Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3DjCqXlHzyumfVxS3EjekyemE8.roa
File: F3DjCqXlHzyumfVxS3EjekyemE8.roa (raw, json)
Hash identifier: Yd0PKDRmjZIqWibI/UtwwcJFcAt+7llVYApqck4GAJE=
Subject key identifier: 17:70:E3:0A:A5:E5:1F:3C:AE:99:F5:71:4B:71:23:7A:4C:9E:98:4F
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38DA7FC3
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3DjCqXlHzyumfVxS3EjekyemE8.roa
Signing time: Sat 01 Jan 2022 07:55:17 +0000
ROA not before: Sat 01 Jan 2022 07:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25182
IP address blocks: 145.58.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953843651 (0x38da7fc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1770e30aa5e51f3cae99f5714b71237a4c9e984f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:45:03:ef:ec:48:93:42:32:c6:c5:68:e1:b7:
77:82:53:ca:3d:28:c1:04:95:e7:f6:d1:b2:16:ad:
e0:45:78:81:f9:d4:f1:5e:2a:7e:6f:f4:fa:b3:45:
ea:f9:70:9e:11:1f:c3:95:60:80:fb:85:70:ae:a6:
e7:19:0e:2f:d1:27:2a:19:35:cc:b7:c6:18:ee:b2:
13:6a:8b:ff:62:d1:44:2c:71:ea:0f:24:88:55:01:
a3:9a:61:13:97:9b:6c:eb:98:b0:fe:a8:34:2b:b4:
96:ca:10:43:94:24:11:fa:03:d2:cd:59:77:7e:b0:
dd:6c:a3:43:0c:b7:e3:81:c1:96:9b:34:5a:6f:2e:
71:2e:bf:1a:fd:0d:5c:eb:79:43:57:9b:81:72:a9:
84:de:97:fb:f2:ea:cb:a7:26:7e:48:72:1d:15:74:
1c:6e:3b:2f:c8:18:97:1b:f8:b9:4a:ff:df:77:20:
f5:e7:8a:e2:67:13:76:dc:6d:b1:59:c7:2c:e5:21:
4a:b2:96:d7:85:12:80:7a:3c:55:9d:89:88:15:af:
c4:71:db:76:e3:86:81:8c:ec:f6:03:0c:dc:30:9b:
10:a8:75:8f:82:10:73:40:ea:e6:98:4b:7b:86:c6:
34:df:2a:51:ed:f4:87:db:90:c2:0e:88:bd:d7:e8:
42:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:70:E3:0A:A5:E5:1F:3C:AE:99:F5:71:4B:71:23:7A:4C:9E:98:4F
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3DjCqXlHzyumfVxS3EjekyemE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:38:46:14:ca:26:31:40:41:17:9f:65:13:12:da:13:fd:b8:
8e:84:dd:9b:48:7a:d1:13:5f:9d:5b:62:c9:51:99:2b:eb:c4:
7a:19:4e:fc:67:79:ad:75:b2:97:05:0e:04:da:db:23:df:5c:
64:dc:a2:51:97:5e:83:dc:65:7e:08:0e:96:03:f8:d6:a2:dd:
fb:76:5c:b2:b8:8b:e7:85:b1:1f:05:79:ce:c1:20:95:a2:7b:
3b:56:4a:dd:38:19:69:82:fd:5a:7e:2f:a4:85:ce:63:ca:2d:
9f:e4:ac:73:d0:4e:5c:ae:d7:6c:c8:ed:f8:27:bd:5d:9e:01:
7d:bc:9b:29:fa:e4:e2:0b:8c:8b:f1:57:d4:88:e7:c7:0c:bd:
df:30:0e:6a:cc:ee:b7:79:57:8f:73:83:90:43:e4:b2:e3:3d:
6b:8a:c4:7b:dc:7a:bc:af:29:60:91:fa:23:4b:12:e2:07:65:
70:73:0c:3c:ca:d1:cd:f0:ba:ad:64:21:ef:ab:00:be:6f:0a:
0e:1c:e8:22:b0:14:6b:17:2d:dc:c9:e3:e6:dc:8b:0b:41:f7:
be:3b:2b:f3:5a:4e:f0:50:83:92:99:3d:ec:ea:1f:99:76:0a:
7e:ef:f0:bd:c3:9c:10:30:ac:67:31:fc:18:66:b1:65:60:75:
de:3a:ca:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org