Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FHKoyG32vG8dFCwH0XQHkTpkD_Q.roa
File: FHKoyG32vG8dFCwH0XQHkTpkD_Q.roa (raw, json)
Hash identifier: ewA9gONw6+70hfDw7xDWzYzqmQkigaznDuGwvp3ZYks=
Subject key identifier: 14:72:A8:C8:6D:F6:BC:6F:1D:14:2C:07:D1:74:07:91:3A:64:0F:F4
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28DCEB13
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FHKoyG32vG8dFCwH0XQHkTpkD_Q.roa
Signing time: Mon 14 Feb 2022 19:00:55 +0000
ROA not before: Mon 14 Feb 2022 19:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12365
IP address blocks: 93.170.224.0/22 maxlen: 24
92.38.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 685566739 (0x28dceb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 14 19:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1472a8c86df6bc6f1d142c07d17407913a640ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:81:93:5b:9c:00:1a:d5:0c:81:2b:7c:23:44:
5a:35:78:0e:d3:ce:df:f7:b6:cc:6a:8f:1f:95:82:
cc:1d:16:b9:8c:38:bb:9c:80:0c:e8:e6:7d:5d:d9:
6c:4a:1f:22:21:f1:75:d2:06:14:fc:54:da:c7:49:
b9:04:31:8c:b3:92:e7:30:f5:14:a0:66:40:f9:7f:
f7:d4:68:ec:e1:15:ad:32:c1:5c:f5:f8:db:f6:dd:
49:53:cd:7d:b8:5d:24:c5:78:57:e8:96:63:fd:2d:
52:a4:2e:69:fd:d5:f6:75:99:e0:52:b8:52:e6:f8:
af:e8:95:4a:07:c9:bf:14:8f:2b:6b:4f:d0:77:81:
6d:7d:70:d8:e0:da:61:30:6f:b0:78:17:fc:26:2a:
c0:06:37:ab:c1:77:6a:b8:9a:37:9d:4d:af:6c:26:
e9:ec:2c:38:dc:ff:87:e0:f6:01:eb:0c:95:2e:41:
25:9e:d4:de:b7:00:22:27:73:3d:6d:51:4a:9c:39:
a1:c9:41:5e:9d:cc:17:e5:a3:2e:46:10:77:be:38:
e7:7a:6d:b6:61:33:67:3d:90:58:f7:dd:6f:1f:b0:
7d:33:83:51:16:b5:5c:3e:31:5f:51:00:f9:03:49:
50:86:65:64:5a:4a:de:89:57:13:32:8b:2a:15:59:
16:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:72:A8:C8:6D:F6:BC:6F:1D:14:2C:07:D1:74:07:91:3A:64:0F:F4
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FHKoyG32vG8dFCwH0XQHkTpkD_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.96.0/19
93.170.224.0/22
Signature Algorithm: sha256WithRSAEncryption
82:21:6e:39:f3:a5:55:ae:2f:7c:fd:4a:72:7f:1a:af:a6:a6:
ed:d7:ff:64:92:dc:76:84:fc:e3:e8:be:9c:78:74:27:cc:90:
04:38:14:df:bd:83:14:9a:f3:7b:b3:2c:ba:b2:79:de:10:27:
89:bf:4d:9c:0a:5e:46:d7:48:ab:2f:48:4b:35:c1:74:fd:ab:
b2:7d:a8:ee:a6:cf:d0:b6:f0:c1:2f:b8:83:20:f1:29:b3:cd:
3a:bd:f1:52:a0:6a:00:ab:1b:d5:38:ae:ad:24:2b:ed:a7:bb:
04:6d:76:fe:7c:d1:c8:ac:e5:c3:85:0f:73:d8:9f:45:73:43:
6b:a8:12:10:15:79:98:c0:0d:12:f4:22:02:32:61:37:42:e3:
6a:05:c7:ed:53:07:d2:64:25:20:92:cd:e4:ce:06:f2:44:a4:
09:dc:75:05:6f:ae:29:07:de:55:9c:c6:ba:81:f0:0b:6c:9b:
e7:0b:08:fc:87:e8:91:28:6d:4a:22:d7:65:66:3a:41:81:51:
45:73:16:da:28:48:5c:c7:0f:15:16:85:29:99:99:46:8a:65:
b9:22:52:f7:aa:6f:68:55:4b:0c:3d:22:d0:4b:ca:4e:bd:e7:
38:07:22:26:d0:e0:85:1b:a7:0d:dd:d5:64:e9:39:d9:72:52:
14:2b:e4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org