Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/fxbfmZqf__fiyB16RVRnOsbFs7Y.roa
File: fxbfmZqf__fiyB16RVRnOsbFs7Y.roa (raw, json)
Hash identifier: Xdq1YMThSHXClrjCBsCgVe400HWuyrcXv0ZssrOSSUc=
Subject key identifier: 7F:16:DF:99:9A:9F:FF:F7:E2:C8:1D:7A:45:54:67:3A:C6:C5:B3:B6
Certificate issuer: /CN=a4f523d948387d8c5fcdf752e0a1cc408cfe8395
Certificate serial: 084C93B9
Authority key identifier: A4:F5:23:D9:48:38:7D:8C:5F:CD:F7:52:E0:A1:CC:40:8C:FE:83:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/fxbfmZqf__fiyB16RVRnOsbFs7Y.roa
Signing time: Sat 01 Jan 2022 01:50:59 +0000
ROA not before: Sat 01 Jan 2022 01:50:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24806
IP address blocks: 185.33.144.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139236281 (0x84c93b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f523d948387d8c5fcdf752e0a1cc408cfe8395
Validity
Not Before: Jan 1 01:50:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f16df999a9ffff7e2c81d7a4554673ac6c5b3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0c:a6:49:1f:a4:a4:6d:d6:0c:e5:af:f6:be:
98:53:ed:ae:6b:b7:18:80:49:38:80:f7:b9:9c:1a:
4c:f1:b7:d2:c6:d9:c0:25:58:99:69:e4:90:dd:e0:
95:b8:d9:25:82:9d:98:ed:f7:1c:fd:7c:8d:6f:96:
b6:fd:6b:6e:b8:bc:11:22:17:2a:78:7f:4a:51:1a:
33:f2:6a:01:95:62:0d:51:d2:5b:c9:aa:af:ed:bd:
71:ea:48:eb:a9:09:36:d7:19:27:b0:51:96:82:fa:
10:65:c1:4c:af:b3:a0:4b:d6:a6:f9:86:6c:49:81:
28:e8:0d:8e:6d:b0:f3:9a:b6:bf:04:cc:26:ec:96:
70:bd:8c:f9:cc:45:55:b6:78:84:ad:99:9d:45:56:
cf:87:0b:6e:49:e6:72:0d:54:76:29:7e:ca:16:56:
35:a8:fd:f5:5c:dc:6b:2b:1e:a2:0f:a3:a1:9b:0a:
ba:a2:7f:ad:52:e0:87:4f:3c:2f:9e:57:91:46:2c:
50:44:10:dd:38:19:6f:0d:be:75:7e:53:08:3a:72:
18:ac:ef:69:f1:20:de:8d:c6:fe:e7:a8:77:3f:3e:
3b:64:7f:c8:41:6a:9a:31:b5:d9:e6:ea:63:8a:bb:
14:5d:5f:6c:b6:c6:06:2a:8d:0a:3e:55:05:1b:dd:
02:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:16:DF:99:9A:9F:FF:F7:E2:C8:1D:7A:45:54:67:3A:C6:C5:B3:B6
X509v3 Authority Key Identifier:
keyid:A4:F5:23:D9:48:38:7D:8C:5F:CD:F7:52:E0:A1:CC:40:8C:FE:83:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/fxbfmZqf__fiyB16RVRnOsbFs7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/085c35-28ac-4241-b951-20a900bc776a/1/pPUj2Ug4fYxfzfdS4KHMQIz-g5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.144.0/22
Signature Algorithm: sha256WithRSAEncryption
96:65:38:b2:e5:70:29:ee:9a:07:35:68:bf:4d:32:87:43:92:
bf:d9:1c:cf:e5:24:37:b0:e6:33:73:37:fa:a3:3f:5e:ed:37:
af:96:ae:93:77:cb:0b:43:ad:a1:9c:95:db:24:3e:7c:74:d7:
51:db:81:49:fc:c1:c6:ea:40:92:46:7c:3d:c9:af:42:c4:12:
67:e0:d0:68:7f:1e:34:cf:c4:32:0c:6c:e4:6e:f3:de:5a:60:
0b:2b:82:ee:c8:9f:82:f5:e5:38:9a:1f:c9:d4:e9:b8:45:01:
eb:05:3a:1b:80:f9:7b:37:4e:b8:b1:66:11:2b:cc:2d:51:67:
38:1e:3c:96:b9:59:84:5e:7b:db:09:f9:bf:39:59:9c:b0:49:
db:da:95:7c:09:73:1d:71:59:e4:da:1a:27:f7:7d:4a:49:8b:
96:b5:5b:35:86:7a:de:81:15:fb:cd:3f:54:12:f4:a2:e2:a2:
bc:81:3b:72:f2:1e:a0:0e:e0:4c:a9:92:76:63:0c:91:61:17:
1c:12:8e:7b:49:15:42:a6:db:6a:c0:5b:5b:a4:8b:f1:b8:bd:
d5:fa:eb:32:01:ea:30:dc:a1:da:d5:03:7f:ea:f3:de:d7:b4:
46:7c:74:d2:8e:64:28:62:f2:a5:ab:51:0f:b2:8e:b0:37:5a:
a7:63:2a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:50 2024 by rpki-client on console-ams.rpki-client.org