Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/7nYMv7npZ3CgWerI3FCJzL99Qz4.roa
File: 7nYMv7npZ3CgWerI3FCJzL99Qz4.roa (raw, json)
Hash identifier: N5ImDZZUVEb0WY4y0cAQS73eH8qhWbMQGvpvtrvMSes=
Subject key identifier: EE:76:0C:BF:B9:E9:67:70:A0:59:EA:C8:DC:50:89:CC:BF:7D:43:3E
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 07F7318C
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/7nYMv7npZ3CgWerI3FCJzL99Qz4.roa
Signing time: Wed 16 Mar 2022 17:02:03 +0000
ROA not before: Wed 16 Mar 2022 17:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.85.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133640588 (0x7f7318c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Mar 16 17:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee760cbfb9e96770a059eac8dc5089ccbf7d433e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:bd:01:24:fd:2e:2f:b8:25:81:61:c3:42:02:
7d:60:68:92:0d:d5:17:2a:ef:a8:17:e4:ae:31:0c:
9d:7c:e6:bb:66:dc:2d:f4:59:4e:98:37:c4:c0:04:
ee:3c:aa:f9:06:30:2d:e7:9e:89:eb:c2:12:ac:7e:
93:f4:02:c8:30:0e:6e:0f:30:4b:81:9b:46:42:f0:
49:91:34:28:b5:3d:f5:ce:e4:b6:4c:3c:36:88:4a:
77:c7:f9:34:d5:f1:0e:5e:1e:bc:f7:2b:8b:1b:44:
ca:d4:47:01:39:0e:6d:ee:6d:cb:b4:f7:ec:77:42:
f9:e9:52:1f:41:e4:b0:eb:55:a5:a3:c9:e1:12:2f:
2c:09:d8:52:6e:68:0b:0a:81:84:35:b0:3b:92:91:
03:44:4c:18:ea:26:b2:6a:05:d1:d8:ba:e3:77:b5:
7e:ef:c3:6d:1e:0e:20:29:e8:74:db:d8:c3:56:05:
f9:be:e3:35:54:96:41:99:f7:da:0d:11:6a:79:d5:
71:63:34:64:26:39:3c:67:02:cd:51:e7:cd:5b:d3:
c4:82:a0:1f:9b:32:67:71:ca:55:47:db:70:eb:38:
2d:1b:ac:9f:82:6b:13:e9:88:b2:0f:b1:89:0c:0a:
aa:2c:4e:bd:d8:68:3c:07:f0:4c:f0:0a:6e:44:8c:
78:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:76:0C:BF:B9:E9:67:70:A0:59:EA:C8:DC:50:89:CC:BF:7D:43:3E
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/7nYMv7npZ3CgWerI3FCJzL99Qz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.14.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d9:4a:52:29:ce:fd:94:b2:97:35:76:1e:41:fb:ca:5d:99:
39:36:8e:5d:07:fe:21:5e:c4:a1:28:64:32:c9:20:4d:d4:fd:
c9:e0:ad:5c:f7:c9:f4:19:2b:74:ee:65:e2:32:b6:9c:dc:81:
8c:b1:50:b0:be:c5:d5:a1:b6:9d:fa:77:03:4f:ec:c5:0d:e9:
84:5a:e9:c5:60:10:87:e1:da:c5:ed:b2:0b:fe:bc:19:2e:0b:
d3:3a:e6:7f:e8:e7:13:f8:9a:e5:2d:38:34:f5:4c:36:b3:f4:
df:07:82:2c:ea:98:1a:79:e8:a5:d4:cd:e1:27:ab:f7:7c:a8:
1f:95:44:12:af:57:a0:46:bc:28:9a:a0:7e:e6:f0:2a:70:c1:
52:2c:ca:02:bc:bf:e8:03:c0:e9:49:4c:bb:38:be:ce:87:a3:
ba:84:3d:c5:8f:cc:a4:dc:5f:f4:69:b0:be:f4:b8:7d:bd:91:
54:39:58:f4:55:bf:91:51:e6:4b:a1:e6:4e:7c:3b:5f:7a:97:
68:e4:36:2a:cd:f1:cd:95:6f:f8:f5:52:30:d1:8c:f5:a9:86:
28:db:d5:22:3c:d2:cc:e7:8e:96:d0:2d:c4:47:e6:31:59:7a:
ad:b5:e8:20:82:06:ed:97:bc:f3:db:de:91:77:0d:22:f8:bd:
86:87:af:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-fra.rpki-client.org