Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/FD7EkVc1HRk8bpop_642smk2DAI.roa
File: FD7EkVc1HRk8bpop_642smk2DAI.roa (raw, json)
Hash identifier: xIRBVFwsrc/Dp1kGfH7AKOeGGlD29Rx2nhwk05PxR60=
Subject key identifier: 14:3E:C4:91:57:35:1D:19:3C:6E:9A:29:FF:AE:36:B2:69:36:0C:02
Certificate issuer: /CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Certificate serial: 0FDF7375
Authority key identifier: 12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/FD7EkVc1HRk8bpop_642smk2DAI.roa
Signing time: Sat 01 Jan 2022 06:52:55 +0000
ROA not before: Sat 01 Jan 2022 06:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 185.114.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266302325 (0xfdf7375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Validity
Not Before: Jan 1 06:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=143ec49157351d193c6e9a29ffae36b269360c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7a:50:1a:75:d1:4e:c3:cf:88:d2:e8:9b:49:
d5:fc:52:66:32:9b:e5:84:47:5b:e3:41:cd:22:64:
7f:69:8e:53:5c:7a:f8:fd:80:42:76:7e:02:a6:b6:
0f:4e:df:54:62:a1:e1:7d:15:e7:26:bf:d4:74:f7:
ce:41:a6:bd:e3:a5:ba:ba:a4:f2:ec:bf:b9:13:25:
35:81:74:55:ae:33:5f:7b:e5:c0:f1:d4:0f:58:ae:
88:cd:70:94:c5:23:4f:2e:12:d5:a9:84:25:9e:b2:
79:60:36:37:5e:e4:7a:af:6f:59:3b:26:d7:d1:7f:
30:a2:24:2c:e4:ae:5f:f7:42:a6:3f:7f:5e:f5:73:
f4:d2:bc:56:0a:89:27:ba:56:38:89:9d:46:ab:a4:
73:27:d6:0d:d3:19:99:04:e3:7d:32:87:2e:c3:a6:
3d:c5:29:87:b6:55:1f:10:29:d1:96:02:62:2c:db:
55:4e:74:88:91:96:72:03:17:36:42:b5:9e:9a:f2:
f5:9c:e4:36:2d:43:7a:af:98:9d:52:44:50:bb:4f:
45:53:56:4a:1e:1b:21:13:49:6a:35:3b:9a:87:aa:
7c:4a:4f:27:9b:22:75:fe:a1:c3:d5:46:56:43:41:
b6:6f:ba:bf:fe:e3:a2:d2:a6:cf:eb:8b:7d:93:04:
be:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3E:C4:91:57:35:1D:19:3C:6E:9A:29:FF:AE:36:B2:69:36:0C:02
X509v3 Authority Key Identifier:
keyid:12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/FD7EkVc1HRk8bpop_642smk2DAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/EhSn4qjHASMlrpc-0aK7oFsrucE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d5:ca:0a:a0:6b:48:5a:9f:78:c5:39:28:a8:9d:eb:7c:b9:
aa:30:56:c6:24:f3:61:1f:89:60:f6:be:90:24:c0:55:c0:70:
fd:08:47:af:14:d7:15:0e:52:61:f9:87:d7:3b:77:3d:43:bf:
4c:92:73:53:ba:74:b4:11:7e:dc:c3:f5:b6:51:75:f6:11:3a:
55:ee:81:07:d1:a3:84:45:71:1d:b2:b8:c2:ba:c8:6f:43:02:
89:20:6a:ff:c1:41:d0:da:f9:80:64:d6:bb:2e:02:b3:84:33:
e7:4f:b1:31:0d:e0:35:2b:a9:9f:b5:9c:ad:96:10:e0:13:2a:
76:16:a3:05:bd:d1:a7:1b:fb:26:18:2f:8e:43:55:15:4b:11:
32:8f:af:9d:3c:ad:fe:43:2e:ee:78:11:86:a5:25:e8:9a:7b:
ce:50:e2:b3:ca:2e:54:53:8a:c4:90:14:76:6d:a5:90:ba:ea:
fd:44:f4:f3:0a:99:d9:42:1e:b1:f0:d4:8d:79:5a:3a:aa:3f:
ab:46:b5:23:75:83:42:08:c0:cd:af:62:43:e6:4e:45:02:6f:
3b:7a:fe:4f:90:26:90:f3:d3:56:20:8a:7d:3e:f3:6f:27:44:
f2:86:95:31:33:9c:30:7c:9c:b9:8d:7f:e1:fa:8c:8a:c2:f2:
77:f7:b0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:54 2023 by rpki-client on console-fra.rpki-client.org