Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-FyzfJmS8JMhB3OYIwbuGUm37VM.roa
File: 1-FyzfJmS8JMhB3OYIwbuGUm37VM.roa (raw, json)
Hash identifier: BjPUvBJPwkpT80DTwagd5HfbNwe4fgivVd4O7mXsJ6s=
Subject key identifier: F8:5C:B3:7C:99:92:F0:93:21:07:73:98:23:06:EE:19:49:B7:ED:53
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 278CAFAF
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-FyzfJmS8JMhB3OYIwbuGUm37VM.roa
Signing time: Sat 01 Jan 2022 16:08:17 +0000
ROA not before: Sat 01 Jan 2022 16:08:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43680
IP address blocks: 185.67.254.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663531439 (0x278cafaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f85cb37c9992f093210773982306ee1949b7ed53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c8:34:8f:97:17:b6:fe:42:6c:31:93:5e:1b:
5f:85:00:49:b7:f8:a8:e0:f5:37:e6:d6:7d:0c:3e:
a8:37:22:c1:fd:3c:ce:e0:05:4f:73:a3:78:b2:df:
ce:8d:bb:a0:80:3c:78:0d:ef:1c:89:00:ee:09:33:
9d:15:a7:cc:4f:94:99:7e:98:ca:4e:0e:6e:66:60:
1d:61:8a:8f:d8:51:f3:91:bd:5e:0b:e2:f0:16:01:
c4:9a:7a:36:f8:69:a9:b0:33:64:28:c7:9c:29:f6:
83:42:7b:04:84:09:cb:b5:c0:60:73:83:63:f3:c1:
cd:5d:13:e6:35:cd:c2:62:b9:9d:92:c0:5c:db:ab:
13:af:36:37:06:6e:6a:67:a0:fe:ea:b0:3d:76:57:
a8:27:ca:97:9e:7a:65:5a:25:81:cd:97:fb:eb:f3:
09:ac:4b:2a:77:07:06:86:03:16:b7:68:02:cd:a0:
56:6f:e0:69:9f:df:cb:e3:a9:ce:36:93:18:fe:05:
d0:a2:90:51:88:86:e6:77:df:d6:fc:ec:d1:f9:1f:
7c:01:dc:e8:5c:34:77:9e:b3:4d:bf:35:aa:ba:77:
a9:f2:a6:b1:9d:9c:59:89:21:00:83:65:7a:a7:cd:
96:87:70:89:58:a6:a0:a5:9d:1b:d7:cd:b8:bd:2c:
c2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5C:B3:7C:99:92:F0:93:21:07:73:98:23:06:EE:19:49:B7:ED:53
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/1-FyzfJmS8JMhB3OYIwbuGUm37VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.254.0/23
Signature Algorithm: sha256WithRSAEncryption
07:41:d3:2a:85:d7:78:9a:ee:9d:9c:4b:34:63:4f:8e:c4:5c:
c8:87:1a:e3:3e:4b:03:d1:b5:a7:5f:e4:22:4d:48:69:36:77:
32:de:e7:83:a4:c1:bb:c0:8a:dc:75:e3:21:1a:a2:22:8f:76:
ab:a6:5f:bc:fa:1b:89:14:ca:67:1e:a6:f7:33:39:df:a9:08:
67:3e:71:1b:f7:f7:74:45:64:63:60:02:29:e9:5f:6b:39:c4:
17:df:b0:2b:9d:86:c7:ec:2e:4b:a2:ec:c2:2b:0a:81:05:fa:
79:28:ec:17:c6:24:6d:24:fd:ca:37:f0:e4:75:1b:5d:44:76:
a5:20:d0:33:63:a7:04:1e:f9:e3:41:3f:cf:9f:c8:7a:ed:84:
f1:52:65:15:92:19:32:0d:3b:c4:d6:4f:18:8d:73:2b:e4:07:
58:f7:b4:d8:a6:e4:32:db:fe:ba:57:3a:51:8a:87:cb:af:93:
c4:9e:11:ed:77:8a:19:0e:83:5e:25:04:6f:2a:a3:75:f7:46:
7a:22:8b:71:66:fb:4a:80:f4:c3:43:4d:eb:31:17:2b:03:b8:
b3:af:85:0e:1c:ff:b1:79:9f:35:91:a8:6e:9c:b0:60:ba:1c:
08:0b:9b:eb:48:a6:d5:92:f6:e0:cd:cc:87:fb:94:7b:64:6c:
68:05:fa:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:35 2024 by rpki-client on console-fra.rpki-client.org