Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/FvCIVU5qVx0OjlfKw89qAA0MHPc.roa
File: FvCIVU5qVx0OjlfKw89qAA0MHPc.roa (raw, json)
Hash identifier: cku5VTIkClWqq0DOnkWTxdoSzvUoCHBbAGVz7umfj8o=
Subject key identifier: 16:F0:88:55:4E:6A:57:1D:0E:8E:57:CA:C3:CF:6A:00:0D:0C:1C:F7
Certificate issuer: /CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Certificate serial: 0D4A92C5
Authority key identifier: 1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/FvCIVU5qVx0OjlfKw89qAA0MHPc.roa
Signing time: Sat 01 Jan 2022 05:03:57 +0000
ROA not before: Sat 01 Jan 2022 05:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45014
IP address blocks: 185.100.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222991045 (0xd4a92c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb45744a541285eea0e4e04e5de766a9c823b53
Validity
Not Before: Jan 1 05:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16f088554e6a571d0e8e57cac3cf6a000d0c1cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6b:df:89:42:95:51:be:c7:19:90:2c:f4:81:
56:62:a3:b1:d9:d6:bb:a3:0f:77:a1:9a:c4:41:0c:
0d:ca:f5:db:31:4d:0e:3d:b5:10:2b:30:b0:80:2a:
4e:18:50:fd:95:34:bc:6e:5e:d0:41:c1:ed:4e:cd:
fc:4d:6b:1b:f7:88:9b:a2:af:63:e1:53:27:a7:80:
dd:09:be:a5:a5:db:12:17:00:dc:8c:d8:e9:8a:4c:
4e:3d:82:ba:fa:8b:73:fc:f9:47:a6:2e:8c:fc:d3:
ca:98:c0:60:a4:55:42:e7:09:ff:d7:83:16:ce:1e:
04:6c:b1:bb:f7:31:85:67:b2:0f:42:a8:1d:3a:81:
7b:7b:7a:8b:8a:7a:c9:83:33:dc:d4:dd:e7:e3:b8:
87:ea:3c:77:2e:c0:a3:34:f8:7a:e6:04:d9:15:6f:
7a:5d:5c:61:0b:b0:11:79:53:e5:f6:a0:a2:8e:3a:
bf:5b:26:17:42:1e:89:fa:8e:e3:e0:34:73:62:5a:
fe:e5:8d:a3:3a:ce:2f:58:39:2c:31:7e:68:b4:6a:
21:34:04:d3:08:4c:ff:2a:61:57:79:d4:4f:45:78:
a8:f9:e6:df:08:fc:44:27:d7:90:41:ce:59:35:b5:
73:19:e6:e5:97:f1:98:e0:37:a5:1b:af:7d:6e:a4:
09:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F0:88:55:4E:6A:57:1D:0E:8E:57:CA:C3:CF:6A:00:0D:0C:1C:F7
X509v3 Authority Key Identifier:
keyid:1B:B4:57:44:A5:41:28:5E:EA:0E:4E:04:E5:DE:76:6A:9C:82:3B:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7RXRKVBKF7qDk4E5d52apyCO1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/FvCIVU5qVx0OjlfKw89qAA0MHPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c63f9e-9e7b-46dc-a402-879979d29e1e/1/G7RXRKVBKF7qDk4E5d52apyCO1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.251.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:79:f4:a7:b6:17:16:b8:01:ab:a5:2a:a2:71:c5:6d:a6:16:
93:f7:5d:e8:13:67:f7:ff:aa:16:aa:84:f0:7c:e5:61:72:2e:
cb:8a:2f:41:27:ff:27:5c:17:f7:23:80:cc:97:94:4f:75:b3:
8b:95:f3:62:fd:19:62:08:6d:8f:6a:4f:00:6d:f0:1a:a6:ef:
b8:8c:0f:7d:a1:c9:ee:03:a3:1f:04:56:af:de:52:14:9c:88:
40:b4:6b:11:df:48:a0:9c:32:49:85:53:e6:52:e6:df:11:05:
00:53:15:63:5a:25:4b:db:3b:a8:6f:4c:bd:45:2c:8f:60:04:
11:42:04:45:71:fb:f0:43:5e:2a:62:63:e2:a6:b5:37:fb:f5:
a0:45:c0:80:84:50:30:db:6e:f6:34:02:3f:e8:ea:53:79:ed:
18:a9:a5:76:10:d7:ba:8a:16:61:17:8f:c9:ce:c2:41:c0:32:
e4:33:14:1d:e3:92:4c:82:3d:7a:75:41:bc:90:c9:36:ca:37:
36:2d:f0:ab:c6:09:2e:f5:c2:0a:57:6a:af:80:ed:3f:66:29:
dc:0d:f2:ea:16:a3:2e:db:7a:74:28:ce:46:99:cc:b1:9b:81:
db:98:17:80:4f:d5:3f:f0:25:78:ae:30:a4:dc:d8:44:3a:60:
27:81:48:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:29 2024 by rpki-client on console-ams.rpki-client.org