Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fYnGnppnGFuMpVh4Ias9vGNVm4w.roa
File: fYnGnppnGFuMpVh4Ias9vGNVm4w.roa (raw, json)
Hash identifier: y05SweWZkTO5jayhcxlxS1VjXigV+DkXH4x7k2stMK4=
Subject key identifier: 7D:89:C6:9E:9A:67:18:5B:8C:A5:58:78:21:AB:3D:BC:63:55:9B:8C
Certificate issuer: /CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Certificate serial: 07DFDEE7
Authority key identifier: 46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fYnGnppnGFuMpVh4Ias9vGNVm4w.roa
Signing time: Sat 01 Jan 2022 10:54:21 +0000
ROA not before: Sat 01 Jan 2022 10:54:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207213
IP address blocks: 185.160.196.0/24 maxlen: 24
185.160.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132112103 (0x7dfdee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Validity
Not Before: Jan 1 10:54:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d89c69e9a67185b8ca5587821ab3dbc63559b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:56:7c:1c:41:92:11:a8:68:fc:af:bb:ff:e6:
d4:4b:9c:3e:b9:86:e9:5e:c1:98:f4:26:15:23:ca:
41:34:99:bd:38:d1:8a:cc:0e:52:43:ec:f0:09:5c:
31:be:fc:65:cd:2a:03:18:39:33:2d:f3:2d:d4:6f:
ee:c2:46:52:8a:f2:12:fd:05:84:d4:69:2e:08:19:
fb:44:50:7d:97:0f:38:f6:d3:2d:42:09:ab:f3:40:
a9:2b:e7:09:5a:1d:8c:ab:f4:e5:a6:16:fe:a4:3b:
7b:7a:27:ef:87:e5:66:11:4f:da:76:44:e0:53:70:
ba:f9:26:ea:20:a7:f8:b5:56:dd:61:ab:b1:b9:f4:
88:ec:aa:f8:ab:77:26:9a:e3:64:03:85:7d:cb:84:
0d:58:34:7e:2e:94:c9:6d:67:42:c5:cf:2f:26:57:
18:f2:9a:97:47:0a:bc:af:d3:74:cb:8b:38:0c:bc:
1e:07:ac:c2:f2:42:8d:19:71:01:58:83:bd:d1:b1:
f5:e7:db:de:0c:42:ef:4c:47:6e:0a:b8:1f:56:7a:
66:65:a4:b1:b6:aa:33:f9:3c:66:13:6e:3c:08:a5:
71:4b:e8:80:a3:e0:b3:8f:8f:c8:67:e9:1c:c6:56:
53:58:4d:e6:f1:8d:7b:13:b0:17:f3:2b:a8:ae:ac:
82:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:89:C6:9E:9A:67:18:5B:8C:A5:58:78:21:AB:3D:BC:63:55:9B:8C
X509v3 Authority Key Identifier:
keyid:46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fYnGnppnGFuMpVh4Ias9vGNVm4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/RoFcoV1ypaaW-LzfSG9YAZZncrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.196.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:f8:5a:d8:cd:64:02:9e:a6:25:ce:9e:ef:5d:ff:7e:5c:46:
5a:00:e6:19:6b:14:4c:74:11:ea:39:1c:3e:66:af:66:bd:68:
24:75:cf:c7:e6:a0:b8:9d:67:2b:24:48:92:dd:63:11:d7:ce:
a9:a2:13:59:b7:57:1b:34:1b:61:49:ad:b1:8e:a5:27:3d:3f:
93:67:5c:6e:81:dc:3f:ff:32:bc:c9:c6:65:dc:eb:21:e4:25:
5e:06:6f:86:60:eb:05:23:c9:49:23:07:f2:44:1c:d1:96:40:
e1:dc:5d:82:a1:3a:c1:39:33:ea:6d:f4:35:aa:3b:5f:9c:e4:
41:ad:14:3b:fd:c6:f1:1b:e5:03:10:1e:a0:4d:d9:15:da:01:
ad:5f:04:c5:e8:79:88:99:f7:05:fd:e5:e4:91:aa:6f:eb:13:
7b:4e:18:97:3e:15:cc:de:f4:1c:76:82:e4:f0:cd:00:75:aa:
87:49:3b:53:86:6f:dd:b9:cb:fd:60:e9:ca:23:86:bd:93:70:
5e:fa:6a:4d:e5:e7:04:f7:93:05:2e:c4:c9:ff:62:0e:e2:a9:
2e:b9:75:ef:7c:9f:a5:cd:28:05:8f:5c:40:72:bd:06:f2:17:
1d:9e:f3:f5:4c:94:c0:d1:9b:ff:ff:b9:4d:5c:6f:cd:3c:f2:
b3:36:07:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:14 2024 by rpki-client on console-fra.rpki-client.org