Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/X3p043a7IBUpOE4C3Htx2H1vQK4.roa
File: X3p043a7IBUpOE4C3Htx2H1vQK4.roa (raw, json)
Hash identifier: JZcexXc1Uos2R+FkFtqfKEbn+hR/rDMz8vGabJhEl+0=
Subject key identifier: 5F:7A:74:E3:76:BB:20:15:29:38:4E:02:DC:7B:71:D8:7D:6F:40:AE
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A9139B9
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/X3p043a7IBUpOE4C3Htx2H1vQK4.roa
Signing time: Sat 01 Jan 2022 16:07:19 +0000
ROA not before: Sat 01 Jan 2022 16:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207879
IP address blocks: 85.187.45.0/24 maxlen: 24
185.242.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177289657 (0xa9139b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f7a74e376bb201529384e02dc7b71d87d6f40ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:e3:b2:13:3a:9d:fa:37:b0:c7:46:bc:8a:
b8:09:71:90:82:97:f9:51:39:04:d1:2d:71:94:8b:
f4:b7:7e:19:c0:16:63:d5:1f:23:70:bb:53:f4:f0:
43:54:93:f5:0a:2f:95:d5:3f:8a:d0:66:d7:c3:79:
50:6f:0e:87:fa:99:ca:9a:04:02:19:6b:75:94:4e:
ac:61:57:1f:ba:45:c0:d6:f8:d0:20:48:9f:7d:8f:
a2:b5:10:5b:20:71:58:b7:3f:7d:5a:1a:01:db:48:
f8:7b:d2:6b:f0:46:fa:af:66:b2:63:b9:19:c0:96:
0c:78:4c:b8:c7:0d:d1:9b:87:59:52:b4:13:0e:9a:
a9:37:87:e4:46:fe:c2:80:a0:78:ca:d2:c3:28:af:
80:21:df:29:e7:ea:2b:c4:e2:77:9d:eb:6c:4d:4c:
8b:64:56:e1:fa:a2:8e:9b:d1:d6:4a:b9:97:9a:9c:
e0:67:90:de:60:bd:79:5e:5f:76:cc:04:d3:14:06:
05:d7:b1:34:cf:a8:88:03:ec:b3:3f:c0:5b:1d:cc:
5b:0e:65:bd:01:7a:32:78:3a:4f:b3:e1:53:86:d1:
3b:ff:08:6e:53:77:d3:47:5d:d1:fb:80:af:9e:89:
7c:0a:15:a5:aa:50:a5:cb:e1:49:d8:83:e2:80:51:
94:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7A:74:E3:76:BB:20:15:29:38:4E:02:DC:7B:71:D8:7D:6F:40:AE
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/X3p043a7IBUpOE4C3Htx2H1vQK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.45.0/24
185.242.171.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:30:7e:5a:d4:16:fe:5f:c4:3b:3f:2e:3b:e2:b4:d8:36:9d:
ed:12:c1:58:be:ec:5a:e1:e8:29:29:a5:fa:b2:e6:e6:0b:84:
02:cd:e9:5a:a7:d3:0d:cc:2e:1c:c3:7a:d5:dd:4e:ff:7b:e7:
35:4b:a9:43:54:f9:08:d0:c1:b4:12:19:2e:29:99:27:91:57:
ea:df:ce:54:60:29:9b:23:95:bf:55:08:c8:eb:33:71:11:21:
2b:50:57:c7:b0:a1:dd:05:81:ed:09:b1:5e:45:7d:d1:31:06:
50:5e:08:9e:a5:03:b7:4b:72:2d:bf:b6:cb:f8:d0:39:02:68:
9f:86:2a:5b:db:90:46:77:30:03:c6:9f:11:22:1e:e1:75:3e:
2d:49:de:7d:d4:a1:d5:d9:da:5b:6e:d4:1f:77:09:8f:c8:d9:
59:6d:35:a2:31:91:cb:ca:4a:92:01:80:ff:57:98:3f:66:f8:
99:d7:78:e1:cf:68:98:af:54:d1:ad:c5:5b:e1:42:6c:a8:b4:
fd:71:bf:c1:aa:a6:7f:bf:25:97:d2:2d:bf:66:da:4f:1c:c5:
ea:58:0b:34:ec:ec:79:65:fb:89:fe:96:85:61:e6:c5:a8:74:
0e:58:a5:65:02:4d:2c:71:71:b2:95:92:95:56:ac:38:fc:4c:
9d:6c:39:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org