:cc:d4:cb:69:41:
00:9a:77:a0:49:ad:dd:ac:f3:09:90:7b:29:70:a5:
87:20:17:3d:57:22:28:f7:8f:df:26:50:49:c8:09:
8f:f8:11:f1:bb:64:b8:e2:d9:ae:f3:db:93:4f:3f:
7d:94:c1:26:e4:59:81:c5:f0:ef:bd:2b:92:70:f5:
ec:23:86:ea:4c:46:6f:a4:ea:2b:4b:07:29:34:9a:
96:04:1e:c2:8c:df:36:81:8b:89:27:00:81:e1:2d:
ec:19:a6:e4:7e:44:ad:c8:45:eb:3b:61:69:5f:1e:
08:34:24:67:30:c3:64:be:72:d5:4d:01:2c:c2:a2:
ff:6a:6b:d8:3e:49:85:c6:de:c9:23:21:c9:07:b2:
25:69:01:a6:6d:13:72:96:ca:a5:b0:74:31:a1:d8:
06:b9:73:f0:7e:a7:ba:6c:c2:eb:d4:da:16:21:a7:
36:60:f3:86:41:96:e4:c6:e3:5f:b3:cc:a8:cf:0e:
05:c1:7e:5d:8d:ed:9e:26:29:31:5f:e7:39:36:f5:
6f:47:d6:bc:36:e6:fe:a6:b2:b7:9a:b9:2d:7b:ac:
00:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FB:FB:B7:62:12:41:52:94:2C:01:0B:89:64:BE:54:7E:B6:C0:09
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/Afv7t2ISQVKULAELiWS-VH62wAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.34.0/24
185.127.129.0/24
IPv6:
2a10:5d80:1::/48
Signature Algorithm: sha256WithRSAEncryption
5f:b8:2a:70:fd:e8:e6:ac:db:86:3f:b7:c5:5e:06:be:d5:5c:
db:e3:d3:42:27:2a:8d:ec:24:ca:4a:e6:97:b5:27:63:46:51:
82:6c:41:20:67:32:e1:98:97:b6:19:e9:44:00:8d:c3:1c:9d:
f1:8c:23:fb:09:e5:53:d0:c1:81:0a:6b:24:7e:49:d1:09:ca:
87:36:76:97:f7:90:48:91:1c:d6:42:77:98:54:95:4d:4c:1e:
91:d4:70:6e:b6:ce:95:da:ec:e3:63:c0:41:5d:a4:66:5a:1d:
ed:c6:43:e5:81:6c:78:c1:d2:e3:f5:6c:1c:02:71:9b:c8:77:
72:7b:38:e7:8e:3f:e4:ba:51:e1:bb:ff:ca:83:fb:04:f8:8c:
1e:51:76:db:55:0f:aa:a2:f6:40:35:b1:fb:27:b8:eb:f3:b9:
8d:63:42:66:10:3d:9b:19:b4:f3:63:36:a8:48:78:35:1c:d8:
fd:2d:04:1e:1e:4d:1a:f3:fa:81:07:33:a1:9e:9a:8c:33:d6:
eb:55:83:7f:6e:22:e2:fd:ac:9c:fe:4d:91:06:67:50:00:08:
b3:52:a4:cc:6c:08:66:2d:60:9a:3b:5b:06:e0:12:18:17:0d:
4f:64:28:47:93:70:9f:3b:10:c4:c3:6f:44:4a:87:92:2c:85:
e0:a1:d0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:08 2023 by rpki-client on console-fra.rpki-client.org