Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/FK_6Lh24SFVm7PH1-U-eCVQ3d_0.roa
File: FK_6Lh24SFVm7PH1-U-eCVQ3d_0.roa (raw, json)
Hash identifier: oSHnftkv9eggXPRlp0rLoXJgf97WnWJnAJnA6vXdO7M=
Subject key identifier: 14:AF:FA:2E:1D:B8:48:55:66:EC:F1:F5:F9:4F:9E:09:54:37:77:FD
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 01848F25498BDC95921DC2A171DEF2EE9D40
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/FK_6Lh24SFVm7PH1-U-eCVQ3d_0.roa
Signing time: Sat 19 Nov 2022 09:08:16 +0000
ROA not before: Sat 19 Nov 2022 09:08:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 185.102.76.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8f:25:49:8b:dc:95:92:1d:c2:a1:71:de:f2:ee:9d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Nov 19 09:08:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14affa2e1db8485566ecf1f5f94f9e09543777fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6f:cf:03:a8:f4:06:8d:d3:5e:fe:6c:79:c7:
30:01:fb:9d:90:72:b7:bb:ae:fa:09:58:3c:01:bc:
ed:69:0a:fd:4c:4b:7f:c9:1e:18:f0:29:4f:34:3a:
28:97:cb:e9:cf:32:6d:b3:49:c3:c7:a8:61:8d:da:
33:3d:4c:52:9e:0b:61:ec:6a:c0:ec:3f:58:8d:f9:
88:7e:af:22:11:c9:60:86:5f:00:cc:31:c5:2a:3c:
b0:8e:40:c7:cf:c6:16:c6:96:1b:e7:74:d1:19:a2:
e7:47:00:11:82:ae:a9:92:99:89:6b:39:dd:8d:1f:
0a:5a:a2:40:f9:fb:29:24:99:b9:a0:40:9f:4f:aa:
d7:95:d5:b7:75:60:62:75:58:bb:d5:a2:70:9a:55:
ce:4a:05:87:74:fe:cf:16:75:5a:b4:25:ca:c3:94:
43:bc:8f:33:1c:f7:d1:ba:dd:8f:a9:fe:c2:37:8d:
1d:6d:c0:f8:48:62:2e:52:c4:09:75:4d:35:26:90:
6f:ab:62:b2:0c:d9:80:37:86:a4:a8:12:e3:ab:b7:
0b:4f:fe:08:66:35:ec:5e:12:70:ac:2b:52:f1:0f:
84:59:60:39:05:c6:5a:64:b4:22:b9:59:9c:d2:49:
2f:b8:09:57:e8:59:d0:bb:74:d4:72:69:d2:11:6e:
79:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AF:FA:2E:1D:B8:48:55:66:EC:F1:F5:F9:4F:9E:09:54:37:77:FD
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/FK_6Lh24SFVm7PH1-U-eCVQ3d_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.76.0/22
Signature Algorithm: sha256WithRSAEncryption
34:a0:4f:67:99:b9:8f:4f:18:34:09:aa:d6:60:0d:52:41:53:
6f:80:2d:2c:57:46:cc:e7:8a:fe:08:da:22:4a:76:0a:a9:00:
ae:60:4e:b4:51:12:f0:a8:03:b9:48:8c:57:1d:7a:3e:d2:98:
3a:c4:7c:ca:a2:5d:f1:a5:c1:a1:7e:cb:8a:de:0e:04:68:84:
a2:d2:3f:9b:f3:b2:e5:f2:15:bd:58:c6:40:3c:28:d3:e0:ab:
9f:3f:c3:9f:d1:31:9f:ad:3b:2d:e9:e1:ee:3c:2e:d6:25:62:
7b:d0:c5:2f:c1:95:97:44:b0:2e:3e:10:0e:1c:26:6a:f2:9d:
74:fd:b9:59:a4:a5:ca:6e:58:f3:57:7d:8a:26:55:19:32:66:
db:da:df:a9:42:cd:80:e3:ee:8d:64:9c:ec:f9:07:56:08:ee:
f8:20:a4:6b:93:ec:c3:8c:fb:9c:bf:6b:e6:0f:75:ca:d2:15:
08:dd:e1:98:97:1a:90:a2:e6:34:2e:06:bf:de:49:25:f6:3e:
f3:ec:f3:64:9c:5b:38:e6:25:46:46:b7:58:0f:8b:22:4e:2e:
6b:19:54:3a:98:45:67:95:11:6e:61:0d:bc:93:7a:bf:1e:80:
70:e5:01:1f:49:d3:70:bb:59:bc:6a:cb:50:dc:a9:a8:12:bf:
43:4a:ef:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org