Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fwxrheBeRZ-u1FEk2EMEGlxA6DU.roa
File: fwxrheBeRZ-u1FEk2EMEGlxA6DU.roa (raw, json)
Hash identifier: brHmUBTCJyngK24gkOdPyfOlxtfYCBcRlbZCqEsW4m8=
Subject key identifier: 7F:0C:6B:85:E0:5E:45:9F:AE:D4:51:24:D8:43:04:1A:5C:40:E8:35
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 133CF25D
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fwxrheBeRZ-u1FEk2EMEGlxA6DU.roa
Signing time: Sat 01 Jan 2022 04:03:08 +0000
ROA not before: Sat 01 Jan 2022 04:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211686
IP address blocks: 185.148.12.0/23 maxlen: 24
37.123.192.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322761309 (0x133cf25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f0c6b85e05e459faed45124d843041a5c40e835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9b:1f:6a:56:4e:41:16:a6:87:9e:8f:39:37:
1e:6e:a5:5d:27:02:1c:38:55:e8:41:d6:b7:a6:22:
93:44:be:ad:30:a9:2c:b1:68:ae:f1:2f:52:b0:78:
9b:ab:08:34:f5:85:5d:a5:e2:23:6d:ad:b9:48:4b:
7f:9c:9a:ad:e2:c2:13:4e:b6:1b:94:fa:ea:5c:77:
e9:05:c5:cf:05:e0:51:d8:22:59:b3:1a:29:ab:98:
32:2d:9e:cc:4f:9f:76:5f:d8:89:fe:e3:ea:4b:1e:
d7:ac:8a:5d:2c:7a:2b:7b:3b:7a:2d:b8:78:a0:c6:
71:f4:ee:63:2e:4c:b9:a4:1d:eb:13:f0:79:f8:59:
6a:ce:49:ba:48:07:7c:e2:98:f4:04:ea:36:2a:18:
d4:6b:60:85:81:c1:cd:06:b5:9d:90:20:f0:03:c1:
0b:35:6e:1f:a1:83:a0:f8:ff:28:5e:55:77:5e:4d:
e8:7c:f0:02:5d:c7:9f:99:ea:ee:83:67:d9:50:dc:
c8:fe:ad:ee:85:a0:65:87:b2:32:7b:1e:09:b2:ea:
30:25:bc:fb:1f:02:9c:24:a3:ba:fd:ec:f7:8d:cc:
de:50:b6:c9:13:84:b7:b1:8a:a6:a1:39:d5:a5:97:
4a:91:a1:72:39:77:c2:29:d4:65:b9:43:06:d0:fb:
2a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0C:6B:85:E0:5E:45:9F:AE:D4:51:24:D8:43:04:1A:5C:40:E8:35
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fwxrheBeRZ-u1FEk2EMEGlxA6DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.192.0/23
185.148.12.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:99:9f:11:c3:19:b8:bb:63:b2:b3:d8:40:ad:52:ea:ef:bd:
f8:a4:6a:23:1c:61:f7:36:b8:8e:c9:6d:dc:33:49:f7:47:79:
50:dd:a1:a6:3f:2d:c0:0e:ee:26:38:27:4d:b0:26:06:ff:da:
40:25:b9:64:ed:e2:80:27:d0:0a:91:76:48:21:06:51:17:51:
62:08:a1:ab:15:c0:ba:50:1a:4c:3a:28:c4:17:40:37:cb:73:
c1:52:ca:a8:54:fd:f9:97:c6:66:f2:3d:04:53:a2:df:02:e9:
04:31:87:88:b1:7f:14:c6:80:28:69:cd:3b:7a:30:c6:a5:62:
69:15:1e:09:67:60:e4:db:ff:fb:c5:16:e4:28:45:25:12:75:
39:fd:aa:b8:11:19:bd:6c:2b:44:52:77:0e:82:4f:c9:26:01:
65:99:16:4c:5f:b5:77:76:f3:3e:55:94:7e:f3:c4:15:4d:bd:
56:8c:37:f3:9f:51:f5:71:30:26:32:bb:b9:e4:3b:95:a8:f0:
5c:d4:cc:71:d1:51:97:65:b1:b5:17:66:eb:04:1a:83:55:7f:
2d:03:93:00:67:30:7e:4b:5e:a0:4e:74:c2:93:ea:d0:96:53:
a6:3d:05:ee:30:91:0c:e7:d0:b3:1a:81:0f:0b:8e:67:cb:71:
71:0c:57:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:45 2023 by rpki-client on console-fra.rpki-client.org