Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/748359-eb6d-45f7-b5cb-4fd381b07f7d/1/fnaioblG2QoZ2sr0PnYUdkoMv9c.roa
File: fnaioblG2QoZ2sr0PnYUdkoMv9c.roa (raw, json)
Hash identifier: v6G3m/rYtPt71DH7zP9/mrG5t8DYuvAgmAgnjxWxyaY=
Subject key identifier: 7E:76:A2:A1:B9:46:D9:0A:19:DA:CA:F4:3E:76:14:76:4A:0C:BF:D7
Certificate issuer: /CN=9d6cf689d49af30a17b810e7f275872fd916d858
Certificate serial: 03DE3D57
Authority key identifier: 9D:6C:F6:89:D4:9A:F3:0A:17:B8:10:E7:F2:75:87:2F:D9:16:D8:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nWz2idSa8woXuBDn8nWHL9kW2Fg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/748359-eb6d-45f7-b5cb-4fd381b07f7d/1/fnaioblG2QoZ2sr0PnYUdkoMv9c.roa
Signing time: Sat 01 Jan 2022 13:59:38 +0000
ROA not before: Sat 01 Jan 2022 13:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29802
IP address blocks: 193.9.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64896343 (0x3de3d57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d6cf689d49af30a17b810e7f275872fd916d858
Validity
Not Before: Jan 1 13:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e76a2a1b946d90a19dacaf43e7614764a0cbfd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:f3:ca:37:04:a1:42:32:d2:57:38:1d:70:
6d:a7:e6:d2:a4:9d:62:82:8f:a5:0a:c1:4f:50:c2:
9c:9a:62:78:91:c7:75:2a:50:dc:c6:f0:20:ab:05:
2f:dd:87:0a:32:cc:ab:e0:21:a7:a3:36:f8:2b:78:
70:09:d9:d9:6c:9d:ae:52:85:db:b2:07:d4:50:69:
16:97:5c:b7:4f:82:97:ee:27:32:48:a8:73:d4:69:
dc:3a:aa:63:cf:1c:05:b8:fd:6b:0a:2d:a0:dc:c7:
38:28:4f:4e:12:20:3b:bd:f4:98:3e:48:2c:9a:bd:
9a:bd:a6:df:86:04:4c:cd:71:b9:ba:ea:c3:52:bc:
ca:00:d5:55:16:e6:73:6e:ae:91:db:53:dd:30:4a:
fa:79:54:4c:48:a9:ed:95:5e:f3:8a:28:d7:bc:0f:
67:8e:68:54:4f:a6:59:8c:11:ee:14:22:6c:4a:8d:
76:52:84:76:75:ca:fc:82:99:68:db:9b:50:e6:9c:
e5:be:ef:09:9a:50:54:a3:b0:9f:8d:d2:ec:55:07:
42:ea:ee:0f:10:d1:cd:9f:a4:03:ea:12:ea:99:b8:
ad:00:82:8d:ae:2f:db:c7:38:0f:18:d2:fa:56:f6:
3e:fd:21:64:01:28:2f:c2:5c:fc:f3:7f:63:c6:f4:
cf:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:76:A2:A1:B9:46:D9:0A:19:DA:CA:F4:3E:76:14:76:4A:0C:BF:D7
X509v3 Authority Key Identifier:
keyid:9D:6C:F6:89:D4:9A:F3:0A:17:B8:10:E7:F2:75:87:2F:D9:16:D8:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nWz2idSa8woXuBDn8nWHL9kW2Fg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/748359-eb6d-45f7-b5cb-4fd381b07f7d/1/fnaioblG2QoZ2sr0PnYUdkoMv9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/748359-eb6d-45f7-b5cb-4fd381b07f7d/1/nWz2idSa8woXuBDn8nWHL9kW2Fg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.28.0/24
Signature Algorithm: sha256WithRSAEncryption
97:b5:03:07:3d:d4:be:42:4e:48:a3:98:19:c8:c0:58:d7:8e:
5c:c8:3d:ba:7f:77:11:43:08:f6:a4:a5:98:56:85:0d:95:05:
84:72:e3:cb:7f:cf:9a:a9:66:01:0b:20:f1:a2:af:6a:b9:07:
3a:64:a0:64:5d:9e:6a:14:c7:ce:c7:b9:3d:bc:ff:43:35:4e:
33:fc:35:b8:f2:ba:e8:1e:6e:01:b1:cb:ee:01:3f:47:48:f7:
a4:f7:61:80:98:1a:34:ad:e3:22:8a:f0:05:02:a1:5d:3c:a2:
74:c1:f4:95:20:55:33:c7:ed:7f:18:d8:3a:11:94:7e:93:ab:
88:d3:6c:34:d5:ae:9c:90:41:78:8d:e2:89:06:64:b6:56:21:
c0:e6:a9:24:09:8d:d4:c2:53:5f:4a:70:20:ed:fb:22:ee:09:
20:0e:44:f7:8a:fb:cf:4e:c0:db:84:71:0a:44:76:57:f3:f5:
22:8d:4c:7e:f9:a8:f7:93:8f:d8:42:0f:7f:fb:f8:54:b5:8a:
8a:96:2e:9a:22:d5:83:61:6b:c1:0c:10:4b:08:89:9e:88:65:
c2:bc:11:8f:97:32:26:bb:04:f2:b8:5e:94:f4:0c:b3:a5:3e:
28:df:92:4d:e2:8c:ee:bb:45:0e:4a:fe:58:bb:42:8a:27:25:
8a:37:a3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:02 2024 by rpki-client on console-ams.rpki-client.org