Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/_FVNoMSi71fR7o2rbjXkdh48jaQ.roa
File: _FVNoMSi71fR7o2rbjXkdh48jaQ.roa (raw, json)
Hash identifier: AEchWY8Ka+6SXRtcKLwUoS+jQWwMSCo8+mJyDZ+hDt4=
Subject key identifier: FC:55:4D:A0:C4:A2:EF:57:D1:EE:8D:AB:6E:35:E4:76:1E:3C:8D:A4
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B1B5277
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/_FVNoMSi71fR7o2rbjXkdh48jaQ.roa
Signing time: Sat 01 Jan 2022 05:02:26 +0000
ROA not before: Sat 01 Jan 2022 05:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 582
IP address blocks: 2.179.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186339959 (0xb1b5277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 1 05:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc554da0c4a2ef57d1ee8dab6e35e4761e3c8da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8e:51:0f:a0:25:61:45:82:e9:0c:4a:9c:1b:
9f:d7:18:18:86:85:ab:1a:fc:9e:c4:4f:c3:d7:ac:
c5:f2:d3:34:50:a1:55:68:34:97:61:30:a1:ae:ad:
41:d6:6d:7a:61:69:c8:59:8e:00:c9:6b:f9:ec:2b:
8b:6d:fa:89:2b:f7:ea:f8:19:fe:2b:42:ae:e1:e4:
79:1a:01:24:8e:53:c5:67:a6:77:cf:31:c6:c7:07:
21:ba:1e:dc:64:94:34:e4:75:5b:21:89:e9:33:ea:
c9:38:a4:0b:4e:83:20:9e:5a:28:5f:20:0c:11:e4:
ef:c3:86:fc:80:38:16:c3:72:68:8d:e0:d4:02:2f:
c6:e0:c1:c2:6f:3e:a8:c5:7b:8f:36:63:73:f6:9b:
e8:39:1d:db:1a:21:8d:01:6a:02:11:3c:3f:ea:81:
e8:7d:f3:14:8a:22:da:72:6c:d5:2b:2e:68:0e:d3:
01:df:ea:13:ef:02:a0:ff:5b:39:b9:d6:dd:32:1a:
a1:18:ba:e5:c1:2b:f2:20:40:f7:85:84:fb:8b:35:
90:97:a7:e9:23:61:c1:70:90:6d:a6:d8:7c:58:bb:
95:22:a9:7a:63:a6:0f:c1:6c:b2:8e:d6:03:ba:c3:
06:7d:eb:57:2f:bf:20:fc:71:21:2a:95:35:27:29:
2d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:55:4D:A0:C4:A2:EF:57:D1:EE:8D:AB:6E:35:E4:76:1E:3C:8D:A4
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/_FVNoMSi71fR7o2rbjXkdh48jaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.179.16.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:0a:3e:11:eb:fc:2b:ad:3c:1c:32:ef:b8:2b:40:0e:46:5c:
77:16:19:76:63:18:04:2a:bf:10:7a:78:3a:79:e5:1f:0f:97:
18:fb:1d:b3:b9:0f:63:8b:70:a4:34:83:59:69:6c:15:06:21:
c7:31:7f:eb:da:df:93:ce:04:70:e8:63:21:18:06:6d:6a:d9:
fe:b0:58:78:b8:63:6e:4a:98:37:c1:f6:dc:02:33:90:25:da:
9b:b8:a7:d5:97:97:f6:0a:fc:1e:90:f5:df:e5:43:b3:2f:39:
b6:58:81:66:11:c6:50:23:59:00:aa:0d:3b:6d:5a:7a:1a:42:
a6:57:68:70:9b:6d:73:31:59:12:05:96:37:a6:0c:50:d6:8a:
9f:0d:7b:31:d9:43:81:f5:87:b8:29:22:52:30:e0:b8:e7:34:
d8:3a:f9:ae:2c:18:fb:0c:54:8d:03:b1:64:05:30:e4:dc:d0:
6f:9c:75:17:10:f5:62:e6:4b:77:94:80:30:d0:3f:73:59:70:
ee:f1:93:eb:eb:1e:db:34:c7:ab:93:08:cc:82:13:34:ee:76:
88:86:3d:73:65:05:c0:63:e4:dc:a4:be:c4:e5:d8:5e:f3:78:
ae:45:d5:d4:8c:18:8d:cf:c2:88:99:23:4d:00:da:8e:90:32:
fe:f1:25:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org