Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/fcPPlQNnssYokYgOvG4nH1NBvEU.roa
File: fcPPlQNnssYokYgOvG4nH1NBvEU.roa (raw, json)
Hash identifier: 8cVJsG6y0eAwMbitfk1Zqw7JB8tw6ZqQHhGPJZo3N60=
Subject key identifier: 7D:C3:CF:95:03:67:B2:C6:28:91:88:0E:BC:6E:27:1F:53:41:BC:45
Certificate issuer: /CN=0a73778fb1bec28c9982652aede86a004c2682f1
Certificate serial: AB1B42
Authority key identifier: 0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/fcPPlQNnssYokYgOvG4nH1NBvEU.roa
Signing time: Sat 01 Jan 2022 00:59:18 +0000
ROA not before: Sat 01 Jan 2022 00:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202192
IP address blocks: 185.30.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11213634 (0xab1b42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a73778fb1bec28c9982652aede86a004c2682f1
Validity
Not Before: Jan 1 00:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dc3cf950367b2c62891880ebc6e271f5341bc45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:65:a4:63:f7:ae:31:03:c2:63:de:3f:29:a4:
23:75:0e:9e:93:1d:7c:cd:c5:1c:c7:da:2a:06:fc:
5e:58:c9:7d:8e:ec:e8:c7:e7:fb:d7:74:77:29:dd:
ad:40:57:ca:5c:f7:f4:92:f1:c6:eb:5f:05:31:2c:
c3:f2:50:01:e0:d7:07:28:1f:ce:e0:58:ec:b9:b1:
ae:2e:c3:62:4c:d4:97:1a:4b:58:3b:0a:99:02:c0:
4c:60:2f:61:48:90:2a:b9:54:20:9e:5f:a7:96:76:
94:d0:e7:dc:1f:60:8e:66:5c:b3:e0:77:7f:ae:29:
e3:4c:cd:7e:eb:5c:3d:2f:d7:68:c2:b9:7d:22:08:
2d:2b:de:4c:68:99:7b:9b:09:76:0c:81:ae:c6:05:
3f:93:10:da:f6:2e:f0:cc:53:4e:45:3b:50:83:cc:
4a:a6:03:ab:63:37:06:6b:c2:47:07:c3:5f:c4:e8:
6b:5d:17:60:90:88:1c:f6:ea:94:c6:09:54:fc:63:
5d:05:46:36:4f:9e:ea:d8:df:7d:97:7f:e7:26:d8:
3a:a5:42:f2:17:69:90:0a:26:2f:72:6b:b4:9e:b4:
c7:fd:a0:69:20:a0:5f:5c:12:ab:9c:3a:61:23:eb:
cd:88:d0:e5:ad:00:bc:83:53:9e:ed:cd:fc:9b:bd:
40:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C3:CF:95:03:67:B2:C6:28:91:88:0E:BC:6E:27:1F:53:41:BC:45
X509v3 Authority Key Identifier:
keyid:0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/fcPPlQNnssYokYgOvG4nH1NBvEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/CnN3j7G-woyZgmUq7ehqAEwmgvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.28.0/22
Signature Algorithm: sha256WithRSAEncryption
21:b0:ed:56:34:b4:3b:92:f0:46:df:27:5f:51:7f:50:98:da:
4b:c0:74:73:10:23:73:9f:97:65:2f:49:b2:fe:02:84:ef:51:
31:1d:16:60:27:5e:66:8f:54:a7:88:9d:2c:51:5b:0a:ec:d8:
7f:5d:a7:7d:11:8b:d0:72:15:ff:d8:d3:47:4d:c1:1b:3c:8e:
0a:f3:ec:5f:5b:97:20:cb:62:a7:ef:e5:e1:cd:7d:b8:0f:77:
a3:0d:f4:00:3c:0e:df:68:c3:13:be:66:ec:02:ce:77:d5:85:
55:ca:2d:11:39:1c:80:b4:62:60:39:39:0b:a7:73:d7:1e:f2:
ca:f8:c1:2c:c1:75:3a:8d:f7:db:3b:36:b2:c6:47:3e:2f:bf:
29:2d:89:c0:80:c7:9f:12:3f:88:d3:9e:20:30:d2:c7:e4:24:
57:e9:8a:24:a1:c1:30:9a:d2:af:48:cb:d9:63:93:16:00:35:
2e:e9:a7:60:2a:80:42:a6:5d:38:ea:4f:0d:cb:bd:77:d8:56:
2d:e5:28:a9:23:f8:39:08:cd:c3:c8:0c:aa:87:10:29:44:33:
1c:f6:73:26:e4:40:e6:bb:79:a6:a1:6f:61:1a:11:cc:78:83:
8f:38:91:a0:02:58:c9:45:14:62:15:9c:4d:52:26:61:9e:bc:
34:4b:f5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:43 2023 by rpki-client on console-ams.rpki-client.org