Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hc9lYi3sAABXqEZH8Lw8_aFJ2Ac.roa
File: hc9lYi3sAABXqEZH8Lw8_aFJ2Ac.roa (raw, json)
Hash identifier: oD6mnbCC/xYuQm/5m2hxzgcUtMluuaALHqlui4oAwjc=
Subject key identifier: 85:CF:65:62:2D:EC:00:00:57:A8:46:47:F0:BC:3C:FD:A1:49:D8:07
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0795CB59
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hc9lYi3sAABXqEZH8Lw8_aFJ2Ac.roa
Signing time: Wed 02 Feb 2022 23:51:47 +0000
ROA not before: Wed 02 Feb 2022 23:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.85.13.0/24 maxlen: 24
45.85.12.0/23 maxlen: 24
193.43.142.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127257433 (0x795cb59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Feb 2 23:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85cf65622dec000057a84647f0bc3cfda149d807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:f8:93:c7:37:ae:c4:51:eb:ec:7b:02:c8:
09:f4:0c:b9:1f:d2:30:31:37:e8:12:34:84:c0:5b:
94:a0:e7:df:42:fd:99:48:14:dc:cf:c8:9f:de:de:
6b:b5:b3:11:c2:ae:32:3f:a6:dd:6e:ec:ee:fa:c3:
29:f6:7d:aa:01:15:da:3f:e2:a0:13:3e:31:4c:14:
c8:94:62:35:4b:94:ef:09:57:ca:c3:fb:38:00:3d:
2b:3c:8b:3c:a7:d0:01:ff:e7:d1:5c:76:aa:58:2f:
5c:6f:9f:00:1d:eb:aa:b1:22:3a:93:8b:53:98:31:
12:dc:32:bd:12:36:09:42:e7:d6:62:42:9a:91:0c:
97:b0:22:6d:17:7d:e4:b2:37:60:af:20:4b:68:a8:
84:c4:c2:a1:5a:86:8a:3a:ad:0c:70:11:f7:40:9f:
f0:24:7e:a5:15:96:47:74:e8:b2:be:fc:95:1c:2e:
f6:2c:b9:e7:b0:43:e4:aa:b9:1a:a3:b9:c1:f7:c0:
d4:61:64:58:4e:a6:d9:bc:38:9a:3d:e8:bb:21:b0:
f4:f0:31:72:e8:e7:8b:93:d1:d5:f9:49:b1:2f:c4:
94:35:8c:4f:95:31:4b:0d:47:97:48:20:68:9d:9d:
e1:91:89:22:47:71:85:96:3a:e4:09:0f:50:45:0d:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CF:65:62:2D:EC:00:00:57:A8:46:47:F0:BC:3C:FD:A1:49:D8:07
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/hc9lYi3sAABXqEZH8Lw8_aFJ2Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.12.0/23
193.43.142.0/23
Signature Algorithm: sha256WithRSAEncryption
08:8f:6d:27:d3:ef:aa:52:57:ea:63:85:c7:a4:a4:a4:d0:5a:
e8:b0:0b:e1:92:8d:26:bc:a6:48:33:cf:44:51:62:d2:8b:5f:
97:58:e0:a3:10:13:c5:96:bf:53:d8:77:0c:f2:64:46:1e:36:
7e:95:70:af:60:6b:b0:37:54:ce:18:9e:ad:8b:cd:00:94:12:
9e:9a:9a:4a:3c:bd:31:13:21:2d:4b:95:28:96:75:fb:58:87:
5a:0b:3c:a1:a8:bb:94:52:c8:bf:a7:c6:d9:53:6b:4d:7d:78:
83:d3:ed:ba:3e:60:0f:b6:88:82:ca:92:bb:12:db:8c:e8:33:
04:52:a9:e1:11:b9:98:d4:f6:b1:74:29:8e:bb:71:3c:d4:09:
80:99:05:84:2b:f9:23:94:67:c8:64:ee:ed:82:96:38:2c:86:
42:75:96:bc:6b:8b:4b:42:65:32:a2:fd:96:19:24:5f:c8:47:
43:0d:12:ec:b6:ec:d4:77:4b:1b:d4:27:3a:d1:9d:77:0c:4b:
03:10:68:5e:c5:e8:90:56:e5:3e:39:0e:64:16:a5:88:3f:5d:
4f:72:15:86:4a:fd:6c:b1:e2:10:f8:fe:20:88:51:2d:ca:a3:
d6:e0:94:2e:59:9d:91:fe:76:e4:68:0c:86:cc:93:48:46:94:
f4:c2:9e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:49 2025 by rpki-client