Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/50b082-43c9-4b50-904c-abde7a65e04a/1/7zFFUFCTyL3JLoezp3Hg_yczMEc.roa
File: 7zFFUFCTyL3JLoezp3Hg_yczMEc.roa (raw, json)
Hash identifier: QEk+vmyA1w9QmXNQUT2Zmj1Azuqg36RAPBJatgeeZto=
Subject key identifier: EF:31:45:50:50:93:C8:BD:C9:2E:87:B3:A7:71:E0:FF:27:33:30:47
Certificate issuer: /CN=fdc365aafbe0e45a04dd15e9c231121e9eaea8f2
Certificate serial: 018736DA1457E99CACF53A4F353657AB0D55
Authority key identifier: FD:C3:65:AA:FB:E0:E4:5A:04:DD:15:E9:C2:31:12:1E:9E:AE:A8:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_cNlqvvg5FoE3RXpwjESHp6uqPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/50b082-43c9-4b50-904c-abde7a65e04a/1/7zFFUFCTyL3JLoezp3Hg_yczMEc.roa
Signing time: Fri 31 Mar 2023 08:47:54 +0000
ROA not before: Fri 31 Mar 2023 08:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9158
IP address blocks: 212.6.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:da:14:57:e9:9c:ac:f5:3a:4f:35:36:57:ab:0d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc365aafbe0e45a04dd15e9c231121e9eaea8f2
Validity
Not Before: Mar 31 08:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef3145505093c8bdc92e87b3a771e0ff27333047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:4d:87:24:2b:6c:93:5f:98:a1:cf:13:67:
c2:84:8c:f0:2b:36:a3:0b:99:7b:3d:18:1c:4b:d4:
13:27:94:f0:77:58:96:c8:20:6c:e8:b7:bb:df:61:
99:86:9d:fe:ff:98:5d:9e:50:32:86:27:ff:1e:f2:
36:b9:ce:90:aa:d9:9e:c5:c5:5b:c7:ef:0b:92:36:
21:1e:df:ba:ca:b4:f8:d1:f9:88:43:5d:42:6e:1b:
d4:90:e0:c2:29:5a:9d:e9:89:5e:96:5d:ca:9b:3c:
51:37:01:85:0c:18:3b:cc:f6:e5:b3:b5:83:18:5b:
e5:24:48:64:25:e5:32:be:67:40:16:ce:fa:0d:2c:
0d:52:fe:58:f9:ad:38:97:41:cc:8b:d0:16:35:7f:
c6:de:36:37:93:93:8b:6a:36:8b:ed:a2:4e:8f:14:
3e:63:cb:9c:e8:cd:f7:fe:13:66:7d:82:23:91:c6:
64:3a:b0:2d:14:a2:94:a0:45:cb:32:6a:f2:75:53:
e5:70:ef:da:33:44:cb:5c:91:89:14:3f:d1:be:18:
52:7b:c4:f5:57:58:14:f1:d9:3c:28:c5:81:bb:ad:
7b:95:c3:38:be:86:0f:fd:44:9e:4a:a5:ff:c3:0d:
b9:b6:d5:dd:59:73:32:4c:b5:87:6c:1f:76:f3:3b:
e5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:31:45:50:50:93:C8:BD:C9:2E:87:B3:A7:71:E0:FF:27:33:30:47
X509v3 Authority Key Identifier:
keyid:FD:C3:65:AA:FB:E0:E4:5A:04:DD:15:E9:C2:31:12:1E:9E:AE:A8:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_cNlqvvg5FoE3RXpwjESHp6uqPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/50b082-43c9-4b50-904c-abde7a65e04a/1/7zFFUFCTyL3JLoezp3Hg_yczMEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/50b082-43c9-4b50-904c-abde7a65e04a/1/_cNlqvvg5FoE3RXpwjESHp6uqPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.35.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:72:ca:db:0d:9f:78:a0:8d:ca:9a:21:bd:a7:1f:97:6e:c6:
2d:85:64:9d:84:c9:75:96:af:bb:35:08:00:63:0d:27:48:fd:
18:45:61:0e:96:5f:38:e6:f5:bc:26:7b:7c:41:35:01:b8:1f:
b1:52:93:43:db:84:f8:94:ca:72:6c:9b:8e:98:65:2b:35:01:
67:6e:78:ca:50:19:2c:1a:12:9e:48:48:2f:5b:63:d0:98:0a:
83:0b:05:01:59:0c:fd:b1:9c:80:aa:cf:05:cd:06:ea:11:23:
a9:5a:55:6b:5f:37:48:a2:04:f3:71:68:ef:c1:b2:dd:1c:f4:
23:77:b0:9f:bd:df:71:81:69:92:1a:5a:87:bd:28:62:72:1f:
ce:04:60:b8:9e:87:91:eb:c3:0f:57:05:60:52:d3:a8:42:b0:
41:02:fc:11:5a:e6:f1:78:f9:28:d4:00:d9:18:18:40:07:4e:
47:f2:52:93:28:78:95:12:ce:60:63:b2:73:0d:5a:e2:2c:ca:
aa:1d:17:e9:10:7e:5b:6c:fe:85:8b:38:12:c6:3e:3d:6f:8d:
ca:37:b7:42:78:bc:f6:58:fb:24:71:3c:8e:ce:ee:93:e4:76:
b4:a4:c2:53:c9:23:95:30:6d:99:5c:d2:ca:62:79:11:95:42:
0a:e5:0c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:48 2025 by rpki-client