Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/_6F87UWi64sjC6qScIxXsIGineU.roa
File: _6F87UWi64sjC6qScIxXsIGineU.roa (raw, json)
Hash identifier: q2CT2LjSQERCQZLfBpmKR7iuVx2E5rgVBtcsGpRzhCk=
Subject key identifier: FF:A1:7C:ED:45:A2:EB:8B:23:0B:AA:92:70:8C:57:B0:81:A2:9D:E5
Certificate issuer: /CN=fb1a810e3ab1964b44ecb3778340b266dbda1126
Certificate serial: 31B81B1D
Authority key identifier: FB:1A:81:0E:3A:B1:96:4B:44:EC:B3:77:83:40:B2:66:DB:DA:11:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xqBDjqxlktE7LN3g0CyZtvaESY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/_6F87UWi64sjC6qScIxXsIGineU.roa
Signing time: Fri 01 Apr 2022 08:45:51 +0000
ROA not before: Fri 01 Apr 2022 08:45:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 192.40.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 834149149 (0x31b81b1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1a810e3ab1964b44ecb3778340b266dbda1126
Validity
Not Before: Apr 1 08:45:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffa17ced45a2eb8b230baa92708c57b081a29de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:69:80:ba:1b:f1:bf:51:7f:b4:2d:00:c9:
d4:7a:72:f1:39:83:ae:81:f1:5f:74:b1:89:d3:82:
34:f6:54:2f:d6:71:15:b4:9b:53:1c:5f:52:bb:63:
92:9b:ea:b1:1f:c7:a2:ec:84:fd:83:07:4d:9f:fa:
b0:87:f8:d6:cd:6b:57:a3:67:0b:c7:55:72:f1:f6:
f4:2a:1f:aa:85:6a:7c:f5:54:1c:91:5a:0a:05:93:
1d:cb:7f:c8:f7:1f:00:db:90:99:3c:57:9f:72:54:
c7:75:6d:c8:10:b5:e8:6e:91:de:3b:bd:a7:ba:ce:
11:13:ac:88:2f:22:28:0c:a0:ea:e8:d1:71:8c:e1:
52:ce:b3:a5:22:98:b9:a4:0a:c1:d5:62:51:ca:b1:
a0:f6:0e:f9:ae:6e:78:91:19:fd:de:a7:b9:59:0f:
1f:17:86:b6:cf:22:7c:40:80:b4:1c:dd:56:1d:08:
ab:40:31:4d:17:64:48:74:53:c6:6f:67:c2:30:41:
79:cb:1b:48:d1:d7:a1:48:1a:f2:dc:4a:96:ef:09:
60:28:cc:ef:0e:60:38:76:79:4c:96:4e:a4:a8:33:
e1:75:fd:65:f7:8e:11:d6:ee:88:d5:b9:36:92:8f:
e2:33:04:6e:c1:76:99:00:e6:33:15:60:a7:0f:d7:
a9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A1:7C:ED:45:A2:EB:8B:23:0B:AA:92:70:8C:57:B0:81:A2:9D:E5
X509v3 Authority Key Identifier:
keyid:FB:1A:81:0E:3A:B1:96:4B:44:EC:B3:77:83:40:B2:66:DB:DA:11:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xqBDjqxlktE7LN3g0CyZtvaESY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/_6F87UWi64sjC6qScIxXsIGineU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9d606e-08a6-4f4a-b980-b5abf440e893/1/1-xqBDjqxlktE7LN3g0CyZtvaESY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.79.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:7f:27:5e:ff:25:44:6c:05:fd:22:71:8a:01:89:a8:16:b3:
e1:ec:96:c6:ac:08:84:bb:43:e1:9e:74:a2:fa:f1:99:00:fb:
9d:26:a6:04:94:2a:40:53:a0:8a:32:21:f7:b8:7c:ee:07:d0:
87:77:f5:97:1a:47:5c:72:e8:30:5d:b3:22:1e:52:eb:2b:2c:
18:0b:4e:82:ac:6b:32:9e:e5:e8:e2:6d:25:e4:de:af:10:8a:
55:0d:20:1b:0e:a1:c4:e2:23:9c:d3:e2:f6:db:b4:bf:78:9a:
93:15:2c:27:18:8a:0e:0e:c7:2f:90:b4:fc:b9:f3:03:6c:ad:
27:d5:dd:fd:7f:96:a4:a7:7c:f0:82:be:80:27:22:9b:3d:b4:
bc:41:1c:4e:c9:f9:9e:91:da:73:da:1d:43:bf:72:fd:ac:86:
27:33:2e:63:7b:7a:ba:c4:a3:3d:51:04:11:be:67:60:9d:dc:
a1:02:22:d5:22:92:f9:6f:88:b6:bb:ca:13:9e:f5:46:bc:04:
f1:13:81:59:40:57:ef:7c:9f:e7:99:d7:13:85:24:1d:d5:82:
07:16:5c:ab:90:b6:08:ec:5e:09:4b:04:76:c6:2f:8d:4b:6d:
e2:61:b2:ae:53:56:01:a5:7b:f9:28:91:39:aa:d5:eb:9e:a6:
1e:38:d5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org