Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/k2A4Yk2RF2UtFYcrLeRmdWMv4ZE.roa
File: k2A4Yk2RF2UtFYcrLeRmdWMv4ZE.roa (raw, json)
Hash identifier: weZHGwn0oq74Ld/2JhJhERGiFTql1QOlDg9IW1AntXE=
Subject key identifier: 93:60:38:62:4D:91:17:65:2D:15:87:2B:2D:E4:66:75:63:2F:E1:91
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0747CC3E
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/k2A4Yk2RF2UtFYcrLeRmdWMv4ZE.roa
Signing time: Sat 01 Jan 2022 12:01:26 +0000
ROA not before: Sat 01 Jan 2022 12:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.85.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122145854 (0x747cc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 1 12:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=936038624d9117652d15872b2de46675632fe191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4c:c2:d6:57:8c:59:cd:61:26:ef:6d:f3:04:
43:00:73:bd:13:09:ef:fd:6e:2f:f1:04:12:75:04:
e9:47:f2:ac:50:50:f4:67:64:1a:5e:b7:fe:1e:37:
d5:4a:76:4e:cb:c5:5d:ab:70:4e:78:4f:e9:49:64:
80:32:12:4b:b2:1a:83:d4:db:76:84:ae:86:04:53:
f4:60:3c:65:29:0d:e7:24:35:87:3a:d5:19:a9:43:
7a:fe:ab:30:5d:32:fb:5b:18:54:ef:eb:9a:2a:6e:
2c:de:9a:f8:f8:bd:b2:12:f4:b5:8a:2d:95:e1:2a:
87:33:a5:bc:0b:b6:7e:69:a6:ad:bf:56:a3:33:32:
2c:9e:d9:00:7d:ed:9f:c2:87:5b:c1:95:92:9c:75:
e0:40:f5:ba:4a:a2:c0:db:d8:8a:a9:a7:04:b8:8d:
5a:7d:a3:81:8e:3a:12:19:d4:a3:33:0a:12:d5:7b:
33:a2:9d:76:fd:15:1f:0f:a6:be:ba:4c:3e:61:39:
45:93:a9:d1:93:fd:14:b7:0d:4d:29:f5:59:9e:25:
a9:7a:bb:d7:f0:25:32:9b:a3:a3:c2:2c:e2:db:be:
8c:c7:6b:1d:60:21:66:6f:2c:81:94:6a:70:e0:dd:
7b:67:37:fa:5d:d2:f1:d3:ec:2e:04:29:52:2a:c8:
48:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:60:38:62:4D:91:17:65:2D:15:87:2B:2D:E4:66:75:63:2F:E1:91
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/k2A4Yk2RF2UtFYcrLeRmdWMv4ZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e2:b8:04:66:e4:b5:83:f8:1c:8d:fe:5b:9e:f2:3e:97:84:
7e:47:75:4f:80:d3:47:ba:cb:37:44:bf:c6:fe:ea:36:75:8b:
df:46:45:b9:e6:7d:9b:9d:21:b7:37:73:2b:04:4d:47:f4:7c:
dc:58:14:36:b5:1d:47:9e:a7:0f:ec:d9:e5:53:b8:88:b5:a2:
6b:10:df:b4:79:ac:71:93:4e:38:ec:ec:0f:f7:cf:11:06:fa:
c4:7f:1d:02:2d:25:c8:64:e8:c9:0d:7a:30:8a:ea:e2:c2:e1:
bd:37:41:87:0f:69:4e:32:75:a4:9f:0b:90:af:ae:55:3d:4b:
be:ef:3d:c2:97:1b:72:b2:d4:45:24:6e:f8:45:33:60:8f:2c:
cf:af:59:40:06:fa:6a:59:a5:d4:1c:57:e1:23:15:4f:5e:a1:
01:28:3c:d9:38:bf:ef:1e:a7:09:62:df:6f:51:56:e5:45:a9:
6d:eb:d3:40:87:37:33:98:0d:ec:ae:ee:7d:16:1b:a0:59:85:
60:10:57:70:dd:7b:ba:4a:1b:ce:3a:7f:c3:ac:31:a0:74:a8:
6c:b6:53:3e:0c:11:7a:41:d3:06:0e:92:fe:76:79:3f:1b:be:
fe:b9:6e:5c:59:f5:6a:f2:a5:98:98:11:43:47:11:2a:b9:1d:
b4:e1:7a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-fra.rpki-client.org