Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ftoapw9_KxDsF_git7ehWJ8BUIk.roa
File: ftoapw9_KxDsF_git7ehWJ8BUIk.roa (raw, json)
Hash identifier: 1wZXNjotqVCnGQRmjRxZNIxXZEYJszO0prZB7/ePTuw=
Subject key identifier: 7E:DA:1A:A7:0F:7F:2B:10:EC:17:F8:22:B7:B7:A1:58:9F:01:50:89
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09415FDB
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ftoapw9_KxDsF_git7ehWJ8BUIk.roa
Signing time: Sat 01 Jan 2022 06:00:34 +0000
ROA not before: Sat 01 Jan 2022 06:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58299
IP address blocks: 204.11.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155279323 (0x9415fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eda1aa70f7f2b10ec17f822b7b7a1589f015089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ad:96:4d:ee:57:1d:4d:6d:4f:b7:a1:7e:e5:
4c:52:cd:78:15:3f:73:72:b2:66:de:33:93:92:91:
a7:93:e8:de:f3:e5:f3:a7:f7:c0:e7:e1:86:ef:72:
85:57:c2:22:93:a4:25:4b:67:e0:d8:9f:8d:5a:da:
41:e2:a7:d0:9b:82:ca:2f:95:09:4c:cf:a7:a1:c8:
ef:16:d1:fe:3e:4c:8b:29:6d:c1:41:99:f2:c8:7d:
91:dd:d5:88:88:5f:1e:b0:e5:a0:62:8f:00:52:bf:
62:41:bc:48:dd:1d:a2:de:00:ec:b8:ee:e2:d2:98:
17:14:f3:34:8e:a0:52:bd:c0:d8:08:fb:64:7f:2d:
f3:dc:cf:3c:a0:73:b5:79:26:0e:8f:4a:b0:3d:97:
bd:20:0a:c1:f6:25:bd:f9:57:8e:9f:8b:e3:b3:74:
e4:ed:ce:41:ff:28:3b:29:d9:b9:28:e8:68:9f:b2:
cb:3e:a5:fd:3e:b8:f6:c3:a1:bc:35:7c:f9:d4:08:
5f:00:03:2b:f3:2e:79:5f:c3:87:ac:6d:06:85:ea:
63:8f:81:ce:09:50:72:fd:46:b5:c7:0a:0b:c4:20:
08:c9:74:11:16:e2:b0:6c:9a:0f:27:bd:7d:63:7e:
00:d4:27:bd:95:20:34:25:09:c5:70:d1:0a:14:5c:
cc:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DA:1A:A7:0F:7F:2B:10:EC:17:F8:22:B7:B7:A1:58:9F:01:50:89
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ftoapw9_KxDsF_git7ehWJ8BUIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.11.2.0/24
Signature Algorithm: sha256WithRSAEncryption
59:9e:91:f4:f7:39:96:13:a3:bf:77:e7:dc:e7:5b:ea:66:ca:
07:4a:7f:fe:38:c2:cc:36:db:07:49:fe:cd:09:40:94:8d:28:
05:b5:89:89:ec:e2:97:e6:1c:ae:6f:f8:04:39:05:cb:8d:e5:
e1:a8:92:d8:ab:f5:fa:4d:46:d2:79:55:17:66:c8:7b:2d:50:
b1:35:9f:02:4c:d5:1a:9c:b7:2e:99:63:48:54:aa:03:cc:4c:
46:d8:b5:43:cb:0c:eb:26:1e:64:f4:9a:e7:3a:0e:7f:48:16:
f1:8e:98:23:f9:46:af:01:92:07:18:ac:d5:1e:a8:35:ec:3d:
63:de:d9:13:38:ef:87:af:d7:6d:0e:4a:1e:83:45:71:04:d9:
b5:f9:b1:56:82:51:3e:41:cd:42:64:26:f2:27:61:3d:2d:e6:
a2:4d:c8:7a:62:51:ce:12:30:08:a9:bd:a8:f8:ce:33:b7:19:
3d:b0:87:37:b1:80:bd:1c:37:0e:06:02:5d:8d:60:6d:95:35:
a1:c9:04:a9:af:e8:13:60:49:f9:41:31:d9:bb:ca:ce:02:cd:
05:d2:1c:10:06:7e:3c:b2:64:8f:44:f0:ac:15:af:b7:23:36:
fb:cc:ef:d3:a4:f7:24:05:ad:c5:e5:c5:21:0f:5f:b2:31:43:
a9:c0:8e:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org