Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/fwOlpZxzyBp7MM62gQ0xfHbPvwg.roa
File: fwOlpZxzyBp7MM62gQ0xfHbPvwg.roa (raw, json)
Hash identifier: zwqtUGw1uMZS+vqG/WdpF+dG7E9Y4xv4yNLbx88WLGI=
Subject key identifier: 7F:03:A5:A5:9C:73:C8:1A:7B:30:CE:B6:81:0D:31:7C:76:CF:BF:08
Certificate issuer: /CN=08b0f12f115ad40f2c2b4aad454d2e43611c9a06
Certificate serial: 0350AAE2
Authority key identifier: 08:B0:F1:2F:11:5A:D4:0F:2C:2B:4A:AD:45:4D:2E:43:61:1C:9A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/fwOlpZxzyBp7MM62gQ0xfHbPvwg.roa
Signing time: Sat 01 Jan 2022 14:01:23 +0000
ROA not before: Sat 01 Jan 2022 14:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29240
IP address blocks: 195.225.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55618274 (0x350aae2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b0f12f115ad40f2c2b4aad454d2e43611c9a06
Validity
Not Before: Jan 1 14:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f03a5a59c73c81a7b30ceb6810d317c76cfbf08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3a:90:5c:9b:34:0c:22:b0:d2:44:e1:00:8f:
a0:64:b9:98:62:b6:00:35:d2:d6:96:5d:a8:34:84:
da:da:1a:d9:84:4c:91:f5:ec:15:55:7b:59:85:55:
e3:f3:84:86:e8:28:06:5a:61:e9:67:8a:1a:fd:8c:
fa:10:ec:65:53:28:c2:8e:11:88:69:ac:9e:cc:30:
34:59:ab:96:11:6c:d9:12:1b:ee:76:9e:cf:ef:7f:
b4:bc:47:1b:25:55:7f:6c:0d:b1:5e:72:f2:5a:87:
6c:c4:10:6d:6c:96:41:65:38:24:a6:9e:1a:c4:4d:
3e:59:32:c3:92:d4:a4:c4:6f:f8:0a:a7:3a:89:94:
d0:f5:6f:16:5a:bf:73:7e:ee:5c:6f:06:30:73:1d:
3f:c8:e3:86:91:93:d5:60:8c:f5:5f:28:86:ae:e5:
8c:e2:36:9d:6f:44:10:ef:ed:17:93:31:c3:f8:98:
07:21:80:ea:be:99:12:aa:44:5c:ff:7b:f2:10:76:
a8:5a:7d:c5:95:9f:0f:c5:1d:54:2a:35:08:8e:68:
fd:95:2e:e4:ea:2a:b1:a2:0b:e7:f1:4a:37:8c:c1:
95:54:ea:a3:11:c3:06:15:d3:6c:9b:95:65:37:d8:
5d:5c:ee:46:c8:7e:36:cd:09:09:7b:0f:b4:ac:5f:
03:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:03:A5:A5:9C:73:C8:1A:7B:30:CE:B6:81:0D:31:7C:76:CF:BF:08
X509v3 Authority Key Identifier:
keyid:08:B0:F1:2F:11:5A:D4:0F:2C:2B:4A:AD:45:4D:2E:43:61:1C:9A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/fwOlpZxzyBp7MM62gQ0xfHbPvwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/503603-1a5d-4900-9829-48dea1021a69/1/CLDxLxFa1A8sK0qtRU0uQ2EcmgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.176.0/22
Signature Algorithm: sha256WithRSAEncryption
04:1d:63:50:ab:5a:f6:5f:1a:87:81:90:66:0d:c4:50:34:99:
5a:30:99:30:57:a1:94:d3:53:1a:b8:1b:bc:16:65:33:b4:1e:
19:72:2f:4b:28:56:ca:06:84:f9:8f:9a:28:d1:89:44:6b:f0:
5b:b1:37:fb:95:53:73:17:d5:e2:5a:91:39:31:ec:b2:a8:82:
88:bc:1b:a0:b7:e2:ab:aa:77:33:25:56:1c:35:f8:94:03:f5:
5a:09:15:67:f4:30:8e:fc:01:f4:86:eb:b8:57:04:57:7d:1a:
9c:e3:ea:a6:94:23:4f:20:32:55:80:32:f3:40:17:03:a0:47:
e6:06:82:0d:b3:82:8f:c8:83:5f:f9:a0:61:9b:17:df:75:ec:
8b:62:94:00:c5:41:ec:8c:6b:21:f4:c4:ff:57:94:06:6f:15:
43:0e:c0:d9:e5:1f:e1:c9:ed:9e:16:ee:2c:3f:04:f0:d7:f0:
10:5d:c0:c2:71:f5:c2:1f:cd:3e:de:92:2b:f8:de:a0:b5:f8:
90:67:83:33:89:a3:b2:98:fb:29:c2:71:ca:9e:04:08:e3:7c:
57:f1:02:53:d8:b8:1e:86:c1:7a:2e:86:91:4b:3f:b8:68:e6:
97:d4:ce:24:6f:fd:32:fa:14:e1:0f:0a:94:c0:8a:15:1f:8d:
c8:0b:a0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org