Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/dR3mmaISHDhcwtkaQ_V2pIJ-foc.roa
File: dR3mmaISHDhcwtkaQ_V2pIJ-foc.roa (raw, json)
Hash identifier: zF460L9XRZX1y2L8TLGfGRFlmqOhdUbh7DjEIE9qV10=
Subject key identifier: 75:1D:E6:99:A2:12:1C:38:5C:C2:D9:1A:43:F5:76:A4:82:7E:7E:87
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 01835A2DBDCF116FDAD02B31A1452B23BA28
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/dR3mmaISHDhcwtkaQ_V2pIJ-foc.roa
Signing time: Tue 20 Sep 2022 09:14:50 +0000
ROA not before: Tue 20 Sep 2022 09:14:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43120
IP address blocks: 95.215.216.0/22 maxlen: 23
176.39.32.0/23 maxlen: 24
86.111.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:2d:bd:cf:11:6f:da:d0:2b:31:a1:45:2b:23:ba:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Sep 20 09:14:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=751de699a2121c385cc2d91a43f576a4827e7e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:8c:06:e3:21:46:28:33:b3:80:11:7f:af:55:
9f:53:f9:50:a0:e9:0a:61:2c:76:4f:16:d1:97:8d:
8e:9a:36:6e:7e:30:a6:d1:ba:a6:dc:af:10:d8:24:
fb:da:46:62:36:65:f6:50:f3:9c:11:78:36:a3:8d:
66:48:13:95:db:b0:7e:88:45:71:7c:83:9d:44:f9:
c3:f0:37:e3:0f:81:c2:4a:dd:30:f8:22:2c:ff:26:
b0:8f:d7:63:a7:da:ff:60:cf:9f:2b:af:3f:fc:5c:
dc:59:f0:8c:63:6c:e1:69:ed:23:be:11:30:31:99:
8d:97:e2:de:e8:8a:32:8e:62:1e:01:89:e6:3a:b1:
cb:31:e4:de:17:9a:9c:2c:81:41:00:ca:b7:57:e6:
f9:a5:99:14:12:3e:a8:5a:46:39:95:ed:83:55:d7:
5f:f3:c6:2b:1f:cd:00:9b:02:ff:75:94:58:1f:36:
de:bb:89:84:7b:e5:ad:47:50:ef:e7:75:9b:dd:30:
f0:d9:a2:0c:39:72:d9:e1:c4:9c:65:f1:bb:7f:ff:
13:c2:b3:40:a1:b0:26:a7:77:d7:d5:45:dc:b9:a6:
a4:b7:97:2d:c3:8e:ed:bc:1f:e3:6f:84:c8:1c:63:
59:be:ab:05:aa:ff:59:f8:a5:41:ae:e4:95:18:c1:
f4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1D:E6:99:A2:12:1C:38:5C:C2:D9:1A:43:F5:76:A4:82:7E:7E:87
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/dR3mmaISHDhcwtkaQ_V2pIJ-foc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.87.0/24
95.215.216.0/22
176.39.32.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:3a:ae:22:fb:d9:2a:c2:ee:ac:7b:8e:47:30:85:72:db:bf:
04:b1:82:5f:af:41:a7:85:22:74:e9:9a:e4:3d:85:64:59:d3:
97:bd:9d:00:71:b9:37:57:6a:53:a8:c2:5d:04:3b:37:6c:65:
e8:cc:d5:d1:19:62:97:50:a7:a4:d4:37:87:5e:14:a7:8c:88:
a9:e0:96:4a:fd:ce:ab:1f:4b:c7:e8:bd:f5:b3:55:85:d7:0e:
90:ea:4d:fd:3e:f9:1d:a8:d6:b0:ba:d9:c8:90:95:4e:61:db:
37:e5:c5:23:d9:6a:c0:cd:e7:3a:8b:66:ce:25:8c:9c:bf:ef:
e6:49:29:bc:54:10:34:0b:f6:24:0a:dc:53:ce:64:d8:16:5e:
f9:10:51:81:8c:be:8b:a8:62:52:17:a2:67:ae:d5:74:98:5d:
d1:28:1f:a1:e1:46:c7:61:39:ae:a0:bf:05:fe:9c:4c:88:0e:
4b:fc:1f:65:0b:72:f2:76:9e:e1:a4:5f:83:0d:d2:88:42:98:
71:4d:2a:89:7a:80:6f:b6:07:ce:d7:29:a6:b9:e6:92:e7:74:
94:c8:79:f0:90:df:a9:fa:60:70:6c:c8:a9:4d:fc:a0:ac:26:
52:53:8d:f3:ef:3d:12:82:52:68:34:c3:f9:46:b4:26:6f:36:
f3:c4:bd:e9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org