Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/__FLyWB3BRQuc8FCSp4KJk4Qqt8.roa
File: __FLyWB3BRQuc8FCSp4KJk4Qqt8.roa (raw, json)
Hash identifier: +h3TNh8fJWmdG/NjTPZg0HA/M5vFebuZ5WC8ZGiqtz0=
Subject key identifier: FF:F1:4B:C9:60:77:05:14:2E:73:C1:42:4A:9E:0A:26:4E:10:AA:DF
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 14CF0199
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/__FLyWB3BRQuc8FCSp4KJk4Qqt8.roa
Signing time: Sat 01 Jan 2022 05:51:56 +0000
ROA not before: Sat 01 Jan 2022 05:51:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205370
IP address blocks: 84.38.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349110681 (0x14cf0199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 1 05:51:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fff14bc9607705142e73c1424a9e0a264e10aadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:23:5b:f5:da:e4:bf:5b:c1:7f:65:fd:bb:
77:a2:54:f2:91:79:1e:c5:cf:a5:f6:fd:a0:80:08:
6c:48:0b:51:bd:3f:a7:52:b7:f8:c7:c8:a4:85:d7:
12:dd:b7:3f:a6:58:2b:7a:17:2e:12:ac:ee:96:bb:
ee:88:ed:92:8d:71:dc:4f:8c:45:95:c4:b9:39:86:
ce:36:f8:76:20:24:19:2b:1c:4d:6c:d2:44:db:2f:
3a:62:e3:bd:55:53:d9:fd:dc:f0:0d:77:e3:04:b8:
18:ba:e0:1b:74:d2:35:4e:11:e0:8a:42:ea:88:66:
aa:8d:7b:07:41:b4:c5:a4:2b:30:ec:8b:27:49:09:
8e:f4:f1:78:5d:fa:2c:94:31:97:c5:09:5e:da:70:
9c:f4:72:ed:89:a2:1f:cc:6a:7c:f7:ae:a9:24:7e:
80:66:12:fd:8d:07:ea:6e:65:43:df:0f:c1:e3:7e:
d8:68:7c:b5:8d:1f:9c:8a:6c:6e:c0:68:01:34:8e:
77:63:2c:55:4b:9a:c2:fb:75:bf:74:a1:c4:65:9c:
29:c6:ea:21:17:33:d0:e3:5b:75:8f:64:a4:b7:42:
e2:2a:e2:59:36:eb:ac:e2:7d:8c:3f:3a:93:d8:9c:
97:e7:0f:13:4b:e1:d3:9a:d0:16:c4:c7:bb:a5:aa:
b2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F1:4B:C9:60:77:05:14:2E:73:C1:42:4A:9E:0A:26:4E:10:AA:DF
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/__FLyWB3BRQuc8FCSp4KJk4Qqt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.141.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c0:f4:93:d4:44:b1:fc:92:b0:fc:b4:25:de:f2:e6:14:5c:
3d:a6:c4:3a:14:49:e3:12:72:ec:ec:74:4e:bb:64:b4:ce:83:
e1:89:c8:02:ce:a8:c0:5e:07:20:99:df:d7:df:48:ae:37:d0:
35:d2:6a:1c:3d:3e:41:72:1d:43:b7:ae:c4:58:61:01:58:ce:
3f:4f:84:31:28:33:07:e6:63:c6:77:2f:d1:70:b9:ff:cc:81:
77:3e:80:b0:d3:ab:1f:c3:06:fa:1f:25:49:02:03:1c:37:b5:
96:4e:5f:71:5a:d9:22:b9:4b:e4:ef:73:27:62:00:69:67:44:
b8:f6:ab:11:21:de:77:22:be:7e:e0:8b:2b:dd:7e:b1:3a:fd:
e9:6e:9a:78:11:33:1e:41:77:85:f5:24:a0:4b:d8:9a:da:cf:
ac:cb:ea:88:02:85:73:73:da:20:8b:cb:f6:c8:53:08:01:d1:
b1:7d:f9:14:4f:a5:c1:b6:40:c8:66:93:53:48:02:ae:56:1f:
94:e9:7f:bd:72:bd:c9:87:3c:10:90:38:6a:b1:d7:e7:19:a7:
87:01:9b:6d:57:29:6b:65:df:f2:ea:b2:6f:dd:8d:7e:66:ee:
a2:27:bd:2e:b1:4f:c8:88:0d:51:03:df:b7:9d:bc:6d:e5:27:
1f:63:8b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org