Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/rMGWHmkFgwPIKtqf_piNoXo1sX8.roa
File: rMGWHmkFgwPIKtqf_piNoXo1sX8.roa (raw, json)
Hash identifier: Y6gH2B2HfNGZHymZQaFSeXpqd++G1yqiC7VIa9IJ9vM=
Subject key identifier: AC:C1:96:1E:69:05:83:03:C8:2A:DA:9F:FE:98:8D:A1:7A:35:B1:7F
Certificate issuer: /CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Certificate serial: 0AA557D7
Authority key identifier: FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/rMGWHmkFgwPIKtqf_piNoXo1sX8.roa
Signing time: Sat 01 Jan 2022 16:05:43 +0000
ROA not before: Sat 01 Jan 2022 16:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 194.60.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178608087 (0xaa557d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc2a6347b531e30f55551d0b6edf60dc8b808b91
Validity
Not Before: Jan 1 16:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acc1961e69058303c82ada9ffe988da17a35b17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:50:7f:e1:15:4d:40:58:41:a8:bc:62:12:a2:
4e:22:28:21:cd:68:7c:a9:d7:af:2d:04:23:50:bd:
cb:e0:c5:4d:d2:8f:4c:05:a9:08:65:33:9a:4c:fd:
0d:29:d2:fc:58:f1:26:be:fc:9f:ad:fb:8b:f6:47:
f4:9d:48:7e:cf:db:f8:25:da:94:75:3a:71:f9:ee:
24:09:16:33:bf:55:53:fd:5c:38:d6:d4:64:eb:33:
6e:e9:18:b6:77:2f:b5:e3:41:0d:eb:f2:1c:a6:c8:
0a:61:e2:cf:1d:ff:a5:f1:57:b8:c8:79:f7:81:da:
b7:d0:61:70:fe:a3:d7:0d:56:31:9f:00:38:bd:f1:
a0:7f:6c:a3:22:12:c0:e0:02:f0:68:a3:8f:52:8d:
1b:58:0f:af:a2:67:a6:65:d1:1d:c6:e9:1c:03:36:
91:83:70:36:8b:29:6c:32:5e:05:7f:66:ec:14:87:
d4:c4:ed:1c:a2:18:88:d5:e6:f6:8f:7c:f7:dc:b0:
f1:67:74:64:cc:6e:f1:34:45:4a:07:7a:03:d7:8e:
5f:b9:50:66:39:53:89:d9:83:f1:29:c6:67:ad:cc:
69:b1:78:ee:0d:1e:00:98:87:b0:74:50:26:dc:47:
48:79:c4:a4:51:96:06:2d:24:d6:47:49:42:83:01:
43:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C1:96:1E:69:05:83:03:C8:2A:DA:9F:FE:98:8D:A1:7A:35:B1:7F
X509v3 Authority Key Identifier:
keyid:FC:2A:63:47:B5:31:E3:0F:55:55:1D:0B:6E:DF:60:DC:8B:80:8B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/rMGWHmkFgwPIKtqf_piNoXo1sX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3545e6-8cde-4533-9605-faf2b9f04def/1/_CpjR7Ux4w9VVR0Lbt9g3IuAi5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.212.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:ce:c2:83:35:c6:79:4a:cb:fd:b8:2a:cc:5a:5a:f2:54:25:
3c:4c:30:ae:cf:28:c4:d1:25:f4:77:66:3d:df:16:a0:ba:3e:
80:07:64:28:83:15:89:e0:00:e6:10:71:04:01:49:83:8d:45:
1f:1f:37:72:fb:d0:ee:9b:59:d6:39:ac:a5:dc:82:77:c7:ee:
f7:bc:9b:4e:b2:04:f2:5d:70:00:0a:3b:1a:d0:1e:fb:54:ea:
08:e4:6d:87:0f:4f:1a:7e:82:e2:f0:da:92:de:00:3a:29:41:
a4:e2:6c:06:75:8d:69:1b:c9:bd:70:08:a9:51:3e:ad:25:7a:
1c:18:34:ed:d8:36:0e:fa:00:59:5b:51:23:12:94:cc:0e:4c:
5a:5e:05:d0:12:d8:87:3a:bb:78:6b:f4:ee:68:8f:24:f1:0f:
8d:18:df:87:87:1c:f8:6e:b5:ed:70:9d:9a:4b:5f:e1:1e:3f:
8a:16:c8:89:c8:27:c3:27:e7:fb:cb:f9:80:25:71:ec:af:49:
f0:2c:9d:1c:5a:1a:b1:ad:ee:46:3d:8a:7c:29:56:8b:47:d3:
68:9b:0d:6c:15:6f:6b:17:cb:16:5d:d0:01:08:8d:3d:cd:7f:
8e:58:ca:9e:c7:b6:f0:74:57:ba:e1:59:fc:ce:66:15:17:ec:
03:ca:35:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:27 2024 by rpki-client on console-fra.rpki-client.org