Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FLPTZzV4WXQVZJoMDcSbOpz2rJw.roa
File: FLPTZzV4WXQVZJoMDcSbOpz2rJw.roa (raw, json)
Hash identifier: Q6Q77jDZwYq0znDfAT8WRPr11GduugwiHojCMF3yXmQ=
Subject key identifier: 14:B3:D3:67:35:78:59:74:15:64:9A:0C:0D:C4:9B:3A:9C:F6:AC:9C
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AEA35D5
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FLPTZzV4WXQVZJoMDcSbOpz2rJw.roa
Signing time: Sat 01 Jan 2022 13:57:47 +0000
ROA not before: Sat 01 Jan 2022 13:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15587
IP address blocks: 93.159.62.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 719992277 (0x2aea35d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14b3d3673578597415649a0c0dc49b3a9cf6ac9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:32:8c:72:68:8c:d5:b5:74:56:0a:8c:63:2a:
36:75:9f:ef:af:ae:64:6b:4b:c8:cc:3b:37:de:04:
f8:80:13:82:ec:f4:30:9f:e7:23:cf:fd:64:a2:39:
ab:f2:6a:96:4d:4a:4f:b0:7f:dd:ad:d5:9b:be:5c:
3f:60:b6:73:22:a3:6d:70:21:70:88:5e:43:45:83:
29:d9:8e:af:b3:b0:53:ea:3b:5f:0d:d4:fa:31:55:
12:71:f0:3e:df:0b:20:71:be:9f:92:49:93:b9:b6:
1c:16:81:6e:32:01:a1:8f:26:aa:5c:3a:81:a6:30:
8d:bb:b8:d5:39:bc:7a:93:9f:6e:78:5b:5a:e6:f3:
8a:ee:15:42:e7:93:f5:42:e1:97:1e:77:da:c6:09:
81:03:7b:4a:5b:08:94:8b:8d:f3:eb:04:f4:67:a4:
e6:7f:5e:06:55:71:34:51:07:be:b9:27:59:b3:38:
20:5f:8a:db:a9:43:43:e9:a7:39:35:d5:36:67:63:
6e:07:38:27:9e:1b:52:48:f6:61:b1:11:a1:5a:c1:
cc:7f:26:8b:8d:c7:d9:4b:52:54:73:11:de:84:d8:
1a:c9:b4:8e:29:4c:19:ab:2a:60:26:11:1a:4f:3e:
bf:3e:f5:1b:f7:04:e9:94:7f:13:2d:69:e7:c4:1f:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B3:D3:67:35:78:59:74:15:64:9A:0C:0D:C4:9B:3A:9C:F6:AC:9C
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/FLPTZzV4WXQVZJoMDcSbOpz2rJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.62.0/23
Signature Algorithm: sha256WithRSAEncryption
42:8e:a6:2d:d0:75:32:df:55:50:27:23:88:73:29:8d:d2:b1:
c2:b0:54:9f:77:0f:7f:a0:14:c6:e8:76:87:00:23:6f:56:03:
69:1a:66:cd:3d:9e:51:02:57:64:30:b1:24:7b:38:c0:1f:1d:
16:4e:6a:46:e5:f1:e8:f1:36:f7:79:7c:69:1c:38:d4:4d:2e:
b2:bc:f3:d6:3d:35:7d:eb:46:84:68:1a:19:75:9c:4f:53:83:
41:e7:a4:5c:35:75:59:53:41:b8:3f:81:3f:c5:83:f8:22:76:
50:e6:98:11:3f:6a:83:38:c9:7d:b3:7a:93:40:0d:21:f5:d2:
78:9a:c5:06:95:cd:0d:2e:3f:a0:a5:91:7c:75:33:41:fc:6d:
ea:ee:bd:1e:4e:5e:fb:f5:f2:82:b1:5b:43:19:9e:c5:a8:03:
3a:18:72:28:dc:e1:98:59:8f:4c:11:25:6d:25:4d:ed:28:19:
73:5e:e3:ae:be:f8:d7:3b:a7:b9:5c:49:cd:f3:ac:66:d9:f4:
16:cc:8d:b3:bc:94:8e:62:a4:68:ee:43:51:b8:ba:80:af:e0:
38:03:a4:3a:20:21:66:40:96:a9:91:5a:71:ce:8c:d7:4d:e3:
dd:6b:5a:3a:d7:31:c6:d1:56:d4:6e:b5:12:8e:c2:fa:1b:b8:
f2:80:60:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org