Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FANx3VPYo8W3_J8mlGXNi95RStU.roa
File: FANx3VPYo8W3_J8mlGXNi95RStU.roa (raw, json)
Hash identifier: y8OLYDFCuexRqL5DhkJstUWCOL57WD96pLb8POEBc7w=
Subject key identifier: 14:03:71:DD:53:D8:A3:C5:B7:FC:9F:26:94:65:CD:8B:DE:51:4A:D5
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018220756F3A9B845765FC9BD27D2506D311
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FANx3VPYo8W3_J8mlGXNi95RStU.roa
Signing time: Thu 21 Jul 2022 11:12:23 +0000
ROA not before: Thu 21 Jul 2022 11:12:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:75:6f:3a:9b:84:57:65:fc:9b:d2:7d:25:06:d3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jul 21 11:12:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=140371dd53d8a3c5b7fc9f269465cd8bde514ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f7:62:13:29:9a:97:53:9c:c1:a5:1d:38:41:
d8:10:b7:32:88:43:ed:4e:13:62:06:4f:20:c9:07:
f7:b0:9d:cd:b0:f6:34:80:d8:cf:a2:88:42:8e:ed:
e4:86:72:87:44:82:ec:f5:e6:01:a8:80:11:f2:7d:
e0:10:b3:1b:f3:94:4d:02:06:ee:1b:d4:8c:8e:3c:
49:74:79:0a:af:42:7b:b7:00:3e:b7:8c:eb:8c:ea:
f6:a9:bd:6b:84:aa:e7:65:c3:e0:fe:8c:d0:7f:7d:
4d:4d:44:97:da:49:04:02:66:97:4b:33:e8:15:75:
b5:00:55:91:09:34:5a:02:47:34:4a:16:6a:80:db:
94:ec:8d:94:25:5b:a5:e8:c5:4c:70:b9:bd:02:8b:
be:d1:26:f0:ec:d3:c5:bb:67:47:21:b1:1c:b7:c3:
8a:5c:aa:36:27:65:a4:0d:f5:a7:1a:d6:be:49:f5:
81:b1:33:ad:be:71:cf:33:eb:49:dc:a2:47:90:94:
61:c8:9a:80:ae:eb:6b:dc:84:23:ef:7f:73:38:2c:
62:ee:03:b6:c4:46:35:9b:da:3a:35:35:76:19:e6:
52:df:e4:5a:3a:67:16:cf:76:14:59:34:ca:d6:97:
60:98:10:a3:f9:3e:4f:b0:d3:2a:1a:62:34:ae:2f:
f9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:03:71:DD:53:D8:A3:C5:B7:FC:9F:26:94:65:CD:8B:DE:51:4A:D5
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/FANx3VPYo8W3_J8mlGXNi95RStU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:a7:81:97:a8:91:61:3b:86:49:2b:80:f8:e0:3c:c7:91:95:
7f:83:56:82:c7:14:65:49:58:4f:f4:ef:28:a0:d3:42:d1:d3:
f8:01:d4:5c:3f:62:39:f1:d5:1c:9d:16:5c:eb:93:8d:85:0c:
52:01:fb:9d:66:98:bb:18:90:c4:e1:07:b9:49:e7:c2:54:f9:
d9:46:52:41:61:81:ed:bf:54:5d:f8:93:45:7f:cb:27:8b:90:
86:0c:32:94:3c:10:3b:65:35:a8:9c:33:52:b3:54:20:10:a3:
f7:00:75:16:79:8f:8d:66:be:9b:0c:51:c1:e3:05:d6:1e:43:
4e:81:de:43:10:04:42:40:c4:51:f2:d7:0f:b1:32:d0:3c:73:
79:c6:96:3f:25:c4:c1:21:bb:2c:a6:e3:63:82:bf:bc:7d:ed:
de:64:88:13:d8:c3:84:e5:56:db:9a:a6:cc:1f:ba:52:9e:97:
8d:3d:0c:31:fb:ec:bd:2b:e7:98:67:61:f1:f4:c8:1b:1d:37:
04:11:85:6a:c8:4d:72:76:3f:58:7d:12:c4:f8:6c:79:d8:26:
58:e0:04:e1:7f:ec:4b:67:46:19:79:1a:32:a7:09:6f:ad:4b:
00:7c:53:74:c1:67:65:5f:57:43:2c:08:7f:cb:05:29:6a:c6:
c3:d0:bd:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org