Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/_DfgAERA1tHZw06c3FgqrnNOr10.roa
File: _DfgAERA1tHZw06c3FgqrnNOr10.roa (raw, json)
Hash identifier: xvTvOJRXpkW5TOuLUGjRNV7GPDqr9KnUwMN2dH6EX+s=
Subject key identifier: FC:37:E0:00:44:40:D6:D1:D9:C3:4E:9C:DC:58:2A:AE:73:4E:AF:5D
Certificate issuer: /CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Certificate serial: 0121CA
Authority key identifier: 07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/_DfgAERA1tHZw06c3FgqrnNOr10.roa
Signing time: Wed 27 Apr 2022 21:00:45 +0000
ROA not before: Wed 27 Apr 2022 21:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48319
IP address blocks: 94.199.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74186 (0x121ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d64daef339e6fdae644db1b20bbf54e67e5d66
Validity
Not Before: Apr 27 21:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc37e0004440d6d1d9c34e9cdc582aae734eaf5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:49:c3:cc:a5:e7:8a:d9:b1:a9:f1:62:1f:62:
55:a8:c9:95:39:53:54:6e:e4:bc:50:94:77:23:ac:
e1:fd:be:02:07:3e:6d:9e:89:f6:94:96:5e:05:d2:
a6:35:84:a6:04:ba:87:f2:7d:17:2f:b8:de:87:c9:
8c:2a:f8:d7:e4:51:36:c9:ab:ba:e9:64:6c:4f:8f:
4f:a2:d9:09:d2:c7:b4:b8:ab:23:67:81:0b:f5:85:
e3:44:71:7f:99:a4:65:b0:ab:82:bc:39:19:f3:b0:
93:a6:98:27:4a:c7:71:30:40:0b:40:9c:35:49:7e:
19:aa:50:9b:62:b0:37:e0:36:53:72:bd:01:6c:db:
af:bf:a0:bf:36:57:77:89:f3:b1:38:cc:68:df:36:
84:4b:fa:b6:51:b0:25:10:fe:9e:03:39:87:54:bb:
e3:b8:4b:cf:a2:87:85:eb:e1:71:6c:d0:dd:aa:d1:
18:4a:04:6e:9b:77:3b:62:a5:cb:01:e6:6b:15:cd:
e9:63:6d:d9:fd:0c:7a:fd:2f:2c:fb:04:8f:a8:63:
06:23:f3:80:cc:9d:af:d4:ab:63:e2:99:24:70:9c:
f1:c6:bc:de:cd:91:c6:d2:e5:63:cc:ea:19:06:24:
7c:40:2e:98:3f:ff:1b:44:cc:32:42:25:06:2f:07:
44:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:37:E0:00:44:40:D6:D1:D9:C3:4E:9C:DC:58:2A:AE:73:4E:AF:5D
X509v3 Authority Key Identifier:
keyid:07:D6:4D:AE:F3:39:E6:FD:AE:64:4D:B1:B2:0B:BF:54:E6:7E:5D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/_DfgAERA1tHZw06c3FgqrnNOr10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d7fd2c-95a9-4c09-9e47-827f9648c022/1/B9ZNrvM55v2uZE2xsgu_VOZ-XWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.32.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:b3:ce:73:41:6f:4c:d9:f3:2e:23:3b:10:4c:20:b3:6a:86:
25:4e:5a:a6:37:21:80:ce:9e:34:d6:67:86:40:d7:62:eb:fb:
b7:01:1d:11:21:24:04:e3:55:94:e2:cd:bc:f8:a5:9a:0c:b5:
36:3d:1e:28:63:0b:e1:27:d3:54:70:a9:36:59:79:75:66:0e:
59:75:48:38:46:14:ae:fe:59:e6:96:bf:f2:49:e2:d6:b7:5a:
ec:2c:45:cc:8f:ec:1d:4b:fe:21:ec:5b:4f:12:ef:16:ac:74:
79:fa:ec:0e:a1:5d:b2:dd:e7:26:1a:39:3b:39:54:90:73:49:
fe:9e:da:f7:0f:ff:53:f2:32:7d:71:24:92:c5:61:34:51:8e:
43:39:7f:53:fb:11:e4:25:96:7e:cf:1e:fe:84:bb:c4:c4:d3:
f6:3a:88:94:2e:98:3a:40:94:4b:4d:b0:bb:65:db:7c:00:d5:
b7:58:53:e2:d8:1c:54:f8:f6:7c:08:f6:0c:5c:9d:5a:b0:dc:
7d:58:89:5c:3d:13:ab:d9:78:17:8c:c5:bd:53:10:17:3e:96:
fe:7b:ef:30:71:23:72:e9:33:11:54:fb:75:ec:7a:58:d8:4f:
79:be:d4:62:a1:01:6c:85:b2:33:d8:0d:87:52:b6:eb:29:23:
72:69:9b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:25 2024 by rpki-client on console-ams.rpki-client.org