Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/FNBsu60guk-Ps_3QzhGcRMKFv_c.roa
File: FNBsu60guk-Ps_3QzhGcRMKFv_c.roa (raw, json)
Hash identifier: 2mORLd9vhK91+UCIyu2ViDsXlbkSppdj4iCrc+I+hWw=
Subject key identifier: 14:D0:6C:BB:AD:20:BA:4F:8F:B3:FD:D0:CE:11:9C:44:C2:85:BF:F7
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: F2350A
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/FNBsu60guk-Ps_3QzhGcRMKFv_c.roa
Signing time: Wed 06 Apr 2022 09:34:03 +0000
ROA not before: Wed 06 Apr 2022 09:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 185.21.0.0/22 maxlen: 22
37.1.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15873290 (0xf2350a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Apr 6 09:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14d06cbbad20ba4f8fb3fdd0ce119c44c285bff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:b3:70:9d:4f:f5:ea:dc:df:be:c4:f8:e2:
59:a5:ea:a5:83:de:c1:7b:74:0b:be:68:1e:d2:0d:
cf:76:fc:90:3d:d9:33:ce:0f:3f:b3:ec:96:91:f3:
69:0b:1f:36:2d:04:99:fe:71:e6:50:54:bd:17:aa:
75:ef:de:f7:6b:9c:cc:4e:cb:cc:68:7d:91:92:21:
dc:4e:9d:ad:90:6b:4c:26:e0:cc:fa:1c:9b:2d:6e:
11:bd:4c:89:6a:dd:ad:9f:3c:33:49:c9:93:55:e0:
d4:94:48:b4:ed:b8:ad:d5:20:5d:ff:1f:26:e8:aa:
a4:22:85:00:72:58:7b:c5:8f:8f:4a:44:60:4d:d0:
7e:39:3c:83:44:40:f4:18:2d:ff:27:cf:79:50:7c:
c5:d2:20:4b:e0:e4:9e:3c:b1:a3:b6:2a:b2:40:10:
15:05:2b:b2:16:45:1f:ae:03:50:d3:55:a0:46:d8:
b7:af:ac:3d:e5:33:81:ce:77:f9:a3:46:10:22:fc:
0d:52:3d:fd:d9:53:f2:7d:15:62:54:63:21:3e:7a:
90:25:e8:b9:52:4e:4b:11:fd:44:33:7a:a7:b3:7d:
3e:fa:ce:ef:9b:86:96:5a:d7:f0:0f:6b:0f:c1:7c:
91:05:5f:09:d7:da:03:fc:51:c4:79:87:3c:47:90:
f2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D0:6C:BB:AD:20:BA:4F:8F:B3:FD:D0:CE:11:9C:44:C2:85:BF:F7
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/FNBsu60guk-Ps_3QzhGcRMKFv_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.184.0/21
185.21.0.0/22
Signature Algorithm: sha256WithRSAEncryption
63:28:9f:56:6b:21:bb:9f:ff:f4:d9:21:0e:77:74:54:79:65:
54:5c:3c:6e:80:37:b9:db:2c:5b:f3:e6:57:ab:1f:36:cf:fd:
5b:ae:9d:f4:b4:2d:4f:0e:8a:f8:74:76:99:79:3b:a5:2c:ed:
c7:cf:95:5f:99:83:09:35:9d:a9:c1:c7:23:01:6a:42:21:59:
d2:51:91:88:62:79:77:cd:45:93:d9:c4:55:62:e7:01:44:e6:
62:f8:ff:2e:97:36:f7:6a:c8:d1:7c:c0:c8:15:70:10:eb:20:
a6:87:e8:bf:fa:ff:2c:71:1a:6a:87:9a:13:94:65:cb:16:b2:
9d:c3:d4:75:2e:40:87:eb:32:8d:30:80:a1:08:0a:a2:58:e8:
f6:c8:64:b7:b1:7d:eb:6b:70:e5:2d:c3:5e:7e:17:f5:ee:9b:
5b:bc:80:83:d3:56:e5:ed:48:5d:e2:8f:26:32:c2:6a:9f:94:
db:27:4e:c1:f6:40:fb:54:6a:45:7a:b5:7c:80:40:c5:a1:47:
04:e9:30:0d:5e:99:04:ac:3a:b3:82:b8:ff:7b:37:2d:98:9d:
fd:4c:a5:a4:55:31:e7:ad:14:2e:97:0f:4c:97:64:0d:49:36:
bc:f1:3a:03:1e:b1:df:5d:38:dc:c4:20:a1:d1:94:61:59:93:
ac:bd:71:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:22 2023 by rpki-client on console-ams.rpki-client.org