Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/7jKL6pmErCl1tgSQ96x98N0xOiY.roa
File: 7jKL6pmErCl1tgSQ96x98N0xOiY.roa (raw, json)
Hash identifier: ujD56QK0xHGolWjovjKeOUVfgVnDYCitbIJrkZnr9jo=
Subject key identifier: EE:32:8B:EA:99:84:AC:29:75:B6:04:90:F7:AC:7D:F0:DD:31:3A:26
Certificate issuer: /CN=fcea08e8421df2f245c7cb333ee76a14a8882d4a
Certificate serial: 091DC29F
Authority key identifier: FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OoI6EId8vJFx8szPudqFKiILUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/7jKL6pmErCl1tgSQ96x98N0xOiY.roa
Signing time: Wed 20 Apr 2022 07:52:08 +0000
ROA not before: Wed 20 Apr 2022 07:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208662
IP address blocks: 45.86.105.0/24 maxlen: 24
45.86.106.0/24 maxlen: 24
2a0f:95c0:4000::/34 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152945311 (0x91dc29f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcea08e8421df2f245c7cb333ee76a14a8882d4a
Validity
Not Before: Apr 20 07:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee328bea9984ac2975b60490f7ac7df0dd313a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:68:8c:30:d4:b8:fc:15:2a:e8:ef:c7:cc:a7:
ca:1c:0a:e1:5b:f5:d0:ec:40:ed:1f:c3:7b:b4:b1:
93:fa:39:d0:5e:1b:22:e4:98:04:31:2b:39:68:40:
7b:2d:ce:01:75:cc:ab:b2:54:68:db:b4:b7:70:a0:
a6:fd:c9:11:78:81:e7:9e:59:f7:33:39:02:38:75:
cd:fd:e8:45:93:ed:9f:31:bf:3b:34:4a:e0:d6:de:
8f:03:3e:be:63:13:41:92:47:fb:2a:c1:00:f5:34:
8b:cf:cf:fb:81:1f:5e:31:d2:22:ce:de:42:dd:c4:
2c:cd:34:c3:4f:19:d2:c7:0e:d3:be:20:1c:a3:8c:
95:48:dd:77:de:df:bd:b7:fa:64:d1:36:89:80:47:
34:00:d3:b6:b4:d2:c5:1a:5a:96:2a:2f:fe:d2:0e:
67:2f:cb:03:dc:b4:95:a4:39:c4:7d:91:95:ab:d0:
a8:b4:ae:87:4f:33:7a:e6:fd:54:d9:31:45:7f:78:
ed:69:b9:6c:3e:1b:50:4c:dc:26:d6:4f:d9:dc:7a:
d2:2e:e2:e7:47:da:ec:ca:d7:26:50:0f:fc:9d:dc:
73:dd:77:d8:63:23:49:db:73:7b:dc:14:dd:ed:c9:
3f:6c:3e:fb:8a:6a:9d:07:e5:db:1d:99:65:9c:08:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:32:8B:EA:99:84:AC:29:75:B6:04:90:F7:AC:7D:F0:DD:31:3A:26
X509v3 Authority Key Identifier:
keyid:FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OoI6EId8vJFx8szPudqFKiILUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/7jKL6pmErCl1tgSQ96x98N0xOiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/_OoI6EId8vJFx8szPudqFKiILUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.105.0-45.86.106.255
IPv6:
2a0f:95c0:4000::/34
Signature Algorithm: sha256WithRSAEncryption
3d:1c:d1:10:6e:70:e2:57:27:b5:71:ab:fc:fd:64:4b:ea:90:
53:5c:90:31:07:2d:50:61:c1:65:64:68:8a:e3:f0:ce:a2:a8:
ed:3c:9b:94:8d:71:5b:9f:d5:33:80:f2:43:b8:c7:0d:78:ae:
fa:55:ee:ac:9a:54:ee:dd:42:09:e5:10:a6:c2:74:47:ee:a9:
a7:5f:7a:c4:48:01:7d:9c:bc:31:7f:9d:2e:c4:49:13:9d:f2:
7d:0b:16:b9:45:bf:0d:e8:1c:bb:58:eb:43:e1:c1:b8:b5:99:
f6:d1:76:83:67:2c:5a:94:c8:de:8d:08:a5:10:f5:a0:19:52:
40:67:57:fb:37:e2:77:71:b4:a0:f5:26:34:a1:10:8d:07:60:
74:76:63:eb:d3:e6:80:e3:e2:a2:9d:53:a2:f5:b4:83:36:0e:
75:e2:21:a9:01:6a:09:81:fd:a0:4a:9e:a7:24:46:42:6f:b9:
0a:9a:03:b5:9f:d4:bc:64:66:9d:95:09:e3:c2:88:02:5d:d2:
ac:c2:ab:af:6e:d3:43:c1:63:5c:5b:55:2d:bc:7d:2f:e6:ca:
56:8e:e1:4a:15:a6:b8:6d:48:51:93:12:dd:4a:a1:8c:37:c2:
a6:9c:eb:f0:11:0e:aa:5c:42:d2:6a:4d:41:6d:4e:1a:5a:77:
cf:11:57:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:53 2024 by rpki-client on console-ams.rpki-client.org