Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/_FQPFQ65xpMFfiAP9OQOuiWswMM.roa
File: _FQPFQ65xpMFfiAP9OQOuiWswMM.roa (raw, json)
Hash identifier: VgidfhybWXSvKnwsIhub+KnlYIZHhwISCc2yaxxRXUc=
Subject key identifier: FC:54:0F:15:0E:B9:C6:93:05:7E:20:0F:F4:E4:0E:BA:25:AC:C0:C3
Certificate issuer: /CN=f440e5eba2f8bfc8fe8fe56cc88a4289652390ba
Certificate serial: 01617A
Authority key identifier: F4:40:E5:EB:A2:F8:BF:C8:FE:8F:E5:6C:C8:8A:42:89:65:23:90:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9EDl66L4v8j-j-VsyIpCiWUjkLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/_FQPFQ65xpMFfiAP9OQOuiWswMM.roa
Signing time: Wed 12 Jan 2022 15:32:49 +0000
ROA not before: Wed 12 Jan 2022 15:32:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 91.192.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90490 (0x1617a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f440e5eba2f8bfc8fe8fe56cc88a4289652390ba
Validity
Not Before: Jan 12 15:32:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc540f150eb9c693057e200ff4e40eba25acc0c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:02:b8:e7:12:6d:7c:98:ae:80:7a:23:c5:e2:
66:09:62:84:8a:68:1d:e0:ab:d4:4a:2b:53:3c:32:
c9:61:77:5d:f6:f8:19:11:42:0e:f1:9b:7f:61:9f:
9c:43:26:9c:00:4b:1d:50:b2:7b:ae:2a:89:db:90:
56:a5:cc:90:62:e1:e6:bf:9a:07:1b:c7:72:03:5f:
dc:84:be:1b:99:4d:a4:a7:93:22:21:b4:ff:1c:42:
64:af:1c:ba:89:ed:4c:b9:10:33:3e:57:8b:f4:da:
11:d3:7d:55:f8:57:d6:87:46:38:8d:1d:9e:60:85:
96:ad:7c:39:6b:b3:b5:30:56:e9:cd:d7:90:7a:63:
b1:68:82:1c:04:19:71:bc:f9:af:f8:5f:b0:d9:72:
6d:22:29:17:7c:22:71:67:c2:c4:67:72:82:63:70:
4a:cb:7c:23:4d:d5:98:61:8a:89:44:bc:0e:12:d7:
7a:6b:50:c6:07:82:18:b2:96:ff:6b:8a:5d:5e:47:
a3:04:04:de:d4:2b:b1:b4:11:a2:ca:02:71:a2:05:
72:88:fe:fd:af:10:df:c0:5b:f3:49:35:7b:6f:4e:
c4:71:0d:d4:d0:2c:46:77:24:48:f4:7b:d3:e9:d0:
84:c8:34:b1:dd:e8:48:18:9e:78:bc:81:07:6b:0f:
41:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:54:0F:15:0E:B9:C6:93:05:7E:20:0F:F4:E4:0E:BA:25:AC:C0:C3
X509v3 Authority Key Identifier:
keyid:F4:40:E5:EB:A2:F8:BF:C8:FE:8F:E5:6C:C8:8A:42:89:65:23:90:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9EDl66L4v8j-j-VsyIpCiWUjkLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/_FQPFQ65xpMFfiAP9OQOuiWswMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de8662-993f-47f7-a27f-00b92c1c1ef4/1/9EDl66L4v8j-j-VsyIpCiWUjkLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.240.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:12:3b:ed:bc:85:79:d9:5d:7d:9f:8e:b2:bb:2c:4d:84:55:
22:c0:f9:00:02:59:bd:6c:2a:b9:ec:4a:55:c1:fc:02:1c:e3:
d7:ce:b0:5b:5c:4c:d7:09:bf:26:c8:02:60:22:e6:13:fe:0a:
2b:47:26:c0:78:80:bf:c0:33:35:cc:0d:dc:0f:d5:2d:c2:d5:
40:20:c4:da:a1:85:a5:2b:c3:70:e0:77:67:02:6f:14:9a:c8:
4c:90:d7:50:2d:2f:7f:f3:3b:b5:3a:08:99:fb:c9:8a:9e:7b:
ec:1f:fb:08:e4:83:ab:bd:cc:74:ca:9e:7d:d9:2f:72:3b:0a:
2d:2a:ec:7b:99:cb:73:31:a0:ba:b4:f3:04:44:70:20:d6:a5:
5b:fb:62:4f:ef:12:9a:86:7f:8e:2e:ad:de:0b:6e:65:33:fb:
9d:c6:51:ed:68:4d:4b:dc:98:83:f1:79:d1:16:2d:af:c0:04:
e1:46:06:51:22:54:66:60:f0:62:d4:83:6a:4e:d8:6b:cf:8c:
5a:51:cf:32:b8:d8:20:7b:31:af:f6:41:31:b9:82:51:31:84:
6d:f7:e5:d9:c2:47:21:6e:75:dd:a0:2c:e6:a9:2e:27:ca:67:
a9:ed:fd:e3:7a:ba:ac:ca:a3:92:47:56:bd:be:c4:e5:b2:67:
3a:5a:66:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:49 2023 by rpki-client on console-ams.rpki-client.org