Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/FQ5V8hncGaPogiqVNGZt9GGwm9c.roa
File: FQ5V8hncGaPogiqVNGZt9GGwm9c.roa (raw, json)
Hash identifier: bju88DW/B+MPYVSbQ2y45U5d16T6/Bp5xwIL8Y84pNU=
Subject key identifier: 15:0E:55:F2:19:DC:19:A3:E8:82:2A:95:34:66:6D:F4:61:B0:9B:D7
Certificate issuer: /CN=ef583686464c533d4152bca2edf3a01b487eea92
Certificate serial: 087D6C93
Authority key identifier: EF:58:36:86:46:4C:53:3D:41:52:BC:A2:ED:F3:A0:1B:48:7E:EA:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71g2hkZMUz1BUryi7fOgG0h-6pI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/FQ5V8hncGaPogiqVNGZt9GGwm9c.roa
Signing time: Sat 01 Jan 2022 00:59:15 +0000
ROA not before: Sat 01 Jan 2022 00:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205844
IP address blocks: 185.204.128.0/22 maxlen: 24
178.157.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142437523 (0x87d6c93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef583686464c533d4152bca2edf3a01b487eea92
Validity
Not Before: Jan 1 00:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=150e55f219dc19a3e8822a9534666df461b09bd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:76:a6:47:3c:f6:8e:61:7d:bf:bd:1d:a1:40:
98:0c:e2:ff:b5:ac:7c:4e:b9:6c:ea:d5:7e:85:00:
2d:1a:15:ea:e5:dd:80:38:a5:cc:db:51:96:6d:f7:
47:39:7a:17:f1:9f:5a:6b:27:3e:5d:d5:c5:9b:02:
21:ab:56:88:c3:5f:7b:22:25:fb:62:1a:d9:63:c9:
2b:bb:7e:0f:f6:04:2f:4d:c3:66:6c:03:55:0b:34:
01:c9:e7:97:17:6c:24:51:cb:50:6a:96:8f:fc:5f:
9d:f2:4c:b7:0b:86:b7:8d:67:c7:62:16:44:ed:57:
f6:67:57:42:6f:6c:f8:7f:b5:d6:5d:c6:ac:2a:e3:
1a:6f:5d:ca:f4:b8:47:f1:db:94:51:19:be:8c:3f:
8e:f2:48:84:be:91:8b:81:0b:04:bd:57:cd:9f:38:
28:26:63:95:4d:8b:c4:96:ed:52:91:a3:c6:aa:6e:
41:3e:23:a4:12:b0:a3:e7:e8:a2:ba:73:ba:90:58:
d2:d6:63:45:02:8c:81:e9:a3:c9:df:40:1a:95:86:
95:c1:79:55:24:55:f4:d9:ad:87:3a:03:2b:f3:0e:
2b:8a:cb:5c:ec:e5:d0:20:7a:22:ab:55:9e:c9:0b:
5f:ed:6b:8e:68:b8:74:4e:2c:ce:25:ba:7a:4e:2e:
23:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0E:55:F2:19:DC:19:A3:E8:82:2A:95:34:66:6D:F4:61:B0:9B:D7
X509v3 Authority Key Identifier:
keyid:EF:58:36:86:46:4C:53:3D:41:52:BC:A2:ED:F3:A0:1B:48:7E:EA:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71g2hkZMUz1BUryi7fOgG0h-6pI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/FQ5V8hncGaPogiqVNGZt9GGwm9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/6a754e-58f6-4c10-9d5e-f43aa27003c5/1/71g2hkZMUz1BUryi7fOgG0h-6pI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.157.88.0/23
185.204.128.0/22
Signature Algorithm: sha256WithRSAEncryption
46:79:3a:53:5f:c6:5b:0d:70:94:87:88:3a:31:8b:a9:a0:cf:
f4:8c:36:b6:46:8f:f2:7c:b6:02:33:1d:bf:a1:f1:01:cf:cb:
6a:76:70:b0:10:db:34:c3:0a:91:c7:0b:ba:19:b1:b2:33:d0:
90:63:b1:b6:01:e3:2d:38:5d:ba:b6:ec:a0:9e:42:7c:fe:0e:
ed:83:e8:dd:83:06:b2:ac:be:05:6f:63:c8:51:e0:6c:4f:f0:
c4:b6:88:b3:c6:2a:94:82:a4:e5:e5:fb:7a:bd:dc:bd:b7:05:
12:9c:9c:2b:71:85:0d:d7:53:7d:81:df:34:96:52:4b:56:4f:
8e:02:3d:57:7a:38:e2:69:60:9e:5a:0a:a7:85:b1:a5:df:29:
e0:de:45:44:a7:51:44:17:c9:e5:b2:b3:ce:9d:20:64:f4:53:
3e:45:60:c7:a1:7a:19:28:c1:b7:9a:2e:23:0f:bd:e0:09:81:
93:fa:c4:38:09:c6:e0:f7:3b:06:45:9d:88:5a:0f:fa:22:31:
e2:4c:69:14:c9:48:8d:5e:35:95:59:07:36:fa:41:5f:36:db:
b7:50:7d:7a:b5:ff:95:c6:72:7a:43:e2:81:ec:b8:a4:f6:cf:
df:11:3e:01:18:c1:61:aa:c6:9d:95:6c:a7:f2:57:be:f6:f5:
bf:fb:f0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:08 2024 by rpki-client on console-ams.rpki-client.org