Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/4IEIJyva6GoewFexRRnIDYhPLKs.roa
File: 4IEIJyva6GoewFexRRnIDYhPLKs.roa (raw, json)
Hash identifier: 2k9B1SYA/VtbUQIblLuFccyltt4+57REhyu6z+BSd/8=
Subject key identifier: E0:81:08:27:2B:DA:E8:6A:1E:C0:57:B1:45:19:C8:0D:88:4F:2C:AB
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0742527C
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/4IEIJyva6GoewFexRRnIDYhPLKs.roa
Signing time: Sat 01 Jan 2022 12:01:25 +0000
ROA not before: Sat 01 Jan 2022 12:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.85.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121787004 (0x742527c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 1 12:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e08108272bdae86a1ec057b14519c80d884f2cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ec:dd:40:1c:9f:29:90:6f:db:10:59:12:fd:
b0:77:ba:10:a4:bc:b3:53:6d:7e:60:48:37:4d:e6:
50:39:70:8e:d9:dd:1d:20:3c:63:78:f8:33:65:8e:
bb:51:82:1b:16:75:72:0a:bc:ca:af:e4:2d:de:6c:
63:d1:f5:e9:9c:2f:d6:70:c6:10:4d:17:f6:b0:f4:
0a:d6:5b:0e:af:b6:80:4c:dd:4f:49:67:88:1b:cb:
ea:5d:bc:2b:56:3c:09:d7:f6:07:ca:79:2c:f0:51:
4f:19:11:f8:19:35:ab:fd:d0:81:49:f2:b4:48:4b:
a2:83:01:93:2e:c8:58:1f:ca:ac:03:0f:e7:d8:a0:
32:55:10:40:fd:89:38:07:9b:15:64:31:47:65:91:
19:50:e8:8b:06:d0:b2:f3:a8:9e:be:a3:d5:39:f2:
2a:2c:31:fe:62:01:18:38:d7:6e:dd:22:3d:ee:c0:
59:1e:49:6d:1c:67:9c:d0:f7:11:91:59:a2:28:e7:
d5:ee:cf:c4:ad:dc:6b:86:48:2e:65:fc:53:32:52:
8b:b9:c5:e6:8d:04:a0:d3:52:7b:88:73:0a:89:07:
02:c7:ea:7e:bd:34:0c:29:f3:24:4a:9c:1a:19:f3:
2e:04:6d:b0:ab:35:14:c0:da:4d:54:dd:aa:83:4e:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:81:08:27:2B:DA:E8:6A:1E:C0:57:B1:45:19:C8:0D:88:4F:2C:AB
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/4IEIJyva6GoewFexRRnIDYhPLKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.12.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:5f:33:0e:62:c9:40:1d:e9:eb:87:63:06:22:26:d1:7b:f6:
7d:ed:27:c5:46:2e:04:bb:e9:cb:88:82:ec:ac:d0:5e:3d:db:
a5:9e:6f:7e:45:d5:3e:91:dd:45:c8:01:d4:75:1d:6f:22:69:
40:d4:72:4b:c2:56:24:5f:f9:97:cf:13:22:df:fb:1d:41:1a:
71:1a:06:f7:91:98:bf:9e:1a:d4:05:d9:73:d8:c7:7a:e9:c3:
03:bb:5f:2a:07:b8:87:b5:6c:b6:da:0f:ef:9a:8f:5d:a8:18:
3c:4e:16:c5:72:f3:a6:20:62:89:98:be:99:bf:91:fe:31:d6:
ad:fc:b7:90:5d:ec:30:6a:7b:ff:06:e5:88:8a:4c:51:76:04:
8c:f1:74:53:ac:1f:9a:ce:4e:31:21:b5:e5:56:54:00:3f:1d:
bf:52:ed:8e:2b:fa:0d:88:eb:a2:e6:87:00:d9:f4:ab:1c:28:
30:9d:b0:e9:af:d2:0a:f8:b1:33:34:92:a0:a4:18:33:1b:4e:
3f:02:98:a3:73:02:3b:6d:c9:4c:8e:e1:03:71:e2:e0:86:5d:
3e:09:58:ed:77:b4:9b:c1:cc:48:fc:b7:df:f7:04:43:7f:a5:
31:89:30:61:15:a6:ce:b3:bc:74:c4:24:31:cb:17:bb:81:28:
99:86:42:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-fra.rpki-client.org