Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/FZ0Z39o281Bq9cPik_qtACCiW0U.roa
File: FZ0Z39o281Bq9cPik_qtACCiW0U.roa (raw, json)
Hash identifier: rN8Exq9HoFSY00gqQowsf/199cOEdISgAj9OYuSa0oY=
Subject key identifier: 15:9D:19:DF:DA:36:F3:50:6A:F5:C3:E2:93:FA:AD:00:20:A2:5B:45
Certificate issuer: /CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Certificate serial: 03AE8803
Authority key identifier: BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/FZ0Z39o281Bq9cPik_qtACCiW0U.roa
Signing time: Sat 01 Jan 2022 12:05:27 +0000
ROA not before: Sat 01 Jan 2022 12:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57643
IP address blocks: 185.188.164.0/22 maxlen: 22
185.174.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61769731 (0x3ae8803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4703e08ca0d6a310cbc643ffcb307ff6cdc65c
Validity
Not Before: Jan 1 12:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=159d19dfda36f3506af5c3e293faad0020a25b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ba:4a:16:2d:d3:93:57:81:f8:b2:6c:6e:bf:
32:50:24:5d:81:db:ee:32:70:ca:2b:7f:29:45:66:
87:5f:ac:e2:cf:09:b8:f2:7f:97:cb:27:36:4a:4a:
5a:f2:9b:42:a5:db:50:b1:23:8d:6b:4e:34:2d:41:
62:f1:1a:22:f9:20:00:a5:3d:02:63:2b:12:2b:bb:
2d:ef:dc:ab:8b:f3:1d:af:d7:80:93:dc:55:50:7a:
32:76:18:78:0c:b2:1e:89:92:05:9c:59:ac:35:2f:
2a:29:66:c4:a9:b8:66:c8:79:16:9a:18:5f:85:97:
f2:23:34:3f:31:8a:7d:aa:23:73:1d:1f:a2:35:7e:
3f:22:dc:03:f1:43:3d:0e:42:6d:b1:4a:1b:ec:b3:
13:7f:d2:cc:58:1b:78:fa:ac:96:9e:5c:34:67:75:
fc:cf:ee:0b:eb:5e:7e:76:82:00:f7:b0:80:61:f3:
5a:73:99:ab:11:c4:75:3e:6e:d4:72:8b:3c:a1:4a:
80:5d:68:31:78:ce:9f:f0:ab:78:1d:15:89:2d:9d:
c4:05:59:2f:be:ea:f2:fb:45:14:df:37:15:ec:8f:
86:2b:c6:df:6d:fc:24:eb:39:12:9d:d0:90:39:7b:
33:7e:e8:2a:47:6e:4e:0f:a9:ff:ac:bb:e1:79:86:
70:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9D:19:DF:DA:36:F3:50:6A:F5:C3:E2:93:FA:AD:00:20:A2:5B:45
X509v3 Authority Key Identifier:
keyid:BC:47:03:E0:8C:A0:D6:A3:10:CB:C6:43:FF:CB:30:7F:F6:CD:C6:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/FZ0Z39o281Bq9cPik_qtACCiW0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/863ba0-0476-43d7-8be7-66eda228fec7/1/vEcD4Iyg1qMQy8ZD_8swf_bNxlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.120.0/22
185.188.164.0/22
Signature Algorithm: sha256WithRSAEncryption
45:0c:02:27:db:13:15:73:d4:75:67:52:ca:5c:a3:3e:10:0d:
75:eb:63:5b:4f:e5:59:e8:90:3f:bd:96:aa:f1:d0:19:27:4f:
64:01:1f:42:34:9b:36:9a:98:52:08:68:b2:35:96:a6:9a:e1:
c8:7a:9e:5c:49:1b:32:d1:03:a6:ec:58:a5:4a:07:f8:dd:2c:
11:5f:d1:93:4c:b7:ba:4c:5f:03:60:8c:42:f6:11:36:91:cc:
09:ae:56:a7:fa:bf:33:b1:23:f6:cc:ce:ce:60:9d:7d:c4:b5:
68:27:16:2e:c9:cc:5a:e6:07:0d:fb:8d:1d:2e:db:18:8a:a2:
77:76:a2:a0:ac:6c:ea:f5:8e:b4:98:26:84:47:c8:69:07:f5:
bc:6d:45:72:32:43:ee:7f:5d:95:86:19:9e:04:d4:8d:d6:64:
01:bc:e4:a9:d4:20:7e:84:0a:a1:49:ec:fe:65:40:83:9b:3d:
86:45:f3:49:53:31:58:8e:fa:65:81:98:7e:8d:c4:d2:18:f8:
10:b9:06:44:d6:2c:0a:c6:14:81:39:5d:4d:87:88:e6:13:72:
f4:2c:c9:41:c8:c2:54:6f:a1:9d:ee:f5:a6:c5:d9:35:d6:f4:
4e:21:ee:a3:cc:02:52:91:85:c2:a4:47:72:0f:0d:d6:31:5e:
e9:34:08:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:52 2024 by rpki-client on console-fra.rpki-client.org