Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FOyHWiN7Ey3May-qbmhdDg1-r3U.roa
File: FOyHWiN7Ey3May-qbmhdDg1-r3U.roa (raw, json)
Hash identifier: IrkC8Ul8ZPsbkhH+4NZM0Vj4C+fAZKkGdMklhHbRU7E=
Subject key identifier: 14:EC:87:5A:23:7B:13:2D:CC:6B:2F:AA:6E:68:5D:0E:0D:7E:AF:75
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0183D00A8F4D486078F83B9B1E93BFC72387
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FOyHWiN7Ey3May-qbmhdDg1-r3U.roa
Signing time: Thu 13 Oct 2022 06:31:36 +0000
ROA not before: Thu 13 Oct 2022 06:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 82.163.64.0/22 maxlen: 24
82.163.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:0a:8f:4d:48:60:78:f8:3b:9b:1e:93:bf:c7:23:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 13 06:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14ec875a237b132dcc6b2faa6e685d0e0d7eaf75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:4e:0a:11:81:73:76:62:4a:63:1a:d2:ed:
1a:65:d6:2d:f8:cb:cc:70:4f:ec:b1:ec:77:6a:ba:
8b:2f:b5:79:89:f1:68:32:7a:28:63:5f:3a:a7:34:
b6:d9:18:e1:04:49:d9:61:9a:3a:5c:8d:0f:d3:70:
70:00:de:30:a5:b9:22:a6:9b:9b:3c:c7:f8:7b:c7:
f8:19:c3:8a:95:ec:bb:6b:ab:37:8a:fc:fb:43:95:
28:cb:e9:f7:56:c7:14:d2:1a:29:68:72:5e:c1:21:
45:fe:ca:5e:90:af:d4:61:c2:cf:aa:3f:00:04:e4:
14:03:25:02:96:50:e5:c0:e1:de:e9:b6:93:0a:23:
b1:e9:7d:65:26:fe:bf:13:a8:1e:b6:cd:5f:3a:07:
e3:9e:89:94:3d:1e:07:ce:94:40:d0:52:bc:7b:28:
8f:0f:91:a0:44:05:ea:67:ee:73:a8:30:73:cc:42:
52:27:44:ac:75:2a:43:b5:cd:ff:6f:5a:2f:7c:2c:
19:a6:e2:67:24:43:b0:1d:77:4e:80:42:ae:d5:4d:
23:2d:f2:b7:0b:51:a5:5d:da:2a:ee:66:b9:3d:e9:
73:53:37:94:56:54:63:21:62:28:db:da:83:e3:6e:
cb:85:13:a6:89:ab:7e:7b:bd:49:d4:58:5d:57:db:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:EC:87:5A:23:7B:13:2D:CC:6B:2F:AA:6E:68:5D:0E:0D:7E:AF:75
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/FOyHWiN7Ey3May-qbmhdDg1-r3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.64.0/22
82.163.228.0/22
Signature Algorithm: sha256WithRSAEncryption
94:29:6e:ae:9d:4c:49:c5:58:cf:00:93:e9:6a:d0:0c:57:a5:
c9:a3:d3:f4:75:6d:23:84:e1:e9:54:f0:f4:5d:b1:e0:d8:3e:
1a:d7:f4:3e:7c:1d:c0:f7:09:e0:c4:2e:59:89:3d:51:6b:47:
70:a2:3a:bf:af:4c:b6:00:ce:34:79:f6:d1:4f:72:80:1c:1e:
a0:3f:b8:31:25:27:30:5e:12:c3:59:a4:19:be:e1:04:3f:31:
98:a2:92:12:e2:38:d7:a4:0e:a3:d3:8f:c9:df:75:5b:f4:0b:
f4:86:51:15:96:7c:87:6f:2d:57:7f:05:e8:44:d6:ac:00:c5:
6a:fa:3f:66:88:cb:e8:59:27:32:f2:9f:06:0d:da:f3:53:df:
1a:52:12:21:e5:04:53:41:b5:4e:de:82:9a:dd:93:a0:ce:bd:
2a:03:96:63:7b:a0:1b:c9:3a:77:94:31:c9:75:f3:c6:12:73:
fc:39:e1:d2:1d:99:aa:0f:92:49:8a:75:67:65:96:55:88:67:
99:35:f2:2b:62:bf:9c:f2:fc:ba:96:16:a5:45:24:46:88:77:
f7:2a:6a:8c:a0:fc:0e:a1:82:d0:2d:69:7b:46:8d:eb:77:5a:
a2:1e:51:8f:f3:38:6d:cf:cc:f2:ef:08:5e:3c:7c:d5:38:97:
d1:79:51:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org