Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/fu1DfsPRzOzRh6jNXPT1hLb5scE.roa
File: fu1DfsPRzOzRh6jNXPT1hLb5scE.roa (raw, json)
Hash identifier: IZWBKDFGG2oeL24eRydwU/IrCuLFKrN22WP2EvjeXKk=
Subject key identifier: 7E:ED:43:7E:C3:D1:CC:EC:D1:87:A8:CD:5C:F4:F5:84:B6:F9:B1:C1
Certificate issuer: /CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Certificate serial: 0754782C
Authority key identifier: 97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/fu1DfsPRzOzRh6jNXPT1hLb5scE.roa
Signing time: Mon 07 Mar 2022 19:36:52 +0000
ROA not before: Mon 07 Mar 2022 19:36:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213250
IP address blocks: 91.200.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122976300 (0x754782c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Validity
Not Before: Mar 7 19:36:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eed437ec3d1ccecd187a8cd5cf4f584b6f9b1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3b:88:71:f7:30:a0:5c:00:ef:ff:1f:cd:35:
b9:2c:9e:0e:6a:01:d8:4b:43:50:32:9c:99:6e:d2:
e3:c7:16:1d:03:f9:21:62:06:dc:7f:18:d0:31:cb:
16:12:da:d4:a2:c1:21:94:aa:21:0e:94:3e:05:a8:
0f:18:5d:4f:62:71:83:4c:e5:25:c7:45:d5:ac:fd:
81:5d:b4:27:14:6b:84:b3:61:6a:64:d0:a6:c2:a6:
a4:c7:8a:a1:9a:00:39:f2:98:d6:15:b3:22:9a:aa:
ff:ae:38:c0:36:d0:f9:eb:9a:0c:27:b1:b9:d1:42:
09:eb:8e:c7:1d:ea:a2:63:05:e3:48:a0:c9:f2:e5:
52:46:d4:73:91:11:2d:ca:9e:94:5d:62:8e:d6:36:
2a:3f:55:75:2c:9c:d1:d3:94:b0:32:a0:6b:ed:f5:
0b:51:e2:e5:26:38:bb:a8:ad:c8:aa:fc:7a:06:7b:
af:37:68:f0:92:04:8e:2c:b2:b8:80:b1:58:1e:15:
2a:c2:56:82:d4:6b:7b:da:9f:36:f5:64:39:02:fd:
07:f4:ac:ad:93:f9:36:6f:fa:d7:69:e4:b6:9c:f3:
e4:18:fc:2d:95:0c:02:6d:cf:b9:d6:d2:1e:a0:20:
bc:bb:00:76:eb:86:43:5e:2c:a4:2a:ec:33:bb:cc:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:ED:43:7E:C3:D1:CC:EC:D1:87:A8:CD:5C:F4:F5:84:B6:F9:B1:C1
X509v3 Authority Key Identifier:
keyid:97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/fu1DfsPRzOzRh6jNXPT1hLb5scE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.100.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:75:ee:c4:31:89:1a:75:24:92:3f:66:99:84:8d:7e:7e:d7:
73:5a:e2:59:e9:ac:3a:14:e2:cc:41:e8:4c:ca:e0:2c:e4:cf:
81:88:cc:5b:00:bc:88:71:b3:79:5a:22:ff:50:66:f3:2f:11:
d9:5c:c5:e3:d0:56:23:82:c2:6a:45:78:48:0a:2a:cf:a5:56:
a5:0f:68:fa:8a:42:7d:40:3a:14:95:49:f7:7a:77:c3:41:ab:
7d:f7:14:95:6f:d2:0d:dc:92:dd:a9:ec:fc:1e:b0:8e:6d:25:
64:89:4e:b4:b3:b5:3d:24:23:72:26:f3:86:0a:bb:88:6b:ba:
28:63:3d:e5:52:e3:60:a0:01:57:00:dd:71:68:96:ad:67:eb:
16:5e:ea:d5:1d:9c:82:1a:e9:11:fa:c2:31:7a:27:20:0e:37:
ae:65:93:8a:6f:cb:98:f2:d9:57:2c:2d:e2:b2:79:54:bd:92:
4c:97:df:79:d8:8d:30:ba:16:af:2a:37:d8:af:90:c8:87:33:
a5:24:78:b4:38:5a:a3:bf:5f:42:14:ed:25:a4:4e:fc:10:d4:
52:55:12:9c:3f:d6:53:9c:2c:11:1e:64:65:78:2d:42:0d:61:
b6:27:90:f2:de:f9:93:06:25:cd:ec:de:bd:b2:d3:85:f0:c8:
ea:01:1b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:27 2024 by rpki-client on console-ams.rpki-client.org