Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/fedHPSVP9NhOCX6DqF7WmyEGnFc.roa
File: fedHPSVP9NhOCX6DqF7WmyEGnFc.roa (raw, json)
Hash identifier: QQPyvVAXA3TZWP7rOj8FOGr3f1qxYPYEWUW475xwqt4=
Subject key identifier: 7D:E7:47:3D:25:4F:F4:D8:4E:09:7E:83:A8:5E:D6:9B:21:06:9C:57
Certificate issuer: /CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Certificate serial: 0182F20A1283E69F2F03DB1F0E104BCB0128
Authority key identifier: 12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/fedHPSVP9NhOCX6DqF7WmyEGnFc.roa
Signing time: Wed 31 Aug 2022 03:55:22 +0000
ROA not before: Wed 31 Aug 2022 03:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205384
IP address blocks: 93.159.181.0/24 maxlen: 24
93.159.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:0a:12:83:e6:9f:2f:03:db:1f:0e:10:4b:cb:01:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Validity
Not Before: Aug 31 03:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7de7473d254ff4d84e097e83a85ed69b21069c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:95:d2:84:c4:78:fd:20:5b:23:1b:18:b6:
16:36:87:2f:90:c2:6b:85:22:90:c3:76:bc:1f:7e:
37:d0:43:26:60:95:96:5e:e7:58:27:31:67:14:be:
07:d1:85:8e:c3:f1:2a:64:20:ea:81:38:fc:72:3e:
93:84:91:9e:46:99:e5:47:0c:17:ea:47:91:04:b7:
fe:42:9a:5a:99:ec:e0:1c:31:01:d8:bc:2e:44:9a:
bb:c8:a1:e4:ce:71:a8:24:e3:d5:40:7d:9a:a7:73:
34:ba:80:99:b7:8a:ab:0c:2d:35:4b:7b:41:0c:58:
a4:0d:d9:51:02:aa:0c:dc:d2:b4:04:69:81:59:d8:
28:7b:94:9e:c3:69:81:d5:57:4f:b7:92:d2:51:1f:
68:3b:a9:e6:ae:f0:48:ab:51:cf:55:e4:af:ca:5d:
77:47:87:b5:6d:3e:0b:16:80:f9:2f:51:57:dd:fe:
d5:26:b4:dc:34:70:8e:25:d9:01:0e:82:16:8f:48:
03:b0:c2:14:6e:1c:14:ce:de:50:89:66:99:11:e9:
b2:bb:56:cb:80:20:c6:ab:9b:a5:85:32:40:2a:97:
b4:c0:b7:90:e3:6b:8d:3a:85:ff:39:89:6d:5f:93:
66:4f:20:3c:36:e2:46:f9:62:16:24:c8:3e:83:6b:
72:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E7:47:3D:25:4F:F4:D8:4E:09:7E:83:A8:5E:D6:9B:21:06:9C:57
X509v3 Authority Key Identifier:
keyid:12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/fedHPSVP9NhOCX6DqF7WmyEGnFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Eipka-1MQXprSAX5PXenpGXjS5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.180.0/23
Signature Algorithm: sha256WithRSAEncryption
30:e0:e9:75:f3:14:f2:0b:96:38:3d:c0:fc:b6:a9:87:32:d8:
81:91:af:34:0b:bb:9d:fb:32:86:fb:58:90:d8:9a:8b:b6:0a:
34:ba:d5:cf:67:c2:4a:5b:70:f6:26:84:1b:d7:ec:5c:93:4e:
ca:cd:35:7f:7e:6a:73:5c:92:0d:00:98:a7:ca:bd:f8:93:e4:
ed:ca:13:b7:37:dd:2f:f3:c3:b5:f9:8f:ea:bf:97:8b:cf:42:
63:f0:48:bf:5a:8e:78:16:e7:20:fe:75:a6:3e:11:2e:31:ba:
fb:1a:94:f1:95:07:ce:cd:d3:c2:41:fc:c1:b5:40:bb:9c:89:
af:8e:10:a9:4f:08:b9:45:cb:fc:be:8c:a6:84:c2:12:cb:05:
c8:7f:7b:9d:71:af:9f:6c:38:03:03:f9:e6:48:02:b1:a3:ef:
9a:7f:97:5e:b8:bb:ca:eb:e8:b1:d4:68:bc:86:d1:8d:41:2f:
6a:f6:b4:28:f8:ba:89:b0:f7:5f:b6:b6:74:87:47:59:ce:a9:
32:be:81:a4:6c:c0:f2:ab:3b:ea:ff:22:8d:d9:1e:d1:44:c7:
6a:ef:b8:b2:36:a3:51:9c:da:93:92:33:8c:94:f2:a2:05:38:
58:7d:dd:2e:14:f4:ae:21:a7:05:97:8e:5e:90:35:c0:ba:36:
ff:6c:75:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:42 2023 by rpki-client on console-fra.rpki-client.org