Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/fbPfp70XEQWEYgF3TEG2MnfsaVU.roa
File: fbPfp70XEQWEYgF3TEG2MnfsaVU.roa (raw, json)
Hash identifier: bU/qTE6tNCbafOGAJGVkWxf/U7xN/fJ+D5QxAbgVvcM=
Subject key identifier: 7D:B3:DF:A7:BD:17:11:05:84:62:01:77:4C:41:B6:32:77:EC:69:55
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 097D9068
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/fbPfp70XEQWEYgF3TEG2MnfsaVU.roa
Signing time: Sat 01 Jan 2022 13:05:06 +0000
ROA not before: Sat 01 Jan 2022 13:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24655
IP address blocks: 194.30.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159223912 (0x97d9068)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 13:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7db3dfa7bd171105846201774c41b63277ec6955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e2:59:33:dd:56:51:2d:15:a3:16:97:b7:e6:
ae:61:71:85:d7:7b:4a:41:8f:d5:25:d5:e9:24:d0:
4e:71:39:d3:07:34:18:c8:c9:da:9f:5b:75:98:1b:
ff:c0:a7:7e:d2:65:5e:52:94:c1:da:1f:21:79:13:
33:93:56:35:6a:fd:20:27:01:d2:a4:ed:8a:7d:b0:
4e:de:1c:14:3f:38:d5:06:e6:a7:8c:28:f0:a4:28:
e6:54:8f:99:5c:f8:74:90:9f:47:ff:21:7e:54:77:
f7:47:bb:9c:bf:56:4b:e4:56:d6:50:e9:51:5d:56:
5e:a0:9a:ab:4b:00:ab:46:e9:46:57:be:79:e0:33:
48:1e:f8:2b:66:91:17:56:3e:e1:f1:bc:46:e5:e7:
40:0a:e1:30:e9:c4:5f:6b:7f:73:98:fb:32:4c:21:
45:19:5f:42:45:82:74:40:a9:62:cc:52:d0:03:d2:
5b:91:70:22:91:ba:cb:98:c6:64:c3:1a:fa:a3:a6:
90:fa:ef:3f:c2:57:a7:f2:0b:b9:fa:3a:f2:45:44:
02:84:ca:dc:6a:1c:7b:d3:9e:34:b3:22:77:e3:45:
b2:8c:86:7a:96:e9:a0:c6:34:16:dd:b5:b9:53:e3:
e9:42:61:43:b4:62:5e:0c:75:bb:7a:6c:5a:50:78:
de:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B3:DF:A7:BD:17:11:05:84:62:01:77:4C:41:B6:32:77:EC:69:55
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/fbPfp70XEQWEYgF3TEG2MnfsaVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.142.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:c3:32:0b:b1:d6:ac:97:6a:be:1a:17:29:15:21:b7:0e:d6:
aa:dd:d8:6f:84:1a:8c:76:ff:79:ea:0c:c4:04:fb:80:41:f6:
02:33:67:68:e2:60:18:b9:88:2e:14:cb:42:c7:bf:67:87:71:
98:53:7e:c7:52:0f:f4:dc:1b:20:f7:4b:e4:7d:18:f8:76:51:
63:a3:a6:0c:1a:60:41:be:3d:e2:9d:c8:02:fb:a4:24:85:49:
02:97:5a:5e:7d:e0:f5:a2:17:66:9e:d3:21:7a:3d:c4:62:9a:
f9:45:36:59:83:c9:df:7c:5e:b0:aa:7d:83:d9:6f:43:3b:8b:
08:5f:5a:1e:3e:44:d1:1c:35:e4:ad:1e:e2:be:9d:80:f5:65:
32:7d:e2:a4:46:85:30:34:0c:a5:16:aa:11:35:c9:18:04:6d:
53:ca:19:0e:15:bf:34:3a:aa:94:fb:29:0d:c6:54:8a:9c:52:
3e:25:9a:bb:a6:f3:25:29:58:4d:55:3f:a7:ab:0f:cc:f3:dd:
09:00:dd:f0:8d:37:db:a0:c6:1b:ac:24:da:b7:e8:be:c2:e4:
55:5b:f4:68:bd:02:0a:1d:53:c3:9a:20:83:db:2d:4e:3e:47:
1e:53:64:83:fd:0c:d8:78:a9:0c:d5:94:61:c9:e0:ca:ac:b7:
0e:0f:84:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org