Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/FtfZh2lWnsW6_4LMvJK7ukj6I2E.roa
File: FtfZh2lWnsW6_4LMvJK7ukj6I2E.roa (raw, json)
Hash identifier: FHMfSDnSyJbgfPUbch8S7g0br2IRm6y9Hnhjv2K0Rbw=
Subject key identifier: 16:D7:D9:87:69:56:9E:C5:BA:FF:82:CC:BC:92:BB:BA:48:FA:23:61
Certificate issuer: /CN=a3c03158aed81161d4f57c1742d460834173a79e
Certificate serial: 018563F99E773F48E43AF4BBAED7584D9FBB
Authority key identifier: A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/FtfZh2lWnsW6_4LMvJK7ukj6I2E.roa
Signing time: Fri 30 Dec 2022 16:59:41 +0000
ROA not before: Fri 30 Dec 2022 16:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 91.194.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:63:f9:9e:77:3f:48:e4:3a:f4:bb:ae:d7:58:4d:9f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c03158aed81161d4f57c1742d460834173a79e
Validity
Not Before: Dec 30 16:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16d7d98769569ec5baff82ccbc92bbba48fa2361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:b1:2c:8a:40:b3:50:4a:36:f5:44:c9:f0:
74:fd:4d:32:b4:13:a5:1e:0f:5d:c6:1a:c6:c9:eb:
91:61:5e:17:fb:b3:91:07:ac:9e:33:99:25:c5:9f:
2e:13:e1:08:51:f6:90:d4:cc:95:15:ec:74:46:64:
91:6f:92:9e:18:9f:d8:d0:e6:4c:85:1d:6e:7e:d4:
f1:fc:fe:64:9b:7b:ce:74:0f:a4:49:6f:7f:ea:3a:
d0:23:55:e9:32:c2:3b:e9:93:05:92:fc:a9:0b:9a:
a9:a9:a8:d7:11:e8:ef:29:0e:b3:17:f8:20:b1:6d:
10:90:9c:2b:5b:f4:b9:90:dd:69:af:af:b3:69:c0:
39:ec:2e:16:a4:5d:1e:3c:cb:48:47:40:f7:47:c5:
c7:5b:e1:fe:1d:59:eb:c4:a1:6b:2d:21:9d:26:4b:
0f:c5:b3:c1:b8:e8:97:f6:ac:5c:89:0d:a1:fa:cf:
59:f4:df:42:d5:28:41:f8:50:39:cf:da:d9:b5:61:
95:60:5f:39:4f:b7:52:be:55:32:b1:da:a7:95:37:
90:e9:1b:5d:bf:7f:73:31:01:f3:79:4d:ad:9d:f7:
7c:0d:41:df:96:a7:d3:9e:9a:dd:e0:26:e5:eb:b4:
13:09:9f:f6:88:1c:3b:c4:4f:fa:80:9b:80:37:5c:
86:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D7:D9:87:69:56:9E:C5:BA:FF:82:CC:BC:92:BB:BA:48:FA:23:61
X509v3 Authority Key Identifier:
keyid:A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/FtfZh2lWnsW6_4LMvJK7ukj6I2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/o8AxWK7YEWHU9XwXQtRgg0Fzp54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.236.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:92:5e:53:b2:2e:22:8f:22:58:c0:cf:d1:25:f6:47:8e:1e:
22:47:c3:1f:9e:6c:83:87:8b:9f:cc:38:21:c5:2c:72:f6:47:
2a:f3:1f:da:a6:85:75:12:02:b4:4a:e7:9b:08:6f:48:a5:32:
28:4b:91:91:d1:cb:c3:58:3f:74:22:e8:8c:99:44:18:90:26:
6f:e1:de:a7:51:89:e0:d0:be:4e:9a:77:e6:54:82:e1:cc:fb:
b9:2b:f0:df:23:eb:20:38:35:a4:90:83:cd:29:f3:30:28:6e:
ff:7d:40:a7:8b:8e:1b:8b:73:2e:b2:f3:9b:a0:c9:61:d7:c1:
7b:96:93:29:e3:de:00:3c:78:88:bf:5e:e8:62:5c:cd:d2:e9:
dc:62:fd:b3:9b:47:5b:60:36:0b:be:82:9a:7a:4d:7a:fc:6b:
62:cd:16:11:3d:68:7f:2a:15:79:9b:42:5b:24:de:4b:a7:4a:
d1:92:e1:f6:9c:6c:3f:03:9a:f9:72:97:50:5a:e2:4d:c6:98:
21:8c:46:85:7b:97:94:06:b6:82:94:7c:a2:db:e5:1f:a8:12:
47:51:4b:6d:fc:4c:d0:f7:d3:a6:a7:5c:07:f5:7a:b6:9f:4f:
a0:ef:09:2b:8e:ce:f5:32:77:5f:7a:57:10:f0:d6:72:df:9f:
48:74:f7:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:22 2024 by rpki-client on console-ams.rpki-client.org