Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/614d64-37d3-4bbc-8f3d-b43cd4d97c8e/1/1-sFD0FsJJHSL2_H8NpgT-wEy9VY.roa
File: 1-sFD0FsJJHSL2_H8NpgT-wEy9VY.roa (raw, json)
Hash identifier: RZoLtaVVoWyTUrtlJo57Z1Jzph66ijGifck3qFfacn8=
Subject key identifier: FA:C1:43:D0:5B:09:24:74:8B:DB:F1:FC:36:98:13:FB:01:32:F5:56
Certificate issuer: /CN=15b595260f72c222547ac3e367f2c887ae38a3fc
Certificate serial: 040FE747
Authority key identifier: 15:B5:95:26:0F:72:C2:22:54:7A:C3:E3:67:F2:C8:87:AE:38:A3:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FbWVJg9ywiJUesPjZ_LIh644o_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/614d64-37d3-4bbc-8f3d-b43cd4d97c8e/1/1-sFD0FsJJHSL2_H8NpgT-wEy9VY.roa
Signing time: Sat 01 Jan 2022 06:57:45 +0000
ROA not before: Sat 01 Jan 2022 06:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205665
IP address blocks: 185.209.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68151111 (0x40fe747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15b595260f72c222547ac3e367f2c887ae38a3fc
Validity
Not Before: Jan 1 06:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fac143d05b0924748bdbf1fc369813fb0132f556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7d:e5:2a:3f:48:0c:54:12:e3:35:01:8a:92:
12:dc:6d:ab:ac:df:1c:33:5a:4b:05:57:2d:17:ca:
8e:20:07:4e:42:7a:fb:6b:5d:92:f6:f5:b0:42:bc:
e8:6d:ae:9f:c7:b6:2f:9a:79:4c:9f:7b:94:b2:cd:
da:59:56:69:30:86:36:cf:9e:70:4a:95:53:a2:1c:
56:41:e0:29:f8:03:99:05:80:46:25:6f:b3:2e:d0:
cb:c9:07:e1:77:0d:d8:0c:1a:c5:7b:f5:99:54:c9:
cb:48:b9:06:2d:3a:a4:fe:e1:6c:2b:b1:9a:b5:c9:
05:41:1a:6e:9b:b9:58:01:8e:19:90:7c:2b:b9:84:
4d:3e:f1:81:34:3a:89:d8:72:1f:e1:66:10:b0:82:
ef:37:8a:48:6f:68:79:d0:7d:d7:29:6d:ef:67:28:
6e:a2:3e:7f:d6:25:b3:b4:b1:15:e6:78:2c:c1:6d:
1e:94:5d:ab:bc:97:8f:6b:a7:2f:ed:e4:40:71:79:
3d:d0:c8:8b:ce:d0:89:ed:a3:35:43:79:28:6b:38:
a6:ec:82:c2:38:72:88:b1:f1:a3:b0:5c:13:bb:48:
10:1c:0a:91:47:8f:3b:8f:29:9f:cc:5c:ac:02:60:
9a:25:88:d7:f6:fb:34:62:d4:59:c2:1a:99:a2:a9:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C1:43:D0:5B:09:24:74:8B:DB:F1:FC:36:98:13:FB:01:32:F5:56
X509v3 Authority Key Identifier:
keyid:15:B5:95:26:0F:72:C2:22:54:7A:C3:E3:67:F2:C8:87:AE:38:A3:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FbWVJg9ywiJUesPjZ_LIh644o_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/614d64-37d3-4bbc-8f3d-b43cd4d97c8e/1/1-sFD0FsJJHSL2_H8NpgT-wEy9VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/614d64-37d3-4bbc-8f3d-b43cd4d97c8e/1/FbWVJg9ywiJUesPjZ_LIh644o_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.232.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:e6:64:cf:fe:e6:5a:3a:af:52:98:24:11:01:8a:e3:f8:ff:
32:66:6d:94:7c:b8:f4:b2:55:05:35:b1:10:eb:f4:0b:da:19:
1c:93:f4:70:43:b1:6a:62:a4:29:a7:0c:29:cb:85:19:ac:45:
15:48:8a:b0:97:f4:97:68:43:41:e1:ee:71:e1:34:59:06:a4:
c1:dc:18:ec:92:36:1d:0c:4b:40:27:cd:b2:92:f8:fa:5d:70:
b0:13:36:db:32:d8:ff:89:e6:6e:98:8d:43:4f:bc:7c:43:df:
dd:9a:2a:d1:8c:d9:48:87:72:2d:fa:60:e3:33:46:f6:5f:b4:
f5:50:87:4f:cb:79:6b:ab:a9:93:4d:02:00:29:9c:0f:45:34:
88:aa:72:65:3e:81:18:84:c6:97:87:72:06:f9:9a:19:82:8e:
64:80:53:56:7b:c3:d9:d0:1d:79:dd:bf:03:04:b1:58:bf:c5:
7c:1a:8c:ab:56:bc:be:d2:da:77:ec:c3:63:72:82:e5:db:0b:
a5:b0:a6:a4:ed:10:0d:62:32:11:97:d0:13:1e:56:86:3b:60:
83:c3:0b:da:d8:3a:b8:94:3d:c3:f6:8d:8c:d8:51:04:e3:da:
ea:c1:cd:fd:2b:25:49:7c:95:e4:cb:c3:f9:01:be:bb:c6:72:
96:aa:e8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:09 2024 by rpki-client on console-ams.rpki-client.org