Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FcqpYgKiNlkb3UDhaQY7cPb0rZ8.roa
File: FcqpYgKiNlkb3UDhaQY7cPb0rZ8.roa (raw, json)
Hash identifier: IVII2nyuy/Yfnp20H5g1mMZw+Az7SGaNK4orEfT0Zag=
Subject key identifier: 15:CA:A9:62:02:A2:36:59:1B:DD:40:E1:69:06:3B:70:F6:F4:AD:9F
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 3700702B
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FcqpYgKiNlkb3UDhaQY7cPb0rZ8.roa
Signing time: Tue 26 Apr 2022 13:11:25 +0000
ROA not before: Tue 26 Apr 2022 13:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198692
IP address blocks: 82.150.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 922775595 (0x3700702b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Apr 26 13:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15caa96202a236591bdd40e169063b70f6f4ad9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1d:bd:68:ec:14:42:03:fd:2b:b9:a4:2b:02:
ae:ec:5e:49:9e:1e:e5:4d:a2:6e:43:ae:e6:c2:b7:
d8:b8:ab:78:c5:23:8c:e5:1c:e7:5c:e9:b5:1c:e8:
19:5a:ec:11:00:03:82:ed:68:8e:ef:00:ae:b7:af:
db:bb:ac:a0:f6:bf:71:5c:01:61:c0:bd:9a:3d:44:
4d:f0:c2:96:24:1e:c2:8d:3e:73:2f:2a:98:1f:fc:
2e:71:53:9a:0f:08:47:29:92:73:5e:22:1c:3b:42:
57:a0:fa:95:9f:4f:71:f1:53:6c:3e:22:c6:02:0c:
16:a6:52:c1:68:74:fd:f5:95:db:b7:0c:a1:13:f6:
f5:06:7f:4a:b4:98:10:4d:cd:df:d0:95:d2:df:9e:
d0:74:3d:51:9e:2f:83:e5:c4:72:e8:be:a0:41:88:
29:b6:4e:fe:fc:27:e4:53:f9:33:e6:d9:bd:0a:f5:
1e:7e:d3:a0:ff:96:80:29:26:ca:1b:26:a4:d2:ca:
30:ed:c8:b7:54:d0:b6:b3:1c:b6:d6:12:7a:ee:86:
fb:76:a1:85:22:90:51:bb:ff:55:5a:e0:df:5f:90:
49:1c:c4:ae:52:34:76:4f:4f:50:fe:30:3e:c8:53:
a7:5c:87:cc:f1:ef:02:5e:25:06:3a:20:d3:27:c4:
01:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:CA:A9:62:02:A2:36:59:1B:DD:40:E1:69:06:3B:70:F6:F4:AD:9F
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/FcqpYgKiNlkb3UDhaQY7cPb0rZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.138.0/24
Signature Algorithm: sha256WithRSAEncryption
56:ae:ba:ba:b9:bd:5f:37:ff:6b:af:fd:3e:61:10:59:be:94:
c3:19:cb:d9:44:37:87:ba:a3:a2:4d:71:e9:c8:e2:3a:ba:24:
0c:55:f8:e4:d5:81:93:e8:bb:f4:f9:c2:ae:c6:97:0b:1e:96:
02:ea:05:d3:6d:b2:61:40:2c:19:21:70:46:e5:84:e6:4a:1a:
2f:78:a7:22:d5:c7:45:3d:d4:7e:a6:e5:5a:45:24:5d:d2:9e:
37:b4:30:23:3f:50:25:83:e4:37:80:f3:ee:63:37:ad:a2:fe:
21:8f:a8:c8:a3:59:5f:32:26:f3:57:9d:92:db:e4:67:99:45:
22:d0:47:12:e8:92:89:73:80:fc:8d:02:36:5a:d7:ef:8b:23:
65:b4:fa:96:d7:c4:c4:06:2e:83:98:77:19:b8:24:90:86:3c:
76:3a:b4:20:14:56:c2:2b:ff:14:7c:b1:21:77:cb:3e:2a:c1:
6f:82:a9:d5:d9:3f:92:b8:b0:91:d0:37:5d:8d:69:f8:48:e6:
54:e2:8e:0e:e7:bc:20:e3:19:61:09:97:2e:6d:ba:ac:39:ec:
a9:dd:32:16:90:9f:eb:c0:43:15:17:d9:88:98:a8:c0:44:25:
ce:0c:59:35:14:19:f4:28:9d:6b:72:e4:29:23:0e:45:d5:79:
39:65:eb:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:54 2023 by rpki-client on console-ams.rpki-client.org