Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/fuaFpRg3_u9pdm2HOz9kVHaGtW8.roa
File: fuaFpRg3_u9pdm2HOz9kVHaGtW8.roa (raw, json)
Hash identifier: LOX+4DPOFKdHCdYnDlOP2ZqUUR6BuCF4CBxldtEawy4=
Subject key identifier: 7E:E6:85:A5:18:37:FE:EF:69:76:6D:87:3B:3F:64:54:76:86:B5:6F
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 098F96EB
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/fuaFpRg3_u9pdm2HOz9kVHaGtW8.roa
Signing time: Sat 01 Jan 2022 04:03:23 +0000
ROA not before: Sat 01 Jan 2022 04:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28714
IP address blocks: 129.233.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160405227 (0x98f96eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ee685a51837feef69766d873b3f64547686b56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:84:83:31:78:3b:a1:b9:8d:66:07:ad:0d:
e0:e3:9f:6a:39:a3:2a:19:34:81:24:38:d4:a9:98:
df:db:d2:9c:0f:59:66:bb:3c:09:6f:8f:ba:e2:2f:
25:15:68:41:a5:bb:e8:ee:99:38:38:a4:4d:68:1f:
bd:03:b0:95:e9:ba:19:72:c7:a4:89:29:32:94:2c:
42:3f:25:5a:41:a2:e1:ef:66:3f:b3:02:17:21:82:
6f:d3:d9:eb:cc:71:ee:e1:5d:44:ae:d2:72:6a:d4:
da:6d:a0:73:3f:d7:25:81:cc:94:cd:0c:98:9d:39:
37:56:53:a1:8a:91:52:7a:33:e7:8f:f2:8d:58:e3:
b3:db:6c:f4:a3:7e:79:de:85:d0:a8:c4:1b:06:6e:
30:ed:12:98:a8:fd:c7:5b:d4:95:5d:e4:ef:c8:c4:
f6:dd:f4:f1:18:9b:49:8b:d2:15:23:1c:48:96:d5:
18:f6:6e:88:26:cd:6e:87:0f:01:ec:65:05:27:71:
0b:96:bc:f3:8f:00:87:87:17:ac:c7:f4:8a:a0:d4:
dc:87:95:5a:a1:95:e2:5f:23:36:b4:bb:6b:6a:e2:
69:bd:a0:30:b5:eb:27:77:63:24:83:ea:dc:71:8d:
19:5e:87:12:32:30:2c:6e:d6:da:1f:cb:a7:8b:dc:
5c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E6:85:A5:18:37:FE:EF:69:76:6D:87:3B:3F:64:54:76:86:B5:6F
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/fuaFpRg3_u9pdm2HOz9kVHaGtW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.233.217.0/24
Signature Algorithm: sha256WithRSAEncryption
86:96:ee:73:a2:30:2e:86:ad:8e:2f:6c:ae:d8:60:60:6c:2b:
13:98:b4:b0:35:a4:37:6f:c1:36:04:db:cf:d3:b4:c8:03:c6:
4d:bf:09:29:6d:ea:0c:11:bb:87:b6:62:87:8b:9f:c1:3f:3b:
66:38:1d:d9:18:fe:9c:a0:2c:02:19:53:7a:19:96:7d:70:6c:
6d:f3:9c:f7:89:c4:39:a8:e1:4c:fe:1d:71:82:f3:5d:b4:bd:
0d:db:cb:df:a9:f1:b6:1b:d7:16:28:ac:52:a1:ab:34:57:94:
4b:98:4d:ec:c3:a4:5b:c3:ec:da:c6:40:79:d9:25:ae:a1:91:
29:67:f2:a7:e6:26:a6:68:84:76:78:78:42:46:9a:e9:e5:ba:
35:29:96:0a:b4:e0:c2:cc:71:0e:99:98:aa:3b:ec:47:0f:65:
44:97:4b:68:39:77:22:ab:5e:ee:c0:cb:45:67:de:e3:11:da:
ab:1e:60:64:6b:3e:f2:96:c8:1d:ce:80:20:2f:2c:e1:3c:06:
9c:a5:81:5b:d7:9a:89:e0:25:dc:d8:0a:04:99:79:a1:db:98:
07:5e:d6:a0:8d:6e:d0:a8:58:2e:66:16:84:06:74:8e:42:c7:
83:a5:69:be:4d:8c:91:6c:33:d1:49:8e:83:22:85:8a:b8:e4:
57:7c:65:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:59 2024 by rpki-client on console-fra.rpki-client.org