Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/furz1Gf2_IasceaNNc9RBa_R3PQ.roa
File: furz1Gf2_IasceaNNc9RBa_R3PQ.roa (raw, json)
Hash identifier: Ebhxz9DVUOIKQFHmoj4/7k0vnY27QyiGhz983TXSvAk=
Subject key identifier: 7E:EA:F3:D4:67:F6:FC:86:AC:71:E6:8D:35:CF:51:05:AF:D1:DC:F4
Certificate issuer: /CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Certificate serial: 13D857EB
Authority key identifier: 34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/furz1Gf2_IasceaNNc9RBa_R3PQ.roa
Signing time: Sat 01 Jan 2022 02:52:38 +0000
ROA not before: Sat 01 Jan 2022 02:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50300
IP address blocks: 185.120.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 332945387 (0x13d857eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345ae646ea34ad2688aca2fdd1a6f3340356495e
Validity
Not Before: Jan 1 02:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eeaf3d467f6fc86ac71e68d35cf5105afd1dcf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ea:95:96:75:e7:2b:af:53:a5:f7:d4:0e:ac:
12:5a:9f:c3:e0:a9:90:9f:28:a7:3d:f1:68:cd:6f:
1b:f8:6d:79:8e:ac:67:10:c6:1d:df:39:ae:2e:89:
52:a6:70:55:ff:d8:dc:16:33:15:77:85:d6:9d:b4:
46:88:8a:7f:0d:0f:8c:0e:03:b4:75:1a:47:e0:2e:
12:e8:d9:d0:75:86:01:80:98:42:4b:42:79:34:7a:
be:22:52:f0:e7:06:b7:fa:f1:2a:87:56:35:6b:87:
a0:c2:67:a2:ea:e7:7e:4f:9e:46:a9:53:fd:f4:4c:
e3:42:74:90:00:98:64:05:e1:86:cb:6f:eb:b8:64:
22:bb:3f:85:46:14:7e:1a:ca:e0:76:cc:32:b6:f2:
a1:04:95:96:81:b1:87:b4:00:54:ba:5d:e8:ef:85:
de:79:34:15:59:7e:de:49:6e:cc:ff:19:bb:0e:37:
d8:ae:dc:9b:63:ff:d3:84:74:5d:42:b7:53:cd:33:
3e:51:90:c0:a3:c8:43:37:8b:a2:bc:a9:28:0c:0f:
ff:10:77:f0:69:54:0e:54:56:8f:82:af:1b:4e:aa:
97:f0:58:9f:0b:fc:ab:a9:a2:88:01:ab:b5:fe:7c:
e7:69:b0:a0:71:47:63:4e:e5:7c:b8:29:74:1e:3a:
a2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EA:F3:D4:67:F6:FC:86:AC:71:E6:8D:35:CF:51:05:AF:D1:DC:F4
X509v3 Authority Key Identifier:
keyid:34:5A:E6:46:EA:34:AD:26:88:AC:A2:FD:D1:A6:F3:34:03:56:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFrmRuo0rSaIrKL90abzNANWSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/furz1Gf2_IasceaNNc9RBa_R3PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3cc135-f166-42eb-8203-f49120bed51c/1/NFrmRuo0rSaIrKL90abzNANWSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.172.0/22
Signature Algorithm: sha256WithRSAEncryption
96:2b:ac:22:88:4e:bb:8a:7a:9e:af:75:98:5d:8f:cc:cc:8c:
1b:0b:4b:63:d6:31:96:cd:c3:2d:75:10:ca:93:67:3f:7b:1b:
b6:e3:b6:e0:68:bb:61:b4:6e:ed:2d:eb:e9:1d:5d:48:27:0e:
10:6f:82:ac:d6:74:92:f3:a0:5a:83:e7:06:4a:ba:e7:f9:12:
25:52:4b:d4:a9:a3:7e:6d:21:75:7f:2f:72:09:d0:af:5c:52:
d9:f6:98:ee:c9:74:e9:f9:5f:c7:8b:70:8e:e7:51:f6:97:97:
fe:5b:62:10:e1:35:7b:01:fa:5c:ea:f6:a7:41:27:60:be:45:
aa:40:92:e1:09:7d:1b:d9:55:bf:23:13:ed:a0:80:5b:4a:3d:
b7:a7:1a:f9:7e:92:77:d2:00:bc:5e:1d:d4:93:e4:18:40:bc:
2f:15:ac:40:61:44:80:84:0a:1b:e5:b1:73:9b:b8:c5:f3:b6:
00:19:ea:48:54:ad:67:c3:45:bf:9c:d7:2f:2f:e3:50:01:7c:
03:60:9a:d7:ac:d4:cb:fd:75:ca:d1:52:6a:73:be:e1:0f:1b:
72:07:fb:9a:b8:2d:c6:8e:65:36:46:fa:60:dd:60:3f:6e:2f:
7f:53:ec:db:85:6a:73:a7:ea:bb:00:f3:95:7b:7e:f4:90:fe:
80:d2:fc:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:33 2024 by rpki-client on console-ams.rpki-client.org