Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/fsmlShfiuLfOIuhgPVjFqFqQrzE.roa
File: fsmlShfiuLfOIuhgPVjFqFqQrzE.roa (raw, json)
Hash identifier: UboB4pDzfvo0tI6/6W0tKqtPlDWqnjT74SkRU8tnjqc=
Subject key identifier: 7E:C9:A5:4A:17:E2:B8:B7:CE:22:E8:60:3D:58:C5:A8:5A:90:AF:31
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 0FEA8221
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/fsmlShfiuLfOIuhgPVjFqFqQrzE.roa
Signing time: Sat 01 Jan 2022 07:00:29 +0000
ROA not before: Sat 01 Jan 2022 07:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 789
IP address blocks: 134.158.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267026977 (0xfea8221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Jan 1 07:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ec9a54a17e2b8b7ce22e8603d58c5a85a90af31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:96:3b:63:1a:72:05:e9:14:dd:59:52:29:
38:c9:63:b5:1c:c9:2e:cd:ed:6b:60:6b:fd:ef:9e:
26:d2:f0:d2:d0:01:54:3b:1e:aa:9b:7e:94:37:39:
ad:ca:94:4e:f9:4c:e3:92:6f:64:a0:8a:47:13:24:
e2:2f:df:20:96:6e:69:ab:46:54:80:be:1d:73:54:
db:a0:7b:47:f5:db:2d:fc:17:4b:58:ae:6b:52:8b:
0d:41:ab:aa:00:2f:61:f6:f5:84:98:e2:27:c9:ed:
f9:64:d5:ca:3f:ea:13:fb:46:e1:f9:1e:e8:5d:90:
5d:3a:15:a0:85:9f:d4:58:5c:21:a3:a1:16:03:5d:
d7:ce:33:9c:df:6a:cc:e9:af:19:8e:e3:c9:5c:08:
08:4b:77:6d:6d:0d:67:18:1e:16:e5:f7:09:ff:0b:
dd:64:cc:b8:c1:71:82:ca:01:3c:3b:70:cd:95:47:
97:7f:58:71:e7:eb:74:26:16:70:5a:f8:af:db:40:
5f:21:bc:60:1b:49:4c:2d:dd:1e:2c:20:ad:27:ba:
00:89:e2:0e:00:ff:f9:f7:4b:7b:24:57:43:30:12:
d6:cf:92:fd:88:3a:e7:16:6c:94:d4:b7:dc:1a:8e:
90:85:b7:15:7a:93:25:54:5e:d7:11:e8:a5:2c:b1:
d3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C9:A5:4A:17:E2:B8:B7:CE:22:E8:60:3D:58:C5:A8:5A:90:AF:31
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/fsmlShfiuLfOIuhgPVjFqFqQrzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.158.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:69:b1:60:87:cd:40:51:13:21:59:d9:98:cf:8e:44:93:2e:
d0:4e:2b:13:f6:d3:75:0c:29:7c:3d:da:5b:9d:e5:b3:29:6e:
b2:d1:cf:83:3c:b6:cf:3c:a8:d1:62:3a:fa:b3:ae:98:43:37:
08:45:46:f9:1e:f4:6d:5b:4c:33:51:d9:af:27:05:06:55:1b:
a0:09:00:a2:0a:e0:98:a3:22:e0:b4:56:36:a0:fe:13:62:4a:
84:43:52:77:0b:5e:24:66:1a:b6:5b:0f:c4:2e:e9:8f:e3:e8:
b1:f3:07:f8:e6:8e:b0:6a:35:d3:ca:2c:6a:fc:3f:7a:7c:3d:
0a:83:fe:fb:55:18:0c:67:66:81:cd:b6:d3:1d:40:2b:20:42:
63:9f:3a:29:22:c3:e3:cd:fa:6a:03:6e:10:85:42:ea:86:8c:
f4:ff:75:94:b9:b9:6a:77:72:2d:4b:34:89:05:3c:10:2c:9c:
93:7d:94:5f:c0:c5:7e:18:82:2a:ec:94:8d:c2:90:91:16:52:
2c:7d:bb:82:4f:22:6f:18:bb:59:82:01:e4:17:75:69:25:5d:
c1:b3:a2:ea:69:aa:e8:2c:d7:a5:53:99:f3:a6:ff:b5:07:d0:
03:b0:8f:85:a8:71:b1:fe:79:72:1d:54:93:ae:df:43:a6:81:
a4:09:de:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:01 2024 by rpki-client on console-ams.rpki-client.org