Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fcq-SwUA1wj-Mz0pgLIbIzLtZfU.roa
File: fcq-SwUA1wj-Mz0pgLIbIzLtZfU.roa (raw, json)
Hash identifier: kjUhkS8UrhMa9B2/0K38idPnNCNY/D9V9MFtiEFgGXg=
Subject key identifier: 7D:CA:BE:4B:05:00:D7:08:FE:33:3D:29:80:B2:1B:23:32:ED:65:F5
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1806736C
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fcq-SwUA1wj-Mz0pgLIbIzLtZfU.roa
Signing time: Sat 01 Jan 2022 04:00:32 +0000
ROA not before: Sat 01 Jan 2022 04:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198280
IP address blocks: 213.91.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403075948 (0x1806736c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dcabe4b0500d708fe333d2980b21b2332ed65f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:18:d9:3d:48:55:f5:08:8c:37:ff:cf:d9:10:
d5:41:60:ff:94:a3:96:2a:8d:cb:5b:64:a1:ef:e0:
98:76:82:d9:7f:b1:0e:bc:1b:44:8f:12:36:86:15:
40:40:78:79:97:b9:ae:6b:27:f6:fe:c9:3f:ec:db:
0d:09:c8:97:7e:f1:27:49:74:a5:fd:d6:00:94:7c:
47:21:c8:a4:4e:5b:1d:c7:07:b2:5b:91:39:b8:26:
f1:8d:d4:98:8c:5d:a4:92:d1:c3:c6:17:8d:ed:4a:
3d:23:5d:b0:f2:52:3e:ed:fd:46:d8:9b:dd:3d:c5:
0b:f8:68:d8:4e:90:65:c6:41:b2:7d:91:80:0a:fe:
5c:8d:de:0e:8f:c0:81:16:c2:13:d6:55:d3:60:7a:
64:b9:ed:ef:8f:8e:d7:a1:ce:bb:49:c7:55:58:5f:
99:a2:70:74:23:86:48:1d:26:20:f5:3e:b3:59:04:
83:84:5f:33:7b:77:64:08:aa:b1:83:0e:c4:ea:1f:
16:72:37:0c:44:0c:05:65:54:15:34:ac:f5:8f:59:
9e:c3:e4:ef:79:f6:db:03:40:f3:e7:20:1f:8f:0e:
64:a4:3a:fd:1d:34:2a:ef:93:0a:60:a1:37:1c:34:
6c:5e:e9:a4:d8:68:19:c1:98:f4:a5:6e:f8:66:8f:
94:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CA:BE:4B:05:00:D7:08:FE:33:3D:29:80:B2:1B:23:32:ED:65:F5
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/fcq-SwUA1wj-Mz0pgLIbIzLtZfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.231.0/24
Signature Algorithm: sha256WithRSAEncryption
88:7b:8e:dd:80:37:62:0a:c4:ec:e4:3d:be:ed:a7:bc:83:5e:
bd:db:97:95:c9:58:f3:cb:8a:91:4a:1d:51:23:9b:99:dd:9e:
c7:23:1d:3c:74:d1:2b:6d:a9:c2:79:2e:a9:92:40:25:33:f5:
df:57:8f:24:88:5f:fb:27:96:19:f1:c7:fe:00:26:e6:13:46:
06:72:ea:a9:d0:97:71:5a:11:1f:05:df:1b:d1:1d:28:f1:21:
f1:96:f5:f7:92:6b:22:20:31:fb:bc:e0:d0:3d:e7:a8:09:a7:
78:a7:56:55:3c:97:37:7f:71:c7:ad:40:21:e5:5d:c4:af:99:
a5:2c:ad:bb:ba:b9:11:a5:4a:a1:78:17:72:f6:9e:e3:3e:c8:
36:2e:bd:86:18:e0:b5:d1:03:2a:b0:22:90:f5:8e:7b:62:4b:
31:58:05:66:c0:58:8d:45:ab:21:c9:76:4d:6b:86:c8:57:14:
34:93:30:7f:7c:00:d6:2e:f1:4d:17:65:7d:de:49:f0:df:fb:
ac:41:e7:3d:dd:72:a3:ae:93:9c:51:ec:b7:14:71:a1:97:cd:
c5:8d:43:75:e6:f6:88:f6:3d:8e:6b:23:f4:0d:a4:ef:c2:aa:
40:82:dc:44:00:0b:27:0d:4d:f9:c0:bd:ab:68:1c:00:0e:d3:
66:75:db:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org