Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/FJWdchye7EFFJgS2GQbkP9qUHmA.roa
File: FJWdchye7EFFJgS2GQbkP9qUHmA.roa (raw, json)
Hash identifier: +2hT50GNxOtXlooSvXC70tAZcPougZblk8SlzDyDKlE=
Subject key identifier: 14:95:9D:72:1C:9E:EC:41:45:26:04:B6:19:06:E4:3F:DA:94:1E:60
Certificate issuer: /CN=c2902f769bf681b1039f2cee61e9e0f975e4e56b
Certificate serial: 54E9
Authority key identifier: C2:90:2F:76:9B:F6:81:B1:03:9F:2C:EE:61:E9:E0:F9:75:E4:E5:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpAvdpv2gbEDnyzuYeng-XXk5Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/FJWdchye7EFFJgS2GQbkP9qUHmA.roa
Signing time: Thu 10 Feb 2022 14:11:11 +0000
ROA not before: Thu 10 Feb 2022 14:11:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29013
IP address blocks: 188.239.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21737 (0x54e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2902f769bf681b1039f2cee61e9e0f975e4e56b
Validity
Not Before: Feb 10 14:11:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14959d721c9eec41452604b61906e43fda941e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:77:5e:09:cf:5c:64:ea:0c:58:13:e3:95:f5:
32:5b:42:e6:e3:12:af:ae:07:21:82:74:4f:6c:27:
81:76:76:c7:eb:ae:de:e1:bc:b4:ce:50:9b:62:7c:
53:7d:13:21:d5:f6:08:b1:03:50:62:85:2b:18:3e:
7e:80:a6:df:19:62:b3:85:ad:1a:37:7d:4f:b3:5a:
eb:fb:eb:ab:34:03:05:ba:d8:8a:05:37:5d:ee:95:
31:eb:47:d7:36:d4:67:6a:6a:38:4b:01:46:44:57:
95:bc:64:53:5f:ad:d5:05:ea:20:05:64:89:be:b8:
23:a9:4a:53:96:44:8a:92:17:6d:6e:48:a8:e1:dc:
43:67:18:53:f8:c0:e8:56:27:41:3c:cd:61:24:d4:
63:a6:85:fe:bb:0f:15:df:48:e9:d6:0b:c2:e4:d1:
62:4c:a5:e5:dc:ce:a4:0e:c8:09:8a:2b:0b:ad:3b:
ef:f2:7e:55:5d:0c:03:83:25:26:fb:fc:84:7f:21:
3e:c5:a2:a6:08:57:08:3b:14:a2:4d:a0:84:f0:19:
35:df:dd:a9:7f:d6:2a:5d:c2:b9:d6:0a:25:c2:1f:
8a:3b:46:48:d2:d0:87:c6:39:f1:7d:db:a9:41:49:
d0:bb:07:91:58:98:ae:c0:00:42:43:ee:dd:95:0e:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:95:9D:72:1C:9E:EC:41:45:26:04:B6:19:06:E4:3F:DA:94:1E:60
X509v3 Authority Key Identifier:
keyid:C2:90:2F:76:9B:F6:81:B1:03:9F:2C:EE:61:E9:E0:F9:75:E4:E5:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpAvdpv2gbEDnyzuYeng-XXk5Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/FJWdchye7EFFJgS2GQbkP9qUHmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/54d413-40f5-4ae2-aca9-ff3936fe9946/1/wpAvdpv2gbEDnyzuYeng-XXk5Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.239.64.0/18
Signature Algorithm: sha256WithRSAEncryption
58:ba:ad:b7:c4:e5:ca:47:35:93:ab:0b:20:7c:6f:d7:26:38:
05:03:d9:ac:4e:12:5e:99:60:81:43:02:14:d8:50:dd:bc:91:
4f:1b:9f:6a:b6:83:39:77:d4:f4:f2:7d:9d:d5:3f:ed:35:b8:
b6:d3:7c:4e:5a:55:a1:f4:ad:16:77:36:00:ff:f7:41:38:18:
3c:ec:5d:26:2f:80:50:f9:98:cd:a9:36:f7:d5:79:20:e6:fd:
8f:58:ce:1a:fa:02:0f:2c:c4:74:d0:97:ba:4d:e4:1c:c0:b5:
f7:18:20:fc:aa:4a:8a:36:2d:bd:26:28:a0:62:95:7b:61:6c:
c3:30:c8:f6:dd:61:9c:ad:84:fc:38:cb:5f:3b:25:a1:12:e4:
c7:db:80:c7:8a:eb:30:1d:01:f9:4f:a7:4e:e4:6d:4d:1e:4f:
7b:32:df:08:08:0f:43:39:04:97:72:6f:ef:33:52:d4:3c:29:
4f:e5:43:3c:37:58:9c:41:a4:c3:23:57:1b:bd:60:69:23:70:
0c:86:5d:78:62:df:5e:bb:a7:26:aa:ff:45:18:bb:fa:4e:75:
e7:b7:47:3f:20:86:7d:59:54:e8:24:3b:71:5f:88:b9:52:11:
8f:4e:ad:35:b5:8d:6d:c7:f1:df:f2:3c:60:61:35:8e:f5:f2:
39:e8:03:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:45 2023 by rpki-client on console-ams.rpki-client.org