Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/ZZvz74Sx0Mzxqw1TfoI5J5HkAxw.roa
File: ZZvz74Sx0Mzxqw1TfoI5J5HkAxw.roa (raw, json)
Hash identifier: 4Rs2PRfscpQgz0FNhohlp8KclL24JjA9688bT4koIr8=
Subject key identifier: 65:9B:F3:EF:84:B1:D0:CC:F1:AB:0D:53:7E:82:39:27:91:E4:03:1C
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0182EBEF0366A5AB015FAEF51A67FE085B07
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/ZZvz74Sx0Mzxqw1TfoI5J5HkAxw.roa
Signing time: Mon 29 Aug 2022 23:28:05 +0000
ROA not before: Mon 29 Aug 2022 23:28:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 45.85.15.0/24 maxlen: 24
45.85.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:eb:ef:03:66:a5:ab:01:5f:ae:f5:1a:67:fe:08:5b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Aug 29 23:28:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=659bf3ef84b1d0ccf1ab0d537e82392791e4031c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f6:36:8f:a9:76:8f:12:89:21:ad:ac:f9:1e:
42:ff:58:8c:a2:08:8d:65:f4:d1:be:37:f0:51:cb:
27:ee:1e:ad:6c:93:dd:dc:0a:64:14:4a:28:b8:be:
61:ef:23:ae:1c:5d:fa:3e:94:5b:6c:cb:2b:16:9e:
33:e9:22:60:dc:9d:7a:16:18:a6:3e:2b:21:fa:b9:
3b:e0:30:4a:a6:da:00:47:a2:1e:32:73:24:3e:37:
8b:07:01:e8:b5:7d:2e:80:70:3d:1f:61:16:f8:bb:
bb:2b:cd:a3:62:26:e7:87:ea:94:e3:09:b0:62:f1:
06:43:ea:0a:5c:95:8e:4b:73:72:4b:d2:0d:46:72:
0f:a0:20:25:08:6f:49:14:11:13:ea:7f:20:60:2a:
4b:8a:ce:6c:9a:bf:ef:d0:61:e0:81:40:27:0a:91:
f2:55:bb:04:69:07:db:f2:41:22:d0:46:ad:c7:3b:
23:d2:4b:7a:e1:25:51:f0:83:2a:54:7e:91:f3:59:
93:91:5b:8d:4f:4d:6e:1f:4b:c3:87:6c:73:f0:90:
72:64:45:38:38:2d:e3:63:53:66:d9:cc:6c:11:f9:
9c:42:cd:93:98:5b:54:76:b4:bd:a4:27:a2:da:2e:
98:64:36:b8:7f:5b:f2:67:61:cc:2b:e4:df:df:98:
52:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9B:F3:EF:84:B1:D0:CC:F1:AB:0D:53:7E:82:39:27:91:E4:03:1C
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/ZZvz74Sx0Mzxqw1TfoI5J5HkAxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.14.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:4e:d5:bf:81:da:6d:00:ab:49:54:43:ea:fa:4e:54:de:b6:
30:a0:24:58:fe:1f:70:59:f0:94:bc:07:9f:0c:51:27:37:40:
4f:15:5a:51:3c:83:8c:26:f7:a3:36:e8:7b:7a:73:f3:01:0d:
8a:27:da:3e:3d:72:1a:f3:77:ac:f4:1c:00:da:32:fd:91:c6:
f5:a3:46:ec:cb:fe:b4:4f:4f:e9:93:ce:ac:70:02:70:41:ef:
50:86:d8:b1:4a:6c:ae:23:aa:73:82:54:4a:9d:d1:ac:68:30:
e2:29:bf:63:e4:32:0f:22:bc:57:73:c3:ea:4c:77:31:26:51:
6d:81:21:f1:b3:14:b9:06:33:cd:e0:51:49:6e:20:32:d7:66:
9a:a6:ae:af:9f:c1:bb:65:d2:ce:ef:4e:e2:05:63:4a:27:b4:
ad:0a:c1:e3:df:21:54:bc:8d:6c:bb:10:21:89:92:fd:ce:9c:
6c:f5:31:6b:66:b9:a1:3b:de:f1:b4:aa:d6:6d:ef:63:92:17:
ae:50:b7:3a:d3:92:3c:12:b2:74:27:c2:a8:fd:78:ac:18:aa:
a7:b6:44:d5:b7:3e:dd:96:6e:45:72:a8:67:64:46:3b:44:e4:
d6:7d:ef:5a:34:99:ba:85:3e:0a:e4:11:8d:48:1b:34:b2:ba:
05:d8:79:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-fra.rpki-client.org