Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/503458-1dc4-4102-9427-d6398183525d/1/Fb2Th0DEQbx_uz_DCf5vEFScPC8.roa
File: Fb2Th0DEQbx_uz_DCf5vEFScPC8.roa (raw, json)
Hash identifier: /Uu+eScB0hcPyQ9P7do8CKCHM9CjXv3nMEz1byVjp5s=
Subject key identifier: 15:BD:93:87:40:C4:41:BC:7F:BB:3F:C3:09:FE:6F:10:54:9C:3C:2F
Certificate issuer: /CN=eb0d53c87071484971aedfd90ca6ecc656a96e4c
Certificate serial: 03D965A8
Authority key identifier: EB:0D:53:C8:70:71:48:49:71:AE:DF:D9:0C:A6:EC:C6:56:A9:6E:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6w1TyHBxSElxrt_ZDKbsxlapbkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/503458-1dc4-4102-9427-d6398183525d/1/Fb2Th0DEQbx_uz_DCf5vEFScPC8.roa
Signing time: Sat 01 Jan 2022 06:57:29 +0000
ROA not before: Sat 01 Jan 2022 06:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203215
IP address blocks: 192.166.11.0/24 maxlen: 24
192.166.10.0/24 maxlen: 24
192.166.9.0/24 maxlen: 24
192.166.8.0/22 maxlen: 22
192.166.8.0/24 maxlen: 24
2a0c:7ac0::/29 maxlen: 29
2a0c:7ac0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64578984 (0x3d965a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb0d53c87071484971aedfd90ca6ecc656a96e4c
Validity
Not Before: Jan 1 06:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15bd938740c441bc7fbb3fc309fe6f10549c3c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:ff:5b:a4:4d:dd:4e:5a:5a:7a:23:f2:e6:
96:d7:a3:c4:92:a9:89:a7:c1:57:08:9f:05:a8:b1:
db:b7:bc:8f:d0:23:a6:e9:1a:dd:46:1b:8e:27:91:
12:bb:db:a6:a8:9d:7c:9b:01:56:be:01:25:26:22:
37:d4:02:0f:44:9b:ce:05:90:f7:60:cd:3b:dd:c9:
52:43:65:b2:69:58:08:0f:64:30:8f:43:7e:4a:a7:
da:c9:94:ed:4f:10:1e:f1:f9:67:84:db:d4:fd:cb:
1d:07:ee:e0:15:35:b7:86:dc:06:2d:46:a6:e0:4a:
cf:ce:52:ae:f9:87:3d:4f:e0:06:ee:85:28:40:90:
d8:49:f2:7b:c2:37:45:4b:a3:93:f4:1f:a2:9a:6e:
df:12:75:55:1a:e1:30:1c:1c:23:f5:7c:8c:14:9b:
19:6d:10:94:4b:a9:97:2c:58:d2:de:16:48:93:26:
41:86:47:92:01:8b:89:a4:68:e0:34:48:e1:1d:95:
d0:4c:11:c8:23:fa:df:ac:b1:02:24:6a:a6:fe:fb:
b5:bf:1a:f1:6f:94:b4:45:b5:17:66:af:96:b7:17:
57:95:69:2f:1a:18:ef:a2:73:ba:69:62:72:54:9a:
0a:24:24:7b:a0:9e:29:e9:99:78:cf:9f:7c:2a:dd:
a5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BD:93:87:40:C4:41:BC:7F:BB:3F:C3:09:FE:6F:10:54:9C:3C:2F
X509v3 Authority Key Identifier:
keyid:EB:0D:53:C8:70:71:48:49:71:AE:DF:D9:0C:A6:EC:C6:56:A9:6E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6w1TyHBxSElxrt_ZDKbsxlapbkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/503458-1dc4-4102-9427-d6398183525d/1/Fb2Th0DEQbx_uz_DCf5vEFScPC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/503458-1dc4-4102-9427-d6398183525d/1/6w1TyHBxSElxrt_ZDKbsxlapbkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.8.0/22
IPv6:
2a0c:7ac0::/29
Signature Algorithm: sha256WithRSAEncryption
7c:a9:48:a6:44:93:74:8d:08:cf:8f:53:bd:2f:c2:88:9c:ca:
ca:d4:a3:35:5e:9f:05:7e:bb:47:02:55:06:8d:94:7d:b4:5e:
cb:ce:22:51:9e:bb:0e:4e:ed:c1:97:45:14:7a:b3:85:9e:0f:
6d:d3:b5:a6:1f:b3:09:9f:37:0b:93:53:a5:c3:3a:cc:8b:e4:
50:1d:5b:b8:43:2b:30:35:76:ef:14:a0:29:88:e5:d3:db:8c:
e4:11:c1:c1:20:05:8b:79:c5:ad:4a:10:7e:01:c3:86:dd:76:
32:6c:91:48:cc:e0:ef:57:58:bc:1e:14:31:7e:20:e1:28:8e:
d8:07:17:4d:54:7a:09:b6:c3:78:48:34:08:de:d4:cc:86:56:
c2:71:82:8e:73:33:86:66:1c:0b:22:8c:12:1a:2a:51:de:94:
2b:1c:63:39:e2:b3:54:cd:6e:4f:4f:60:e5:5f:25:6c:a7:dd:
19:31:81:be:c8:1c:93:37:73:c7:c2:e6:f7:ef:70:d9:80:1e:
65:1b:11:3e:15:dd:34:49:0d:5b:0c:c1:65:78:12:5b:6b:30:
c0:f4:38:a5:2d:88:d2:4e:66:a8:d8:0c:96:12:a5:b5:29:74:
f8:87:d2:15:78:be:2a:e8:20:7b:fd:6d:9c:d2:e3:f3:52:75:
37:f7:1a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:16 2023 by rpki-client on console-fra.rpki-client.org