Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/354b3b-5d76-49d5-a56c-007c4e58527e/1/FCtAoi72FujMEoOBSBjwxNqQBX4.roa
File: FCtAoi72FujMEoOBSBjwxNqQBX4.roa (raw, json)
Hash identifier: pa1tkuTWiiSwkCWyuqx4UE9/Adl/mGLIVM4BBA2+krc=
Subject key identifier: 14:2B:40:A2:2E:F6:16:E8:CC:12:83:81:48:18:F0:C4:DA:90:05:7E
Certificate issuer: /CN=ff70868f0c2c218765fa6b53ab9af065ff339f06
Certificate serial: 01CF35
Authority key identifier: FF:70:86:8F:0C:2C:21:87:65:FA:6B:53:AB:9A:F0:65:FF:33:9F:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_3CGjwwsIYdl-mtTq5rwZf8znwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/354b3b-5d76-49d5-a56c-007c4e58527e/1/FCtAoi72FujMEoOBSBjwxNqQBX4.roa
Signing time: Tue 29 Mar 2022 15:31:40 +0000
ROA not before: Tue 29 Mar 2022 15:31:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207872
IP address blocks: 185.213.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118581 (0x1cf35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff70868f0c2c218765fa6b53ab9af065ff339f06
Validity
Not Before: Mar 29 15:31:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=142b40a22ef616e8cc1283814818f0c4da90057e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:5d:0c:d5:be:39:b7:43:51:e1:d6:e0:78:
84:4f:37:57:73:2f:86:93:1a:71:f0:f2:8d:ad:b6:
a8:3f:78:8c:98:fb:18:57:e2:ce:8b:38:b6:7f:75:
89:77:57:65:a6:84:48:a9:ea:64:c4:34:d5:30:53:
e6:09:e3:71:fc:9e:74:e5:8f:a8:d0:ea:3c:d8:cd:
5e:31:83:b9:94:5d:83:c8:23:ea:10:06:b7:fc:8c:
f0:f3:18:b1:50:42:44:74:cb:2b:ba:e3:ec:90:c2:
87:5d:d0:40:09:af:27:a5:d3:46:9b:7b:01:9b:d7:
00:d5:93:8e:d6:c7:a8:fd:32:92:a9:88:47:bb:bf:
a4:ba:52:ac:c9:7f:6f:55:71:10:72:5f:ae:2e:df:
f7:2b:2f:a3:c6:e2:53:bf:cd:f3:aa:87:88:9b:a7:
9c:db:4c:b5:af:49:b5:de:ab:6d:9b:7d:c9:2f:f7:
28:e4:e6:ad:43:00:fa:90:66:5a:2c:ac:fe:c2:d0:
ec:26:45:1e:4d:3e:de:7a:c6:1a:5c:ad:48:a4:9b:
8f:39:c9:76:b1:8f:85:e4:e7:ab:37:7e:97:a9:af:
ab:dd:14:11:34:24:5c:95:88:4b:b8:b2:31:d5:8c:
98:10:31:3a:bb:05:53:ae:ac:2a:22:ab:2f:e0:1a:
51:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:2B:40:A2:2E:F6:16:E8:CC:12:83:81:48:18:F0:C4:DA:90:05:7E
X509v3 Authority Key Identifier:
keyid:FF:70:86:8F:0C:2C:21:87:65:FA:6B:53:AB:9A:F0:65:FF:33:9F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_3CGjwwsIYdl-mtTq5rwZf8znwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/354b3b-5d76-49d5-a56c-007c4e58527e/1/FCtAoi72FujMEoOBSBjwxNqQBX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/354b3b-5d76-49d5-a56c-007c4e58527e/1/_3CGjwwsIYdl-mtTq5rwZf8znwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:31:5d:53:f3:a3:67:e7:d5:4c:3b:e8:46:e0:f6:0a:a4:1c:
83:15:39:08:cf:1d:49:49:fe:9b:c7:88:95:59:ad:7f:74:df:
a8:22:70:f6:96:5e:d9:67:29:9d:ab:e0:cd:e1:23:ac:d4:79:
32:6c:c7:f5:5a:c1:ea:37:e8:c3:ef:84:d4:65:42:67:10:22:
17:30:32:fb:37:54:53:3c:e1:c8:ea:8b:af:e2:7d:62:c6:01:
86:f2:1f:73:31:fb:28:9d:57:65:3c:23:7c:7a:d1:ee:11:e7:
b2:4c:29:54:69:c2:01:be:50:75:66:27:70:c9:81:0f:1a:82:
36:e3:4d:48:f9:23:3a:40:32:e9:04:80:ae:3c:f8:e6:22:4f:
c8:5a:6c:b3:12:08:c9:04:bb:c1:22:2f:9f:cd:f3:0c:64:c0:
e0:7e:4f:37:a0:04:59:28:ac:24:67:b4:68:52:65:a4:cf:cf:
dd:2d:ac:94:12:a2:89:02:8e:fd:d9:a0:18:1b:ff:8b:2b:13:
94:e8:e0:34:15:e6:96:cc:10:5f:82:81:88:99:1f:c1:26:5b:
cb:3d:dd:a0:0c:7d:99:0b:e4:e1:0e:60:fd:ac:2c:ef:1d:fb:
32:21:68:75:e4:e8:f8:26:72:c2:b0:9a:b2:61:15:a2:c8:e8:
49:0f:a7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net