Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/FGakLCi4084jPaEH8N8cbW-X_6w.roa
File: FGakLCi4084jPaEH8N8cbW-X_6w.roa (raw, json)
Hash identifier: ghBw1XHn7kUhGWqPywXf96360ucikJPFQXkyXFr2GnI=
Subject key identifier: 14:66:A4:2C:28:B8:D3:CE:23:3D:A1:07:F0:DF:1C:6D:6F:97:FF:AC
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 01487888
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/FGakLCi4084jPaEH8N8cbW-X_6w.roa
Signing time: Sat 01 Jan 2022 03:55:09 +0000
ROA not before: Sat 01 Jan 2022 03:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7922
IP address blocks: 45.90.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21526664 (0x1487888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 03:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1466a42c28b8d3ce233da107f0df1c6d6f97ffac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:74:0c:01:0b:e2:0e:b0:b0:ed:33:a0:22:
71:95:1f:e5:63:5c:89:c0:bc:0e:50:0b:72:c9:95:
0d:ae:c2:a4:3f:80:71:3e:96:18:59:10:59:02:ec:
01:82:4f:d5:23:e1:93:2c:dc:b8:d5:03:bd:2e:72:
1c:a5:d6:34:b5:7f:ba:2d:5c:85:2c:98:4e:3c:14:
3d:08:79:42:2b:55:04:80:f0:ac:b7:56:25:a8:04:
2c:53:f4:84:72:d8:a6:a1:ec:dd:35:e6:38:7d:6e:
82:ea:44:1c:18:c1:5c:f1:13:f2:dc:2c:c0:69:7c:
26:73:4e:2e:74:df:0b:16:6f:ee:02:f6:61:a4:86:
69:ec:b7:71:b2:13:f9:2e:87:67:ee:91:91:68:66:
a5:36:f1:c0:49:91:26:b0:fa:c5:1d:c8:b0:cb:4b:
47:d3:b5:67:59:f1:2c:7a:a2:ec:44:3c:8d:82:67:
78:3e:7c:e3:f2:ed:a1:c9:37:d2:16:47:0f:f7:3b:
fa:5c:cc:f5:16:90:4a:37:fb:7e:3d:6d:d8:7c:3a:
44:a4:dd:d8:0f:13:69:04:99:16:aa:bd:48:53:e1:
6f:6e:4e:7b:3a:41:08:e4:d2:d9:00:18:cb:05:06:
98:01:7d:ec:32:04:49:e7:19:87:34:38:e4:67:7c:
4e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:A4:2C:28:B8:D3:CE:23:3D:A1:07:F0:DF:1C:6D:6F:97:FF:AC
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/FGakLCi4084jPaEH8N8cbW-X_6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.200.0/22
Signature Algorithm: sha256WithRSAEncryption
07:e2:fd:5d:aa:76:8e:20:5f:67:d7:da:88:0e:f1:4e:73:0f:
53:c3:7a:3b:64:21:cc:77:12:8b:ba:27:e2:aa:bd:ed:c3:47:
2d:e9:50:7d:c6:ae:b1:6b:f7:79:e1:f1:c9:b9:bb:1e:3c:b5:
e9:db:d6:5a:07:f1:24:36:8c:8c:83:d3:41:b1:68:d5:7c:23:
b5:88:fc:66:bf:02:e0:ba:e7:08:f8:53:2d:ce:7c:2d:36:81:
c5:d0:d2:09:47:4b:e1:1f:53:13:1b:cf:0f:7e:35:11:b6:4c:
88:77:77:33:e8:fe:4f:cb:2d:55:48:83:1a:94:c8:81:6a:55:
2d:a7:04:73:e2:fb:e3:c4:41:21:c7:95:4a:81:98:f3:3c:45:
fa:92:45:b4:c8:8d:33:01:95:ab:26:90:48:72:6a:ef:7f:89:
7f:d5:bf:cc:46:84:fe:2b:6a:da:d2:1d:23:34:98:17:46:1a:
ad:a5:6b:a0:5e:df:11:d7:16:64:c8:43:ed:74:d0:46:01:e2:
88:87:67:3a:8f:80:c0:a6:56:d0:fd:07:b1:db:d0:51:e9:3a:
78:c6:5d:28:4d:15:32:9c:fe:41:35:2f:38:93:4a:38:fa:17:
d5:10:8a:40:64:12:c8:30:72:84:43:cf:af:4e:da:5a:29:86:
59:64:2f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-fra.rpki-client.org