Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/F3s-z43vncO3l7JZNLxAdRTrlPs.roa
File: F3s-z43vncO3l7JZNLxAdRTrlPs.roa (raw, json)
Hash identifier: 7OSxWeFeYRA19XIIOPbQSN9ntg+nejnJLizOSGLHhpg=
Subject key identifier: 17:7B:3E:CF:8D:EF:9D:C3:B7:97:B2:59:34:BC:40:75:14:EB:94:FB
Certificate issuer: /CN=16ea37a8e73e7679a933d70f7b9c872081024455
Certificate serial: 166194DD
Authority key identifier: 16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/F3s-z43vncO3l7JZNLxAdRTrlPs.roa
Signing time: Sat 01 Jan 2022 03:57:35 +0000
ROA not before: Sat 01 Jan 2022 03:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64458
IP address blocks: 194.59.170.0/24 maxlen: 24
185.81.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375493853 (0x166194dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16ea37a8e73e7679a933d70f7b9c872081024455
Validity
Not Before: Jan 1 03:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=177b3ecf8def9dc3b797b25934bc407514eb94fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:1b:28:ef:f4:f3:90:5f:7b:3a:98:ea:da:
65:08:74:31:1d:d8:f6:d6:6d:e1:a1:01:4e:37:17:
42:8a:cf:cd:ff:30:d2:e8:2e:5a:f2:1c:58:34:27:
64:10:16:65:ae:1c:fe:00:47:5d:8d:d0:c8:66:3b:
b2:b6:2c:ab:82:89:33:43:b4:19:64:58:64:d0:df:
80:4b:91:ec:22:f0:45:b9:f4:14:37:c1:70:cc:84:
65:1a:86:9a:3c:a9:28:c9:1e:98:ee:b1:79:bb:ed:
95:c0:e8:55:83:cc:b5:74:f2:51:5f:80:aa:c6:af:
d5:55:82:9c:a3:a8:f8:04:b2:06:a4:8a:11:38:a0:
c5:3d:04:a5:d0:6b:c5:f6:e2:13:a1:02:bf:12:3c:
e1:54:39:c1:4b:16:47:3d:cf:b7:e0:cb:f5:ec:ff:
35:f6:18:05:d6:14:f0:12:2b:3b:f8:6a:20:ef:a6:
7f:96:de:bf:40:ea:70:22:c7:25:bf:48:dc:72:eb:
99:b4:50:a5:f1:2e:b7:62:f5:27:58:72:cf:d9:ec:
48:8b:15:d9:88:8b:3b:9f:f3:21:4f:af:31:8d:89:
b5:82:76:fa:0d:53:61:73:0d:33:fc:de:20:b9:83:
87:96:53:25:c2:98:92:ad:0b:42:8d:ee:ba:05:10:
48:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7B:3E:CF:8D:EF:9D:C3:B7:97:B2:59:34:BC:40:75:14:EB:94:FB
X509v3 Authority Key Identifier:
keyid:16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/F3s-z43vncO3l7JZNLxAdRTrlPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/Fuo3qOc-dnmpM9cPe5yHIIECRFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.97.0/24
194.59.170.0/24
Signature Algorithm: sha256WithRSAEncryption
29:ee:11:09:8d:6d:07:ab:43:53:95:e0:f4:82:ec:63:1e:d5:
00:76:cb:35:00:fe:1b:8b:64:40:e5:08:60:9b:4d:39:33:23:
dd:c0:1f:a4:26:88:9d:1a:71:a3:b3:1a:09:ca:a8:82:8b:4d:
ba:2f:8c:0b:84:fb:53:7e:e8:e3:a4:bd:00:d3:91:f4:9b:6d:
a5:4c:c9:60:64:76:09:6a:bb:a5:f6:6e:56:5c:c1:85:9d:d8:
3d:45:5c:c0:be:dc:42:d9:5b:64:32:dd:ac:e0:bd:23:4e:ba:
8e:f5:0f:a2:1d:19:9f:16:18:28:53:90:b9:28:b9:68:a9:b3:
b1:ba:c2:58:08:e7:5f:d6:a1:de:5c:d2:f3:5f:d1:a4:4d:5f:
58:8a:6d:ad:8f:56:1d:02:25:32:30:d5:b6:fc:5e:6f:12:1e:
f4:d8:7f:a6:9c:d5:34:a1:8a:c5:6b:6c:7d:00:e7:4b:69:18:
3a:9b:09:c1:be:18:d7:56:b2:9f:82:08:d9:19:88:7d:fa:6d:
82:cd:6e:d8:4f:21:f6:2e:c0:0d:34:af:c8:8f:63:fb:fd:0e:
6c:8c:61:77:79:ef:43:e7:ac:ab:f3:be:fc:0e:08:20:db:e9:
7b:e9:b2:5d:53:22:a9:6e:5f:75:e2:34:c5:32:43:14:dc:05:
a2:a1:20:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:34 2023 by rpki-client on console-ams.rpki-client.org