Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/F3bTjMLvkSFn7Kdg79a2SzRu8Sg.roa
File: F3bTjMLvkSFn7Kdg79a2SzRu8Sg.roa (raw, json)
Hash identifier: kEDCmkyAulgicwonAfwSx6dYOG0ER2PgM29UaMmheKU=
Subject key identifier: 17:76:D3:8C:C2:EF:91:21:67:EC:A7:60:EF:D6:B6:4B:34:6E:F1:28
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 0185730C99231D7C376F3B2306BB6DCCD468
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/F3bTjMLvkSFn7Kdg79a2SzRu8Sg.roa
Signing time: Mon 02 Jan 2023 15:14:43 +0000
ROA not before: Mon 02 Jan 2023 15:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206492
IP address blocks: 212.25.7.64/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:99:23:1d:7c:37:6f:3b:23:06:bb:6d:cc:d4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 2 15:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1776d38cc2ef912167eca760efd6b64b346ef128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ed:a1:c0:17:1b:d3:3a:fb:9d:88:60:45:ce:
93:fd:bb:9a:21:c7:5c:55:c3:0f:d1:b2:e5:fe:eb:
48:3b:af:fe:1c:56:ab:88:0a:2c:0e:a8:6c:08:f8:
2f:6e:19:1c:e3:a4:dd:13:0c:e3:71:9c:e7:77:39:
b3:fa:37:02:4a:dd:28:94:64:dd:67:8c:66:5d:e1:
1c:12:a0:fb:e6:74:a3:8c:30:46:fe:f9:db:50:14:
ad:2d:ba:34:a2:70:ee:83:13:bd:a6:2e:3c:08:d4:
f8:f4:1c:74:22:b9:31:4b:c4:28:1d:eb:10:d3:e9:
09:0d:3c:19:ae:75:cc:e2:ca:c8:63:a3:12:f0:1a:
dd:69:f5:cd:c0:8a:fa:5b:ee:ea:0c:55:fa:ed:87:
1f:d6:14:76:06:9b:53:5b:b4:db:b2:6d:f9:ca:1f:
e9:be:1d:c7:1a:28:ce:98:0c:80:3c:24:b9:11:58:
5c:18:5b:b2:fa:70:a8:d4:58:d3:bb:f4:46:c8:7b:
bd:86:d5:7d:9c:d9:cd:c2:cd:51:3d:81:93:51:05:
28:64:b0:27:a2:b8:9b:29:5d:31:ad:29:6d:53:6b:
bf:25:97:4d:75:29:6d:28:0c:b5:c3:c5:98:50:d8:
97:e5:d2:98:0f:48:c5:6b:d6:53:c7:6d:ec:a8:a6:
85:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:76:D3:8C:C2:EF:91:21:67:EC:A7:60:EF:D6:B6:4B:34:6E:F1:28
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/F3bTjMLvkSFn7Kdg79a2SzRu8Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.25.7.64/28
Signature Algorithm: sha256WithRSAEncryption
1d:8f:a0:e1:b4:fb:f3:0d:36:f4:7f:5a:fc:86:3d:80:c6:a8:
99:3b:50:27:de:38:82:2b:f7:ab:96:fa:dc:8c:e9:b5:b5:12:
7f:3a:e1:ce:6f:c1:7c:47:82:ad:cb:84:a7:1c:ad:f8:e1:2c:
46:64:ab:d0:d0:53:6c:dc:48:4c:d5:c1:dc:35:5b:b4:ca:66:
d6:22:77:6b:b7:de:94:12:73:90:a9:c3:b4:39:c2:96:df:94:
8d:cb:91:e3:7e:b7:1f:bb:a6:3c:5c:39:fc:4b:ef:cd:7f:a4:
8a:51:4f:0a:2d:97:6d:ea:28:94:df:6e:62:9c:e0:50:72:9b:
e2:26:0f:05:94:09:4f:4f:74:a6:26:ab:bd:b6:56:71:3a:6e:
27:47:03:e2:41:98:1e:3c:41:de:69:b1:06:a6:a4:7b:eb:17:
52:af:2a:10:0b:21:23:d7:7e:87:0d:92:91:18:1b:05:40:f4:
58:8f:0d:75:fb:c8:ad:61:61:c5:ce:88:6b:05:dc:2b:6b:2e:
55:f5:09:9c:5b:10:c3:8c:2f:3e:b1:80:c1:bc:f2:75:51:2b:
3e:10:c3:f9:9e:e5:d2:98:7e:b8:56:2d:d8:db:ca:1f:2a:9a:
38:e0:f9:3a:d8:65:c4:c5:68:cb:92:bd:ed:3d:ce:10:43:78:
49:c7:41:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:54 2025 by rpki-client