Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/063ebe-67f0-40e9-bbff-a409ca37a3ea/1/FKMvcV0uZuXN7HpQm9k5swT3dMc.roa
File: FKMvcV0uZuXN7HpQm9k5swT3dMc.roa (raw, json)
Hash identifier: smtaf/j2dP2TNmNSCkK3MwcwJ8w2ennLqr/lKvGf5Ks=
Subject key identifier: 14:A3:2F:71:5D:2E:66:E5:CD:EC:7A:50:9B:D9:39:B3:04:F7:74:C7
Certificate issuer: /CN=e7e432a24994e579eb2499a1f6f34c652118e344
Certificate serial: 058E80F1
Authority key identifier: E7:E4:32:A2:49:94:E5:79:EB:24:99:A1:F6:F3:4C:65:21:18:E3:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-QyokmU5XnrJJmh9vNMZSEY40Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/063ebe-67f0-40e9-bbff-a409ca37a3ea/1/FKMvcV0uZuXN7HpQm9k5swT3dMc.roa
Signing time: Sat 01 Jan 2022 15:54:57 +0000
ROA not before: Sat 01 Jan 2022 15:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204096
IP address blocks: 185.114.232.0/22 maxlen: 24
2a06:7280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93225201 (0x58e80f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7e432a24994e579eb2499a1f6f34c652118e344
Validity
Not Before: Jan 1 15:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14a32f715d2e66e5cdec7a509bd939b304f774c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:24:5c:c3:be:8e:41:c1:a8:af:93:b9:3a:
4c:ec:28:9e:5e:ab:8c:5a:ee:25:e7:7f:f2:ea:0b:
24:5a:1a:9e:02:87:04:0f:38:e3:98:4a:a5:26:19:
ee:5e:c7:06:49:27:99:28:02:ba:8d:9f:cf:a0:a7:
0b:88:77:b2:6d:c7:65:05:1d:4e:6c:f2:ff:5d:37:
b7:4c:5d:5f:4a:b1:c1:01:31:23:30:e2:9e:ce:d9:
04:dc:bf:91:89:2c:c8:0f:40:6b:85:54:31:a6:c0:
b2:27:89:53:71:c8:81:1b:6c:d4:d6:fa:0a:8a:9d:
8c:b2:59:e0:79:7b:4f:35:a5:98:3a:21:e7:be:99:
a3:35:00:d2:14:2c:c2:16:c6:fd:cb:64:65:89:09:
47:94:5e:63:b4:fd:7f:2a:87:a4:3b:7e:fe:7a:7a:
2f:90:10:51:9f:d8:8f:71:dc:af:d6:ef:db:fe:c7:
f9:9a:64:29:22:93:73:af:99:88:ad:b3:6a:d0:87:
44:82:11:18:fb:57:ed:46:d2:16:38:0f:96:a5:f5:
73:7c:fb:64:fd:13:7c:4b:df:db:ec:49:01:59:dc:
b3:7c:bc:23:9c:3b:0b:22:72:38:a7:dd:52:7c:75:
f4:9f:25:a1:f8:a0:e3:45:76:78:7b:8c:c8:ca:6c:
be:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A3:2F:71:5D:2E:66:E5:CD:EC:7A:50:9B:D9:39:B3:04:F7:74:C7
X509v3 Authority Key Identifier:
keyid:E7:E4:32:A2:49:94:E5:79:EB:24:99:A1:F6:F3:4C:65:21:18:E3:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-QyokmU5XnrJJmh9vNMZSEY40Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/063ebe-67f0-40e9-bbff-a409ca37a3ea/1/FKMvcV0uZuXN7HpQm9k5swT3dMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/063ebe-67f0-40e9-bbff-a409ca37a3ea/1/5-QyokmU5XnrJJmh9vNMZSEY40Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.232.0/22
IPv6:
2a06:7280::/29
Signature Algorithm: sha256WithRSAEncryption
01:d3:b8:5c:d6:14:2a:1c:74:84:1c:e3:af:90:33:ac:01:49:
86:82:28:b2:e9:64:59:0f:3a:b5:81:39:63:ea:62:80:aa:99:
08:93:b6:8f:ec:8b:dd:13:3b:83:2b:59:65:ca:20:bf:56:0d:
5d:92:e8:37:f2:e3:c0:d0:14:b4:d5:76:3c:ac:d1:7b:d4:fd:
c2:7c:50:ec:75:67:31:50:91:3d:f3:b6:41:d9:5b:45:d1:4c:
d1:f4:1d:a4:8a:cb:86:19:1b:17:a7:12:8d:ff:5c:a9:ed:bd:
b9:99:1b:54:52:cb:b6:fc:d0:05:12:78:a6:97:b8:2a:0d:90:
98:ca:2b:46:9c:11:75:12:88:ce:f0:bf:e4:92:6b:7a:4f:84:
44:2b:f2:6d:f2:4c:f2:40:17:61:be:03:ac:e9:38:76:dc:ce:
98:5c:64:6f:60:1f:e7:f7:96:96:bb:67:35:c0:5d:97:a1:a3:
3c:e9:41:1d:a3:ba:e0:54:e1:e1:ee:25:eb:e2:28:60:d2:7c:
f6:c6:4f:64:12:ac:d8:fb:8b:15:01:b4:d4:f1:dc:ff:c2:9a:
bd:d5:13:13:44:96:d1:c4:20:da:58:59:41:b4:bb:f4:85:20:
6f:99:ce:06:de:81:e5:1e:36:e2:28:5b:10:0d:17:22:10:7e:
a3:17:15:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:38 2024 by rpki-client on console-fra.rpki-client.org