Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/pm11IRuSELcy-ZGmfCGLHiJmixc.roa
File: pm11IRuSELcy-ZGmfCGLHiJmixc.roa (raw, json)
Hash identifier: ZbrsXvG58PZWrtoCbToq3zLIlxzqHdj1t9NG/kld6gw=
Subject key identifier: A6:6D:75:21:1B:92:10:B7:32:F9:91:A6:7C:21:8B:1E:22:66:8B:17
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A27A915
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/pm11IRuSELcy-ZGmfCGLHiJmixc.roa
Signing time: Thu 28 Apr 2022 07:53:11 +0000
ROA not before: Thu 28 Apr 2022 07:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206645
IP address blocks: 85.14.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170371349 (0xa27a915)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a66d75211b9210b732f991a67c218b1e22668b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b6:09:50:16:2c:c1:fb:ea:65:e3:54:3d:52:
cd:a0:38:b5:4d:b7:13:3a:41:f6:4d:69:03:71:5c:
88:01:e4:b9:c4:ea:53:50:12:a9:06:63:78:f9:97:
75:22:19:45:79:55:79:06:28:1c:bc:52:44:51:ad:
09:90:0c:aa:3d:be:3d:8e:d0:16:3c:4f:fd:e7:9f:
ea:f2:ed:bf:46:42:5e:17:18:c8:eb:90:31:8e:8b:
53:27:d2:9b:e5:68:5c:eb:77:b6:59:08:a4:49:32:
bf:31:06:ff:4f:d1:61:ee:ec:3a:ed:f5:04:2a:23:
a0:94:a1:5a:67:6d:3c:e5:01:a3:ef:78:b8:fc:87:
18:4e:27:88:3c:1f:99:7d:d1:ed:5c:6d:dd:f9:c0:
05:67:2a:84:ee:cf:9b:64:59:6f:7a:d5:64:0c:42:
62:f8:62:0b:bf:11:1a:5c:39:b6:07:4d:da:2a:12:
ef:a7:a1:8c:ef:ae:d2:1e:81:55:bd:08:56:0a:ee:
60:36:46:07:4d:67:b0:9b:3f:44:2b:6b:0c:89:fd:
14:c3:12:1a:5e:b1:0f:23:53:98:a1:88:e2:79:ee:
52:46:18:5d:44:32:0f:f0:9b:68:05:45:3c:f1:13:
c1:39:23:fa:f2:ec:33:3c:49:ad:93:84:72:72:6d:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6D:75:21:1B:92:10:B7:32:F9:91:A6:7C:21:8B:1E:22:66:8B:17
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/pm11IRuSELcy-ZGmfCGLHiJmixc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d5:ed:d4:5d:d6:1b:95:43:ec:ab:d6:8c:e0:74:2b:01:74:
31:66:30:41:e5:48:9a:63:25:64:c5:03:c3:61:85:ca:5a:e2:
3d:c9:da:09:16:06:64:55:8c:ac:7a:35:f6:0d:86:42:3f:54:
d1:d7:e7:e5:36:1c:de:39:ea:c8:44:9b:f4:d3:fc:aa:06:c7:
96:ca:de:4c:77:8f:b8:0c:b7:6d:80:5c:6d:d8:d6:b5:f4:a6:
0b:f5:be:8a:6e:38:2f:b4:69:01:8f:98:f8:e7:f7:aa:1d:0a:
b0:c4:4d:08:3e:75:2e:da:54:2a:fb:f2:92:de:d6:e6:e8:71:
09:06:df:67:28:ef:b7:b9:c7:c3:9f:5e:72:9f:0a:92:a5:85:
52:61:b9:53:71:f8:68:dd:b2:5b:37:33:8e:fb:6b:df:3c:59:
6d:32:91:a8:28:8b:58:a9:b7:d6:af:32:9e:7b:af:87:06:4f:
01:e2:a0:8c:50:99:da:5d:2c:1e:1f:d3:5a:aa:49:9c:21:ef:
55:c2:45:74:f8:3f:44:23:ba:02:30:64:15:b4:6d:23:37:7a:
a4:62:1f:ea:3f:16:f2:7e:21:cc:90:8e:d8:7a:f2:74:30:fb:
e4:3b:4b:60:72:cc:9e:b2:66:4a:9e:33:2e:04:42:0f:6e:75:
96:4a:14:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net