Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/127292-2be7-4e24-b26b-fa30dd19d02a/1/tfsqbOaHboH9oj5hRx1lcWy6O-Y.roa
File: tfsqbOaHboH9oj5hRx1lcWy6O-Y.roa (raw, json)
Hash identifier: NVxuR02ECBRbeVudEGmOZoDC/tRkQsYj/FkIb/TB+eY=
Subject key identifier: B5:FB:2A:6C:E6:87:6E:81:FD:A2:3E:61:47:1D:65:71:6C:BA:3B:E6
Certificate issuer: /CN=7f052b8d34abd1a6ac7d6b838b5ff041ebc3d4a9
Certificate serial: 1E917E
Authority key identifier: 7F:05:2B:8D:34:AB:D1:A6:AC:7D:6B:83:8B:5F:F0:41:EB:C3:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fwUrjTSr0aasfWuDi1_wQevD1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/127292-2be7-4e24-b26b-fa30dd19d02a/1/tfsqbOaHboH9oj5hRx1lcWy6O-Y.roa
Signing time: Sat 01 Jan 2022 01:52:01 +0000
ROA not before: Sat 01 Jan 2022 01:52:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206576
IP address blocks: 185.90.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2003326 (0x1e917e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f052b8d34abd1a6ac7d6b838b5ff041ebc3d4a9
Validity
Not Before: Jan 1 01:52:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5fb2a6ce6876e81fda23e61471d65716cba3be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:18:06:9f:8b:1e:4a:d8:07:b4:cd:27:6f:13:
a4:77:2e:0c:24:38:ef:82:9f:84:d6:b1:ea:58:37:
bd:5c:cf:9c:90:20:e9:c1:14:cd:cd:b3:3a:60:a2:
c0:ea:42:18:e3:69:5f:35:87:13:65:43:18:2f:a4:
c0:15:18:ce:95:19:b7:b5:64:97:a3:4c:d6:3c:ce:
be:5c:d7:bf:61:3b:97:a0:85:e0:c3:a6:d7:b3:2e:
e5:6f:d4:72:b0:2e:24:b9:ce:18:cf:7e:c7:0d:81:
4f:ca:25:16:b4:c9:71:5a:2f:7b:75:9d:d9:29:46:
9a:71:77:55:da:db:b8:46:39:86:79:cd:c1:68:79:
af:bd:11:5a:f6:29:8b:32:18:86:ee:64:04:a2:ce:
14:e1:e5:5b:f7:b7:7d:1b:a9:ba:7f:c5:46:bc:b2:
e8:83:3f:fe:98:f4:13:e0:7c:01:c3:88:a2:70:22:
6a:a0:ec:2c:7e:85:ba:9d:7b:6a:79:b8:2a:e9:6e:
c1:cc:26:5d:ae:ec:00:dc:21:e8:7e:a5:e6:64:1a:
13:f2:53:04:37:c7:a1:53:d2:34:5b:7b:f4:60:a8:
f2:ed:ca:58:43:90:04:8c:84:01:4f:c9:41:b9:06:
d0:13:08:9a:95:26:84:36:d2:2f:81:44:73:7d:57:
f2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FB:2A:6C:E6:87:6E:81:FD:A2:3E:61:47:1D:65:71:6C:BA:3B:E6
X509v3 Authority Key Identifier:
keyid:7F:05:2B:8D:34:AB:D1:A6:AC:7D:6B:83:8B:5F:F0:41:EB:C3:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fwUrjTSr0aasfWuDi1_wQevD1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/127292-2be7-4e24-b26b-fa30dd19d02a/1/tfsqbOaHboH9oj5hRx1lcWy6O-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/127292-2be7-4e24-b26b-fa30dd19d02a/1/fwUrjTSr0aasfWuDi1_wQevD1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.0.0/22
Signature Algorithm: sha256WithRSAEncryption
38:88:5d:49:a1:17:a5:9b:64:c2:36:3b:ac:d4:62:a3:0a:d1:
ff:2e:27:99:5a:7a:e2:d6:aa:ac:05:77:e4:34:b5:27:4a:73:
97:84:eb:6b:a1:94:9a:ec:e7:77:39:15:9a:46:7f:85:e6:69:
7a:9b:4a:31:0b:42:3d:b4:b7:8d:6d:54:64:fd:4c:9d:2e:b8:
3b:73:31:47:ca:90:b7:e8:4c:e5:e7:7b:0f:d3:31:d1:6a:2f:
87:b7:70:98:dd:89:09:38:8e:a4:c2:a0:41:ce:84:86:41:d6:
a1:72:44:3d:6c:a8:7b:34:3a:fe:22:60:f5:04:8f:06:5a:f1:
af:23:47:26:c5:2c:b9:8d:c6:8c:8d:b9:56:b6:a9:4a:b1:64:
7b:c3:75:1b:b7:f6:08:04:02:ef:18:33:5c:e2:20:7f:d8:a8:
ec:ed:52:06:8c:de:d9:51:f0:5a:b3:af:03:eb:ad:0a:de:c7:
ec:45:a4:0a:df:4f:06:6f:cf:07:33:a7:8a:7f:f0:32:05:87:
33:fb:f8:ec:11:87:46:09:12:3f:ce:31:f5:8f:8f:2c:1e:9b:
cc:7c:66:e7:e1:3e:ff:46:c9:86:07:dc:0d:40:f5:e1:0b:41:
f1:25:86:81:2c:a5:b1:74:e0:01:fd:99:4a:dc:83:78:4e:5e:
ca:57:6a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:28 2023 by rpki-client on console-fra.rpki-client.org