Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/eb5dce-d286-4825-a41c-b2bd66889c29/1/aBKz7LDGuKajMkPAJevdUJdQuCs.roa
File: aBKz7LDGuKajMkPAJevdUJdQuCs.roa (raw, json)
Hash identifier: lMbDFplCQ4ZFNuIvQFpv8p/M/3I5FyXzsFj4rt+hadw=
Subject key identifier: 68:12:B3:EC:B0:C6:B8:A6:A3:32:43:C0:25:EB:DD:50:97:50:B8:2B
Certificate issuer: /CN=15733ff82be00b41a990ded6b72b04cb7bf580d7
Certificate serial: 0DBB99BE
Authority key identifier: 15:73:3F:F8:2B:E0:0B:41:A9:90:DE:D6:B7:2B:04:CB:7B:F5:80:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXM_-CvgC0GpkN7WtysEy3v1gNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/eb5dce-d286-4825-a41c-b2bd66889c29/1/aBKz7LDGuKajMkPAJevdUJdQuCs.roa
Signing time: Sat 01 Jan 2022 10:55:23 +0000
ROA not before: Sat 01 Jan 2022 10:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29246
IP address blocks: 195.68.250.0/23 maxlen: 23
185.89.168.0/22 maxlen: 22
2a00:18a8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230398398 (0xdbb99be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15733ff82be00b41a990ded6b72b04cb7bf580d7
Validity
Not Before: Jan 1 10:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6812b3ecb0c6b8a6a33243c025ebdd509750b82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3c:fb:42:37:09:bc:59:96:25:1f:6d:9c:d3:
08:ee:67:c0:ed:1a:c4:39:29:8f:2d:45:ca:cf:92:
91:75:45:e4:5c:7f:a8:30:c7:01:42:71:26:cf:d1:
1b:46:e2:d3:c7:c8:86:5b:1c:44:fd:86:8b:f0:70:
25:19:e8:8e:55:56:dc:93:38:6d:9e:15:e9:99:cc:
78:97:a7:1c:ab:33:6e:ad:06:55:6f:3d:0e:47:60:
a1:2d:83:62:49:a4:45:07:ef:8d:b3:3e:b3:7b:3d:
18:53:94:9d:fe:ce:8f:31:46:68:58:23:46:76:1d:
cc:f9:6e:a8:ab:f9:75:14:a7:18:58:26:1b:8d:4e:
42:13:ca:c4:14:cc:b7:51:81:2f:bd:d5:47:b4:a4:
49:48:8b:d5:71:3a:31:25:66:e8:59:3c:97:05:91:
bd:fe:9c:ea:f0:dd:7f:7f:eb:f2:7e:a3:93:92:db:
91:7e:6e:85:7e:24:ad:71:bd:20:fa:15:cd:76:97:
b7:c7:74:98:49:78:af:72:5f:78:1c:01:a6:b5:5c:
9d:59:d0:f5:fe:61:af:83:c0:d4:d4:88:98:56:fb:
a8:5b:4b:f0:68:11:e1:35:81:15:f3:58:f3:ac:38:
59:59:89:aa:33:a2:fa:6d:ca:ad:09:c3:92:37:91:
f2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:12:B3:EC:B0:C6:B8:A6:A3:32:43:C0:25:EB:DD:50:97:50:B8:2B
X509v3 Authority Key Identifier:
keyid:15:73:3F:F8:2B:E0:0B:41:A9:90:DE:D6:B7:2B:04:CB:7B:F5:80:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXM_-CvgC0GpkN7WtysEy3v1gNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/eb5dce-d286-4825-a41c-b2bd66889c29/1/aBKz7LDGuKajMkPAJevdUJdQuCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/eb5dce-d286-4825-a41c-b2bd66889c29/1/FXM_-CvgC0GpkN7WtysEy3v1gNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.168.0/22
195.68.250.0/23
IPv6:
2a00:18a8::/32
Signature Algorithm: sha256WithRSAEncryption
53:89:c0:e1:54:51:35:da:fe:78:b8:86:da:d0:5f:86:9c:2a:
38:2a:22:a4:99:ae:d1:52:b7:e5:64:00:d1:ac:36:0c:0c:c5:
75:28:53:39:96:21:e8:be:bd:96:56:2b:11:39:30:01:22:f4:
58:f5:e6:08:c0:5e:d7:0c:e0:cc:bf:cc:81:77:bf:75:8f:89:
b6:e3:3a:e5:38:af:3b:cb:ec:b9:c0:3d:cc:78:59:fb:47:e8:
9d:4d:ff:eb:d9:4b:23:f1:86:52:33:9b:2f:91:3c:f4:44:70:
a6:09:47:e3:56:fe:f3:48:e9:40:05:3f:6e:76:43:e4:2c:ea:
f3:e8:fa:0b:88:7b:4c:52:cc:95:ea:7d:b9:ee:50:cf:a0:83:
4d:13:2c:f8:7b:99:6b:18:28:09:b3:1c:08:b1:1e:18:14:57:
20:26:42:f3:af:de:4b:53:be:c8:be:5a:2c:06:65:83:55:15:
98:e3:98:86:bc:0c:98:f0:d1:0b:a6:dd:ea:bd:9d:fa:9e:d5:
c1:e0:07:04:7c:af:0b:f0:51:e1:46:68:08:f0:9e:6e:b9:c7:
f8:5d:a9:54:a1:cf:ce:94:e6:b5:e2:da:62:62:6a:6f:f8:33:
77:fb:0c:18:bb:51:40:29:72:c1:2f:3b:f8:94:0d:89:17:71:
67:86:66:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:15 2023 by rpki-client on console-fra.rpki-client.org