Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/U4PE_KM1WyUf1Io7uiuREz93kiE.roa
File: U4PE_KM1WyUf1Io7uiuREz93kiE.roa (raw, json)
Hash identifier: sy2O+e8fkevBHGFanxjBk5NUTWWlQbE5E6Jc756z1u8=
Subject key identifier: 53:83:C4:FC:A3:35:5B:25:1F:D4:8A:3B:BA:2B:91:13:3F:77:92:21
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0743B55C
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/U4PE_KM1WyUf1Io7uiuREz93kiE.roa
Signing time: Sat 01 Jan 2022 12:01:25 +0000
ROA not before: Sat 01 Jan 2022 12:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.85.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121877852 (0x743b55c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 1 12:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5383c4fca3355b251fd48a3bba2b91133f779221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:19:45:af:7d:e0:ce:50:4c:54:ce:ad:ae:25:
fc:24:b4:84:1d:10:65:8c:fb:3b:c3:bd:33:63:98:
3c:3a:c9:29:a8:02:ce:59:30:b6:8b:6a:53:84:5b:
c4:03:51:0a:a4:a1:8d:f9:27:36:33:1d:e0:9e:d9:
c6:c6:98:06:f2:43:d5:fd:e5:8d:6c:fc:e4:3d:b3:
54:36:38:b6:ab:09:01:cd:91:c6:71:e2:19:fd:cf:
74:75:a4:b7:2e:6e:d6:e5:1f:7e:36:cd:a0:54:3b:
aa:ca:34:97:c8:2a:66:06:15:12:38:95:db:18:01:
ce:9d:93:ec:17:e1:fc:5a:bc:ca:04:1d:b8:91:07:
22:8a:ed:00:79:ad:6d:2f:0d:29:57:a1:88:a3:f4:
63:b4:51:ef:c9:12:dc:7d:80:2d:00:35:e6:b2:a4:
d5:03:e6:07:ab:6e:37:44:11:e2:6a:d0:05:a3:4f:
37:5b:05:bd:d5:b5:24:6f:48:00:e3:bc:f7:45:5f:
2f:69:08:c1:8e:15:93:5f:21:11:12:67:2c:b1:d5:
3b:1d:98:bf:e6:6b:c1:b8:c9:e5:5f:d8:ef:87:d1:
e6:86:9a:43:9d:c3:8c:b6:62:85:8e:95:1a:5c:04:
fe:61:3b:f2:ce:d6:7b:5a:4b:04:aa:bc:c6:26:41:
eb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:83:C4:FC:A3:35:5B:25:1F:D4:8A:3B:BA:2B:91:13:3F:77:92:21
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/U4PE_KM1WyUf1Io7uiuREz93kiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:9a:16:ef:02:3f:cd:c4:94:2f:f3:b4:4e:c1:1e:0d:17:34:
cf:46:28:10:bc:17:dc:fc:d0:da:d8:a2:d7:13:4f:e6:68:48:
7a:4d:32:93:72:9c:c4:92:21:de:b3:e5:b9:a2:26:48:9d:6c:
57:7b:2b:5e:35:14:8d:75:6f:4b:2a:a0:a4:c9:64:19:53:37:
06:19:73:f3:bd:09:ee:fc:ba:bf:f3:e5:9a:4d:07:3b:01:78:
35:cd:2a:76:92:62:16:33:aa:77:95:98:38:45:e2:e3:32:88:
29:d6:eb:b2:71:28:0d:2d:f9:5c:a2:04:8f:7e:33:d9:67:44:
45:af:79:37:74:25:a8:0e:e6:85:af:04:9b:00:6e:80:6e:8c:
07:26:4c:d0:04:4a:a4:7d:e7:55:40:e2:76:9b:93:61:10:02:
ec:f0:c6:58:9a:53:ca:17:ce:86:fb:69:ad:0b:b4:07:79:a2:
c8:c5:d9:69:0e:44:88:b6:03:c9:b7:0b:a8:f6:53:fb:f3:39:
04:55:6c:1d:ad:55:ce:40:9d:ad:56:73:df:1a:8c:c7:ab:e5:
80:71:92:e6:c4:f9:14:ca:0e:32:c3:f1:4b:3f:dc:02:e3:17:
6e:be:9a:3e:da:83:12:eb:5f:6d:1f:bd:bf:67:58:e3:25:68:
5b:a4:00:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-fra.rpki-client.org