Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/vc7HZuH4k5noINc7AzkBThg5p8Y.roa
File: vc7HZuH4k5noINc7AzkBThg5p8Y.roa (raw, json)
Hash identifier: 6gDjW2foR5+mmsaHRNdmpPbYtO2O098zuXwezqliCVg=
Subject key identifier: BD:CE:C7:66:E1:F8:93:99:E8:20:D7:3B:03:39:01:4E:18:39:A7:C6
Certificate issuer: /CN=fcea08e8421df2f245c7cb333ee76a14a8882d4a
Certificate serial: 08CDF720
Authority key identifier: FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OoI6EId8vJFx8szPudqFKiILUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/vc7HZuH4k5noINc7AzkBThg5p8Y.roa
Signing time: Sat 12 Mar 2022 05:57:02 +0000
ROA not before: Sat 12 Mar 2022 05:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 45.86.104.0/24 maxlen: 24
45.86.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147715872 (0x8cdf720)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcea08e8421df2f245c7cb333ee76a14a8882d4a
Validity
Not Before: Mar 12 05:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdcec766e1f89399e820d73b0339014e1839a7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:3f:ef:0a:5d:0f:65:04:19:db:63:3b:d6:
3b:59:c7:5f:6f:34:d0:9e:47:c5:90:e8:ea:8a:36:
59:b4:50:52:b6:09:87:8a:82:76:25:64:d1:16:b9:
25:72:7e:4b:5a:f7:d3:43:f3:42:fa:fd:c7:12:52:
d2:02:9c:74:05:2e:9b:6e:c9:6c:14:86:61:80:6d:
04:8c:78:5d:4a:4f:00:d3:5b:7b:6d:de:cc:fc:eb:
49:84:ff:f0:ec:53:76:99:98:29:7d:a1:f5:cb:d9:
97:26:67:34:ab:8c:be:e5:cb:6e:6e:88:03:92:67:
32:73:8e:2e:15:ef:dc:14:3f:78:50:2e:6f:3c:7e:
6b:b6:c3:7e:fd:a0:29:9a:e0:11:2d:14:12:a4:b2:
e2:be:d0:6a:cc:89:ec:b7:d3:1d:55:83:d3:b5:c6:
1c:2c:6a:6b:8a:68:69:9d:94:2f:e7:0c:0d:73:71:
fe:e9:4a:8a:18:4b:e0:b6:09:62:b6:25:6e:47:85:
d7:11:70:0f:05:fe:8d:fb:5e:37:d7:c9:85:50:95:
27:21:80:3b:d4:aa:a8:8c:9e:40:00:4c:95:a4:40:
8c:e1:90:60:d9:6b:b7:38:29:db:48:b7:53:ad:b5:
a1:ae:69:48:34:f3:b5:de:a0:14:da:83:20:bd:c4:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CE:C7:66:E1:F8:93:99:E8:20:D7:3B:03:39:01:4E:18:39:A7:C6
X509v3 Authority Key Identifier:
keyid:FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OoI6EId8vJFx8szPudqFKiILUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/vc7HZuH4k5noINc7AzkBThg5p8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/_OoI6EId8vJFx8szPudqFKiILUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.104.0/23
Signature Algorithm: sha256WithRSAEncryption
58:14:94:cc:e0:a4:21:29:f5:53:0c:01:99:52:af:39:ec:4a:
65:f1:e2:a7:e8:3c:0a:9b:4b:13:aa:59:0b:cd:90:b1:cb:08:
e5:63:e6:a1:7f:6e:4c:0d:96:0e:25:23:2a:43:d2:62:e5:84:
ea:d2:8b:9b:ac:a6:42:f0:85:d0:0b:ae:a6:39:f6:4c:34:46:
9f:ff:23:8a:1c:c9:87:20:4e:dd:f5:32:da:e0:18:f1:49:a1:
b5:66:98:ca:a0:ca:05:ee:ac:aa:a8:fd:f2:80:fc:f9:32:a4:
97:a5:6c:84:51:cc:1d:b9:04:29:08:04:ce:65:d1:b7:af:15:
69:8d:31:a2:41:40:b4:03:a4:c2:89:49:b4:e7:db:6e:3f:e3:
d3:7e:4c:63:9d:4b:88:2a:7f:f3:0d:f1:3d:19:16:ce:6a:e5:
30:8c:b6:54:af:66:39:15:2b:60:ed:f0:54:2b:df:9e:49:4d:
8f:48:02:49:ed:c8:9c:b6:52:0a:e2:d3:b4:97:3f:5e:25:0b:
ad:97:d2:1a:82:80:ea:28:72:f5:44:93:7a:a9:57:19:2c:b3:
44:a1:5d:cf:82:76:99:16:50:5f:43:65:ac:c6:0f:70:8d:59:
d2:e6:7e:50:db:7f:ce:54:b3:38:cf:ba:7f:38:d2:95:bc:02:
19:3e:a8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:51 2024 by rpki-client on console-fra.rpki-client.org