Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/FK4LxnOxNQ-ZZuJV6zi6_86wiY4.roa
File: FK4LxnOxNQ-ZZuJV6zi6_86wiY4.roa (raw, json)
Hash identifier: V2NzqgtdTf+Sn2Rrj8a2xT/pDWO5rZ+aXt3HaUZ3y8o=
Subject key identifier: 14:AE:0B:C6:73:B1:35:0F:99:66:E2:55:EB:38:BA:FF:CE:B0:89:8E
Certificate issuer: /CN=60fcd55b9130858d8ea583c0987dad00f614db39
Certificate serial: 0109C2
Authority key identifier: 60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/FK4LxnOxNQ-ZZuJV6zi6_86wiY4.roa
Signing time: Fri 11 Mar 2022 14:54:17 +0000
ROA not before: Fri 11 Mar 2022 14:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 195.64.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68034 (0x109c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60fcd55b9130858d8ea583c0987dad00f614db39
Validity
Not Before: Mar 11 14:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14ae0bc673b1350f9966e255eb38baffceb0898e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:17:69:65:1e:62:41:5e:49:c4:62:f7:f5:65:
48:79:26:66:96:4c:fb:1d:a0:ee:8a:5b:1c:97:de:
92:25:c8:61:d8:1e:fb:7d:5c:5f:bb:5c:ce:50:11:
51:9d:66:9a:28:80:eb:ea:36:92:00:6d:f3:2f:da:
8d:3b:2d:16:98:48:1d:91:83:08:29:89:41:c5:d7:
fb:fb:b8:1d:02:4c:9f:3f:69:a1:16:d5:53:66:8e:
47:e3:96:8b:ba:7b:b0:aa:5e:d5:1c:45:2f:fa:b1:
91:16:03:d8:49:04:20:9d:69:ac:b2:03:8b:04:70:
76:ba:95:df:1a:4f:b3:ee:fe:a2:a7:20:a3:e5:18:
6c:89:e7:e0:65:c4:80:85:36:f2:4c:ce:db:dc:8c:
50:fb:90:c8:a9:65:64:7f:06:cd:04:ba:6b:45:38:
1c:df:fd:04:35:57:0b:4c:fe:50:e7:43:54:03:df:
72:bd:7a:a9:c9:00:ef:f8:36:65:74:81:5a:5b:62:
0f:81:79:df:28:1b:5e:77:76:5b:99:fc:e1:1b:ac:
44:71:d1:44:35:2d:7b:8c:ce:e9:56:be:b1:5b:43:
12:16:46:2f:40:d1:b4:c0:e4:2f:79:56:d2:9e:0c:
59:9c:d5:04:c4:e9:5b:35:57:cc:ce:c7:90:45:da:
f4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AE:0B:C6:73:B1:35:0F:99:66:E2:55:EB:38:BA:FF:CE:B0:89:8E
X509v3 Authority Key Identifier:
keyid:60:FC:D5:5B:91:30:85:8D:8E:A5:83:C0:98:7D:AD:00:F6:14:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPzVW5EwhY2OpYPAmH2tAPYU2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/FK4LxnOxNQ-ZZuJV6zi6_86wiY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/82233d-ec07-42fb-8799-ed30b9bb12d5/1/YPzVW5EwhY2OpYPAmH2tAPYU2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.122.0/24
Signature Algorithm: sha256WithRSAEncryption
36:82:a0:52:7c:7e:74:95:94:0c:04:f9:e6:e7:5b:85:38:82:
47:2d:98:e7:7a:ca:19:9b:48:eb:14:1b:3b:4f:cd:6a:60:7a:
f3:8f:d3:b7:ec:84:7d:01:48:6c:a4:9a:01:c1:2a:73:8f:7a:
29:0e:64:84:3e:cd:4b:b0:3d:4a:75:f4:25:f1:41:63:93:e0:
40:9e:14:86:ce:45:c0:b8:60:67:19:ef:95:42:af:b9:9d:58:
d5:4a:73:b1:a8:59:0b:ac:af:36:c2:7c:37:36:24:b5:d4:90:
86:ad:0d:e1:bf:a0:88:93:27:dd:06:ea:0c:15:66:fa:cb:53:
21:59:11:7f:52:4e:aa:54:6c:f8:ca:32:5d:d6:9a:07:07:9f:
48:57:6e:a9:32:35:90:e3:5b:55:9f:df:e8:62:05:12:1e:c6:
ae:20:b6:d1:50:a7:88:d7:41:b8:37:41:60:43:b3:99:99:5e:
1e:27:68:15:f1:9a:e9:e9:e0:10:aa:e3:a4:9d:0a:2b:a5:8b:
8f:f9:68:29:a1:46:c7:b5:d1:2e:97:d8:89:4c:e3:35:85:45:
ce:71:c5:d2:cc:89:21:f8:c6:ef:0c:8a:71:e3:c0:c7:cc:83:
9d:dc:d7:ac:6a:ea:9b:04:40:09:7d:cb:41:5c:74:44:12:93:
95:0a:10:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:25 2024 by rpki-client on console-fra.rpki-client.org