Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/fBPsQy9rFzE1esusEP86TpT09H0.roa
File: fBPsQy9rFzE1esusEP86TpT09H0.roa (raw, json)
Hash identifier: DC3P+Z6C5rjOhZrPB/8bmt7TmwR8aBReQECYtTq1ZFA=
Subject key identifier: 7C:13:EC:43:2F:6B:17:31:35:7A:CB:AC:10:FF:3A:4E:94:F4:F4:7D
Certificate issuer: /CN=a0e41fd03d2fddcda58a08fa5fa1091ecea0c0b0
Certificate serial: 01BE77B4
Authority key identifier: A0:E4:1F:D0:3D:2F:DD:CD:A5:8A:08:FA:5F:A1:09:1E:CE:A0:C0:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOQf0D0v3c2ligj6X6EJHs6gwLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/fBPsQy9rFzE1esusEP86TpT09H0.roa
Signing time: Sat 01 Jan 2022 15:56:25 +0000
ROA not before: Sat 01 Jan 2022 15:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211454
IP address blocks: 185.215.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29259700 (0x1be77b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e41fd03d2fddcda58a08fa5fa1091ecea0c0b0
Validity
Not Before: Jan 1 15:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c13ec432f6b1731357acbac10ff3a4e94f4f47d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0a:82:b4:5d:81:bb:16:8b:e0:f9:67:34:6f:
44:6d:c6:68:a1:ef:9b:db:8c:13:cc:53:64:02:13:
e9:c9:07:d7:50:53:e2:45:fb:2f:d6:9e:48:3b:c3:
c6:30:1c:03:dc:04:57:84:d4:ca:5a:79:cc:9b:44:
44:06:f7:b2:e4:e7:28:eb:90:2f:1d:17:a7:94:d0:
1b:5d:c9:8d:16:34:24:ad:7d:4f:3e:9f:d5:78:aa:
9d:bb:ff:ae:69:74:48:9d:99:81:81:91:44:4b:e2:
b1:2b:df:4e:a8:de:61:1e:8d:96:f6:21:1c:c4:2b:
63:fd:19:98:26:7a:24:b5:2b:e4:fb:a7:e1:c9:5d:
0b:50:81:a1:b6:52:e7:ad:56:5a:05:ff:df:75:b2:
36:ad:1a:c5:bb:aa:42:9f:83:ae:c5:d0:50:ab:53:
bd:6a:8b:c1:6b:eb:94:25:b6:ec:50:57:31:b0:22:
5e:02:db:25:11:09:10:00:50:8c:1c:a9:db:b1:ff:
d5:01:78:7a:7c:8b:06:69:2b:fa:40:2a:13:c3:11:
61:dd:a0:2a:49:71:cc:2d:62:ed:18:4e:bc:a8:c8:
fc:8a:9f:3e:8f:41:f2:13:eb:f5:3c:ca:31:5b:8b:
e3:81:ed:83:a8:a3:3d:9c:a6:b2:e3:03:fc:96:c0:
8f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:13:EC:43:2F:6B:17:31:35:7A:CB:AC:10:FF:3A:4E:94:F4:F4:7D
X509v3 Authority Key Identifier:
keyid:A0:E4:1F:D0:3D:2F:DD:CD:A5:8A:08:FA:5F:A1:09:1E:CE:A0:C0:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOQf0D0v3c2ligj6X6EJHs6gwLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/fBPsQy9rFzE1esusEP86TpT09H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/oOQf0D0v3c2ligj6X6EJHs6gwLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.7.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:bd:c6:d9:53:fa:25:98:bf:86:08:95:af:03:0a:8f:f6:1b:
2b:53:81:84:70:6d:24:94:73:c4:6e:1d:18:17:5b:a9:f4:44:
19:e3:31:65:a6:19:1c:d9:af:38:6a:c6:81:f3:a4:5e:27:68:
02:91:bb:1b:68:f8:d6:ec:06:2d:96:d3:fd:5d:2f:56:7f:dd:
d9:e1:5b:af:0c:4e:54:e5:39:e8:b6:a5:a9:45:7a:dd:87:ac:
fd:36:d5:22:2c:2c:0a:d3:22:a9:8c:00:66:22:b3:fc:41:fe:
b5:37:ff:e1:89:4d:29:47:39:03:05:95:63:0a:09:dd:cf:6f:
67:dd:81:94:34:ae:b4:03:4e:c7:4c:43:83:79:68:72:36:21:
26:6e:40:7c:3d:36:1a:2c:ce:6b:ae:83:48:b2:4a:23:22:3a:
8a:cc:54:cd:00:5d:e0:11:c3:8a:0b:70:d7:b2:9a:9a:36:93:
64:79:39:87:ef:b4:00:ae:0a:ae:07:1a:fa:38:40:9e:a4:9d:
a3:9c:58:fe:75:32:d9:86:d1:2d:7b:7a:4e:6f:7c:52:98:40:
ef:19:c3:26:78:80:d0:af:b9:7e:1a:d9:d8:ff:fe:f8:8d:cb:
63:13:f2:88:97:3a:75:bb:96:bf:33:c1:16:2f:f8:d4:c2:af:
bf:0e:4e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:06 2024 by rpki-client on console-fra.rpki-client.org