Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/FkrBAFMMW_KOgwR6UEvtliG7sKU.roa
File: FkrBAFMMW_KOgwR6UEvtliG7sKU.roa (raw, json)
Hash identifier: QDvMsCmi5Dtf6Zt7Ld45qJXzVKYE04Ft93E4fjDbhys=
Subject key identifier: 16:4A:C1:00:53:0C:5B:F2:8E:83:04:7A:50:4B:ED:96:21:BB:B0:A5
Certificate issuer: /CN=3dfa29368c8be69c8edd5aa193557fcba2a57ec8
Certificate serial: 0184BE2F985F1DD07A2C453ED4A5360B1C9E
Authority key identifier: 3D:FA:29:36:8C:8B:E6:9C:8E:DD:5A:A1:93:55:7F:CB:A2:A5:7E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfopNoyL5pyO3Vqhk1V_y6Klfsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/FkrBAFMMW_KOgwR6UEvtliG7sKU.roa
Signing time: Mon 28 Nov 2022 12:21:41 +0000
ROA not before: Mon 28 Nov 2022 12:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206276
IP address blocks: 185.179.184.0/22 maxlen: 22
194.49.56.0/22 maxlen: 22
45.8.12.0/22 maxlen: 22
185.190.100.0/22 maxlen: 22
78.142.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:2f:98:5f:1d:d0:7a:2c:45:3e:d4:a5:36:0b:1c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3dfa29368c8be69c8edd5aa193557fcba2a57ec8
Validity
Not Before: Nov 28 12:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=164ac100530c5bf28e83047a504bed9621bbb0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a1:0c:42:cd:92:ab:09:cb:15:d1:7d:b4:10:
37:cf:d9:d4:5a:6a:08:a1:7a:9b:f0:30:df:59:e0:
0f:29:35:55:b1:fe:32:2a:d2:8a:e1:aa:9e:e2:b4:
26:7f:93:10:aa:93:2d:5f:97:25:c5:05:0b:f2:52:
a2:45:55:08:e3:ec:94:44:55:c4:c7:2f:a7:34:95:
68:e3:1c:27:26:d7:97:1a:b8:4e:df:f7:95:24:2a:
89:8a:c3:84:77:66:08:e5:77:54:ae:13:1a:95:94:
96:e2:ef:d7:4b:12:8e:10:30:2d:4b:4e:08:2c:32:
16:4f:f6:f3:2c:0f:8a:5b:d4:db:c0:30:fb:54:3a:
fd:49:9f:2c:f9:21:3d:81:45:07:98:0f:74:eb:26:
90:98:fc:d7:a5:88:e6:b0:6f:e4:e7:48:93:80:4f:
29:de:68:a6:fd:44:31:d3:54:c4:ba:1f:82:40:c5:
17:7a:8c:ae:74:cb:13:42:35:ff:f9:42:84:69:bc:
a8:98:99:3b:37:7b:ab:f8:92:e4:af:dc:31:ed:77:
c1:ee:98:59:a2:ed:12:31:e2:99:59:f4:df:1e:70:
fd:96:8f:9e:82:42:58:42:91:87:15:6a:ff:fd:3e:
8e:01:df:43:f6:1a:01:cc:02:7a:86:ab:37:8b:25:
70:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:4A:C1:00:53:0C:5B:F2:8E:83:04:7A:50:4B:ED:96:21:BB:B0:A5
X509v3 Authority Key Identifier:
keyid:3D:FA:29:36:8C:8B:E6:9C:8E:DD:5A:A1:93:55:7F:CB:A2:A5:7E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfopNoyL5pyO3Vqhk1V_y6Klfsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/FkrBAFMMW_KOgwR6UEvtliG7sKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/PfopNoyL5pyO3Vqhk1V_y6Klfsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.12.0/22
78.142.212.0/22
185.179.184.0/22
185.190.100.0/22
194.49.56.0/22
Signature Algorithm: sha256WithRSAEncryption
30:a4:2d:97:9e:e8:ce:a1:6f:e0:cc:10:f5:0c:4b:a9:c8:87:
ce:c9:d2:9f:56:4a:a8:fb:d9:70:79:4f:83:37:ca:4a:13:f5:
e6:db:45:6b:dc:aa:d1:9f:c5:30:b6:4d:f3:55:03:00:3e:4b:
d7:51:3e:b4:d0:da:00:ca:c3:3f:03:33:b8:fa:cc:fd:d0:89:
7d:bf:9c:73:68:2e:f6:28:5b:df:2e:6b:b9:ef:b5:ef:b4:b6:
82:51:b7:3f:3e:f6:c5:49:e9:3a:0c:93:ee:91:44:4d:5d:ff:
5f:ce:31:4e:5a:39:4d:68:b9:34:f3:1d:dc:09:e9:93:8f:13:
d3:e7:d8:48:c9:c1:97:5b:b0:0f:5b:38:f1:34:67:9c:51:a7:
1f:bd:ed:89:d9:48:a5:35:50:7b:b8:da:fb:3a:8b:e9:32:6c:
2c:06:f1:3e:f5:00:af:b3:e6:45:dc:55:bd:c6:64:6d:81:96:
8b:38:0f:f2:a0:21:65:6b:a2:b2:04:98:d5:36:b4:dc:9f:d8:
11:08:1a:ca:32:0a:2a:21:46:76:46:c7:31:4c:75:f7:7c:fe:
9a:34:5c:4f:4e:8b:a1:bd:86:39:4b:05:36:67:e1:fa:44:bd:
e8:e7:76:9d:16:e0:40:6a:8c:73:b2:54:7b:df:c9:25:e0:50:
04:87:f8:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:32 2024 by rpki-client on console-ams.rpki-client.org