Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7inMmWUiZ0mSu5rn7NYNpUBFf9Q.roa
File: 7inMmWUiZ0mSu5rn7NYNpUBFf9Q.roa (raw, json)
Hash identifier: 4Z3rsnldkG3XeKHvGRIi7Freiph9EqplM2cUT7gnZgU=
Subject key identifier: EE:29:CC:99:65:22:67:49:92:BB:9A:E7:EC:D6:0D:A5:40:45:7F:D4
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 03E2C9B3
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7inMmWUiZ0mSu5rn7NYNpUBFf9Q.roa
Signing time: Sat 01 Jan 2022 11:58:09 +0000
ROA not before: Sat 01 Jan 2022 11:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202103
IP address blocks: 92.52.128.0/18 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65194419 (0x3e2c9b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Jan 1 11:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee29cc996522674992bb9ae7ecd60da540457fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:17:53:09:8a:b8:84:37:43:4a:36:14:fb:
b5:33:c9:b5:45:ea:1e:85:92:ac:c5:69:5e:2a:ce:
0b:9b:b0:d8:0d:50:d5:04:0f:82:cf:13:72:8d:80:
66:65:93:fb:4a:07:d3:59:de:cb:7e:c3:51:f9:19:
7d:8c:3d:69:29:b2:ae:8d:21:5c:7c:26:68:ff:35:
04:4c:11:c3:44:88:a5:bf:cc:f9:65:9a:ee:40:c2:
c0:fc:ce:33:f9:72:b4:2f:b8:ec:50:23:d4:95:57:
7a:05:9a:75:2b:85:e3:d9:d5:bc:22:21:58:fb:55:
77:5c:94:e8:b9:82:fa:4b:18:3b:19:1b:12:8d:76:
5f:cd:6f:e9:72:66:01:d9:c5:91:3d:48:7a:cb:4e:
7a:4f:51:5f:74:8f:cc:6a:74:52:27:8d:2b:a4:a7:
9f:17:62:ea:01:0b:32:7b:55:b0:36:ca:29:eb:7c:
55:4a:82:47:6c:4e:52:a4:0a:e9:0f:54:ea:d0:c5:
ad:4a:34:9d:16:3b:1f:e9:73:cb:58:b0:a7:b0:04:
f4:5b:65:12:44:ff:f5:55:cb:68:8c:c8:52:b4:b6:
78:52:e7:8e:fe:bb:e5:96:3f:71:58:cd:c8:e9:ed:
84:46:c3:c0:e7:34:29:ec:8a:9c:0e:15:7f:99:af:
71:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:29:CC:99:65:22:67:49:92:BB:9A:E7:EC:D6:0D:A5:40:45:7F:D4
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7inMmWUiZ0mSu5rn7NYNpUBFf9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.128.0/18
Signature Algorithm: sha256WithRSAEncryption
3d:49:96:97:de:92:3d:8f:a7:cf:df:f8:ff:b4:8a:1f:9d:07:
22:7f:3d:b6:76:43:dd:d6:6b:94:23:39:fb:80:78:a6:a2:7c:
0c:97:7c:d6:fb:b1:e3:7f:d5:bf:ea:48:93:91:ec:f0:8e:07:
53:93:26:5d:6e:4a:28:1c:aa:4d:16:54:66:22:7c:cc:47:9d:
08:52:22:c1:f9:39:64:8a:56:fb:a7:6d:10:b3:77:fe:ec:bc:
54:8c:dc:12:13:0e:0e:53:c5:17:45:bc:3a:78:55:48:d3:3d:
94:cf:f9:cf:36:c2:84:01:46:55:06:aa:a7:28:59:35:88:fb:
51:b8:32:4c:0d:5a:d3:97:41:13:1d:a7:c7:42:fc:41:04:d9:
5a:78:9c:36:d4:7d:31:2a:ce:44:2b:2a:f1:a3:a6:d4:33:af:
0e:63:a8:66:37:43:87:8f:8d:7d:5a:15:d6:f6:f1:10:d4:3b:
a5:06:0d:6c:23:14:0d:41:c9:50:2e:82:58:f1:30:2c:b6:6f:
89:93:65:fa:21:97:9c:27:b5:24:d5:fa:1a:ae:e4:91:9b:5c:
4f:29:78:cd:a6:c1:67:7a:a5:d3:8d:8f:e5:bb:f6:0f:ad:2c:
fe:91:a3:7f:19:76:b3:4e:aa:c8:85:39:b0:0f:57:ea:c3:17:
66:39:15:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org