Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FYW1GcSlhE_4vUtHwXX83w2UcII.roa
File: FYW1GcSlhE_4vUtHwXX83w2UcII.roa (raw, json)
Hash identifier: qcuDPhE/6yNtAaqqwyj+VXKeZvEZLguJB56vF+1dKzI=
Subject key identifier: 15:85:B5:19:C4:A5:84:4F:F8:BD:4B:47:C1:75:FC:DF:0D:94:70:82
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E12235B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FYW1GcSlhE_4vUtHwXX83w2UcII.roa
Signing time: Sat 01 Jan 2022 01:58:12 +0000
ROA not before: Sat 01 Jan 2022 01:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.135.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236069723 (0xe12235b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1585b519c4a5844ff8bd4b47c175fcdf0d947082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7e:12:64:7b:cb:4f:13:91:42:61:5c:24:22:
3c:7e:e3:55:ab:66:54:c6:35:d6:9d:0e:ae:e5:98:
0d:50:d4:93:72:dd:c1:d2:db:c9:41:2e:d7:2f:eb:
52:af:1f:5e:65:c3:06:aa:f5:87:db:9e:74:ce:9a:
a2:2a:6d:3b:e2:97:53:54:b7:d7:3d:bc:d3:f9:18:
da:f3:c0:54:c6:3c:8c:35:90:67:0c:c3:f5:c8:ac:
ac:a3:6d:b1:9c:aa:aa:c0:25:49:66:37:55:b3:48:
d5:3a:70:62:a1:94:dd:8e:88:d9:41:92:d7:b3:aa:
e1:4c:6f:f0:c1:d7:0c:f4:99:07:ca:37:1b:b7:17:
d6:d2:53:62:d4:13:b4:5f:58:95:ae:c2:72:db:f0:
72:fa:4f:f7:7d:57:96:d5:f8:f0:18:98:d5:56:7b:
f9:e2:ae:a7:f5:8c:cc:5f:89:7f:27:99:c6:e3:9d:
a0:31:e1:d2:0a:de:62:97:55:ab:da:04:0d:6b:7e:
a8:70:46:34:30:20:c8:86:fe:c6:5b:6d:36:a0:9c:
a7:1f:3e:81:1a:5a:d9:0f:2c:a7:22:36:63:96:a4:
15:0a:30:a0:86:3b:7e:87:66:f6:db:eb:fc:db:f7:
71:08:16:f8:11:ca:42:37:42:32:0b:39:9f:93:28:
23:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:85:B5:19:C4:A5:84:4F:F8:BD:4B:47:C1:75:FC:DF:0D:94:70:82
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FYW1GcSlhE_4vUtHwXX83w2UcII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ac:d5:02:a3:81:67:33:79:0a:de:07:81:67:b8:de:f0:f3:
46:9d:35:91:ea:7d:e9:75:1e:f3:62:7b:a5:3b:2e:b9:3c:02:
64:bb:c2:2f:aa:56:ce:85:24:89:f0:89:cf:ba:f7:ba:80:65:
40:62:54:c2:a4:43:de:37:e2:c0:a2:56:b9:da:db:d1:69:f9:
f1:71:87:ce:d0:45:2d:24:2e:0a:06:d6:45:2e:8e:c7:1e:9b:
aa:02:00:f8:de:8e:f5:44:f5:25:21:82:04:8b:68:c4:20:09:
e9:f7:3c:b8:15:00:c8:7b:f2:81:9a:ba:18:e8:5f:3c:4b:70:
24:bb:0c:cc:0c:45:f8:2c:a3:df:56:0f:49:5e:c3:39:69:23:
8f:ba:12:da:45:2e:d2:e9:8b:ae:2e:dc:60:8b:dc:19:e6:cc:
72:16:8a:6d:4c:08:72:d9:21:14:15:54:f1:61:a2:83:2c:2d:
37:87:2d:f9:4d:92:f8:78:e7:44:3e:8e:2b:89:25:9d:8d:6e:
33:0b:6c:c3:f1:70:38:71:b7:f9:7b:4f:c1:53:50:5a:b4:3b:
6f:12:25:f8:c7:2e:c5:89:60:67:51:31:0f:75:5f:3b:95:24:
01:c5:be:fe:c4:f9:b2:f1:e0:f9:be:ea:f3:e3:44:9c:b4:6c:
21:d9:54:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-ams.rpki-client.org