Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/1-FLSXuYU099nNxtFZxdGTutjt_8.roa
File: 1-FLSXuYU099nNxtFZxdGTutjt_8.roa (raw, json)
Hash identifier: 7Poaz7ys9GNjyVfE3l/n316j3skaXox0SJLBGrDGKtw=
Subject key identifier: F8:52:D2:5E:E6:14:D3:DF:67:37:1B:45:67:17:46:4E:EB:63:B7:FF
Certificate issuer: /CN=536c4c94fed4fa8b903f6f6fb5340484c0e4a4d3
Certificate serial: 09460876
Authority key identifier: 53:6C:4C:94:FE:D4:FA:8B:90:3F:6F:6F:B5:34:04:84:C0:E4:A4:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2xMlP7U-ouQP29vtTQEhMDkpNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/1-FLSXuYU099nNxtFZxdGTutjt_8.roa
Signing time: Sat 01 Jan 2022 06:01:17 +0000
ROA not before: Sat 01 Jan 2022 06:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8859
IP address blocks: 193.17.21.0/24 maxlen: 24
213.241.128.0/18 maxlen: 24
185.181.188.0/22 maxlen: 24
194.45.27.0/24 maxlen: 24
212.114.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155584630 (0x9460876)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536c4c94fed4fa8b903f6f6fb5340484c0e4a4d3
Validity
Not Before: Jan 1 06:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f852d25ee614d3df67371b456717464eeb63b7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:52:70:39:52:4f:a6:48:67:95:e7:8b:47:a3:
f7:af:48:6a:fe:6f:d1:1e:b0:47:dd:0a:65:d1:7b:
a8:cc:a9:ab:0d:d8:be:79:5e:89:73:97:28:84:a1:
3b:f5:95:a2:81:62:9e:32:1b:b9:36:2b:87:d4:cb:
9c:53:b5:bd:66:8d:8b:68:5c:a1:a5:2f:2e:4c:99:
e9:49:55:3f:c7:e7:54:07:57:4f:bf:97:d1:e5:45:
4d:1d:82:19:f4:49:23:e9:74:96:f0:dd:bf:fb:79:
ac:4d:5a:6f:cc:43:37:4a:5a:cd:d5:b2:b7:c3:ab:
d9:e3:5b:2a:62:ea:5f:a1:38:68:1a:31:ab:1f:2b:
99:54:a0:31:e2:62:14:b8:bb:91:70:f0:33:7f:80:
fc:ea:88:35:25:c2:ba:99:2b:f5:1a:5b:4b:57:04:
f0:0e:96:45:b0:21:f7:c7:5b:c3:c4:fe:4c:58:c0:
6e:ea:dc:72:83:78:14:ed:54:42:7f:e4:d6:40:b0:
bb:2a:87:50:b8:a3:c1:73:7e:d2:9c:38:7a:ff:df:
8f:78:ca:f2:0a:66:9f:15:91:ea:7d:d0:9a:c8:50:
e7:96:d5:73:64:e1:50:d6:81:76:c1:62:80:0b:15:
e4:ec:70:a4:fa:0e:91:8f:b7:8e:02:5d:cc:71:d0:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:52:D2:5E:E6:14:D3:DF:67:37:1B:45:67:17:46:4E:EB:63:B7:FF
X509v3 Authority Key Identifier:
keyid:53:6C:4C:94:FE:D4:FA:8B:90:3F:6F:6F:B5:34:04:84:C0:E4:A4:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2xMlP7U-ouQP29vtTQEhMDkpNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/1-FLSXuYU099nNxtFZxdGTutjt_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d502-c5d8-4b14-9836-a67f95f2de5e/1/U2xMlP7U-ouQP29vtTQEhMDkpNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.188.0/22
193.17.21.0/24
194.45.27.0/24
212.114.64.0/19
213.241.128.0/18
Signature Algorithm: sha256WithRSAEncryption
6f:80:61:8a:48:c4:0d:b1:08:43:df:44:65:0e:02:03:b2:7d:
f1:81:e6:7a:d3:24:b4:4a:54:e2:32:29:d0:40:75:87:cf:ed:
03:2b:09:01:5a:6d:bd:1f:6e:97:92:ed:52:95:68:3f:42:e1:
2d:50:56:af:0d:1b:53:0a:e0:5a:97:52:1b:68:35:d6:ce:85:
4b:a9:05:9b:05:61:f8:c1:2f:4e:f0:34:8b:39:78:04:a0:bd:
57:e9:4e:cb:79:e4:7f:39:67:d9:33:2d:a0:34:8a:71:f1:33:
64:62:d1:bd:1b:5f:03:e7:b2:f6:7e:b8:8f:15:b7:c3:46:a4:
ee:d5:e8:4e:71:ed:52:ce:a8:13:1a:d0:83:27:eb:e0:67:bc:
44:91:16:bc:c1:d3:93:00:53:4b:01:f0:6d:c3:88:f2:4a:06:
e4:d1:7d:54:f5:60:38:02:69:bc:8c:08:0c:5d:73:eb:6f:7e:
e5:a9:14:dc:d4:52:4b:a9:0a:35:ba:d0:24:60:20:0a:55:04:
00:99:e6:08:e2:a0:d6:22:63:d9:8e:70:9b:1f:cc:47:e1:99:
b6:51:4d:64:da:73:6a:9f:34:ac:13:02:0a:dd:80:01:09:10:
2d:02:69:ca:52:f3:f7:cf:11:2e:55:68:cf:f3:1d:b0:fd:33:
aa:2c:3e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:34 2023 by rpki-client on console-fra.rpki-client.org