Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RFeAqLmFoNaYU0a1GhHRlzt4euc.roa
File: RFeAqLmFoNaYU0a1GhHRlzt4euc.roa (raw, json)
Hash identifier: VlVVPzWcOEkSzwQBK5GvEJUMhMpjQZHDPtJ5rhC5RlI=
Subject key identifier: 44:57:80:A8:B9:85:A0:D6:98:53:46:B5:1A:11:D1:97:3B:78:7A:E7
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018535463650898AE5679D5130093309F918
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RFeAqLmFoNaYU0a1GhHRlzt4euc.roa
Signing time: Wed 21 Dec 2022 15:21:11 +0000
ROA not before: Wed 21 Dec 2022 15:21:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 81.22.40.0/22 maxlen: 24
185.179.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:46:36:50:89:8a:e5:67:9d:51:30:09:33:09:f9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 21 15:21:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=445780a8b985a0d6985346b51a11d1973b787ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:27:a6:15:3d:b9:1a:65:af:a4:a9:4a:b1:
10:0b:aa:fe:1b:7f:5d:3d:4c:1b:9f:bd:c8:3d:32:
2e:d4:22:e8:5f:40:73:6e:79:5a:34:b1:e8:b4:d6:
1a:20:a6:bb:02:44:45:d6:ca:97:6a:37:02:d0:69:
e2:24:f7:f6:d8:ba:fd:06:83:87:99:a1:5a:c0:95:
98:38:0c:19:36:f0:01:8e:10:ed:b4:f2:94:8b:fc:
2d:2c:5f:84:6c:96:9c:08:c2:ff:26:81:b3:e7:e6:
a8:f1:ab:02:18:fc:7d:48:9a:a2:4f:83:59:5f:c0:
1e:a9:a5:c3:b5:84:41:38:e2:3b:e3:5e:fc:ed:fa:
2b:05:47:9f:98:87:1a:e1:56:12:ba:e9:04:36:86:
6a:f9:4d:64:5c:01:23:e1:c3:90:f6:a9:0c:39:50:
78:45:2a:1b:54:e6:b6:ab:9b:56:e3:dc:72:60:76:
38:10:50:43:42:b9:d3:fd:d7:02:ae:08:97:81:db:
0e:cf:c4:0a:17:bc:ee:4c:85:f7:80:20:68:0d:93:
a9:29:eb:20:68:01:c9:e4:1f:86:96:8e:c4:49:72:
d5:11:d6:4d:d8:c6:3c:93:65:ea:48:c7:cf:d5:b3:
db:e4:56:85:89:93:40:89:d7:45:a3:13:f3:c7:44:
c3:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:57:80:A8:B9:85:A0:D6:98:53:46:B5:1A:11:D1:97:3B:78:7A:E7
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RFeAqLmFoNaYU0a1GhHRlzt4euc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.40.0/22
185.179.244.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:15:57:4d:36:8e:c3:b9:f6:62:91:03:06:52:2c:b7:ae:a4:
96:93:1e:f8:bb:f4:4b:d5:d6:db:dc:77:18:11:74:d2:33:72:
d9:e9:18:c3:3a:76:33:36:19:5b:f0:c4:c0:5a:88:0f:6c:18:
a0:41:ed:ed:4f:41:f3:7c:ed:00:0c:12:14:ed:5a:27:ef:c5:
a8:b9:ef:18:21:b9:2b:ee:62:a0:c7:e4:70:17:09:b1:80:42:
70:19:76:e4:0d:5c:76:3f:42:ad:c3:c7:f4:ce:3f:93:72:d2:
fd:2f:c6:63:9b:35:b2:4b:79:3b:85:45:c8:21:94:83:39:a2:
f2:91:0a:4c:28:b9:82:3c:fe:4b:0d:6f:6f:15:62:dd:70:4b:
0d:29:ad:5a:71:44:da:d2:16:04:43:e8:e3:04:aa:60:af:59:
56:14:75:f7:d4:99:2a:de:73:70:19:a5:84:1f:f0:d1:00:5c:
b8:e2:3d:87:20:93:4d:3d:b7:e7:d4:4a:a9:d8:6a:74:30:2a:
91:ad:35:cb:94:4d:21:dc:c9:0b:88:e4:33:9f:32:72:c7:80:
a8:47:4a:1c:a5:4f:a9:c0:53:ff:ac:6a:ce:ad:4c:26:3c:ce:
c2:ed:ef:d3:97:7a:02:9c:6c:f3:df:8b:d0:cd:92:da:99:41:
84:5f:59:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:11 2023 by rpki-client on console.sobornost.net