Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/febtovT0BW8aaY6MXdG4M4Mku-E.roa
File: febtovT0BW8aaY6MXdG4M4Mku-E.roa (raw, json)
Hash identifier: sxCWjURZ5NLEHq1SxcBzvlP4jaAOkr6Rs3K457JeV+Y=
Subject key identifier: 7D:E6:ED:A2:F4:F4:05:6F:1A:69:8E:8C:5D:D1:B8:33:83:24:BB:E1
Certificate issuer: /CN=738e65fb03e6d607d8be204345d6e05a460b9a4f
Certificate serial: 02BBF8
Authority key identifier: 73:8E:65:FB:03:E6:D6:07:D8:BE:20:43:45:D6:E0:5A:46:0B:9A:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c45l-wPm1gfYviBDRdbgWkYLmk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/febtovT0BW8aaY6MXdG4M4Mku-E.roa
Signing time: Fri 21 Jan 2022 07:38:11 +0000
ROA not before: Fri 21 Jan 2022 07:38:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 94.154.12.0/24 maxlen: 24
2a05:7700::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179192 (0x2bbf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=738e65fb03e6d607d8be204345d6e05a460b9a4f
Validity
Not Before: Jan 21 07:38:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7de6eda2f4f4056f1a698e8c5dd1b8338324bbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:18:5e:4b:b7:d0:e1:9d:8d:6d:80:db:5e:d0:
a4:5e:9b:ed:60:50:29:34:df:25:5e:be:94:18:c0:
8f:cc:3f:e0:f4:44:b0:ad:4e:fd:a7:a5:74:04:10:
6d:3a:9a:08:f7:11:8a:a1:b1:d2:31:83:2c:be:a3:
23:74:6d:9c:bf:ed:3a:50:42:e6:fc:e3:26:fd:8d:
69:62:e3:c5:f0:23:a7:42:eb:c8:a7:32:46:ef:2e:
3c:dc:5d:b7:b3:22:52:a4:3b:9b:5e:9f:65:cd:97:
32:25:9a:bd:4e:53:e7:ea:d8:e8:c3:e7:29:c6:85:
f1:21:6f:7b:19:f5:84:1b:05:d6:2f:a5:e3:c8:98:
6e:e2:71:55:98:da:de:6c:2a:bc:29:7f:16:97:28:
21:60:16:72:d4:01:1a:17:62:83:a9:4e:e0:ab:7d:
8d:2e:c6:97:19:cb:d6:4a:02:e6:f6:7b:36:70:e3:
f1:17:08:b8:f2:39:61:f9:a9:b7:12:1e:4a:b7:7e:
cf:5e:86:90:35:e4:da:2c:00:f0:0b:b6:9a:9d:47:
4f:df:e9:7c:d0:2e:db:eb:ba:05:b6:c7:d8:94:f0:
e2:a9:67:dd:b9:4c:cc:0b:5f:ca:03:51:9b:9b:ab:
62:9d:52:0d:0d:c3:07:ee:37:1a:f6:39:2e:a6:a6:
bd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E6:ED:A2:F4:F4:05:6F:1A:69:8E:8C:5D:D1:B8:33:83:24:BB:E1
X509v3 Authority Key Identifier:
keyid:73:8E:65:FB:03:E6:D6:07:D8:BE:20:43:45:D6:E0:5A:46:0B:9A:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c45l-wPm1gfYviBDRdbgWkYLmk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/febtovT0BW8aaY6MXdG4M4Mku-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ba61ce-9c86-42ef-90fb-dd515e63cfcb/1/c45l-wPm1gfYviBDRdbgWkYLmk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.12.0/24
IPv6:
2a05:7700::/29
Signature Algorithm: sha256WithRSAEncryption
53:9b:70:a0:d7:8d:0e:71:21:db:72:c0:e7:46:a9:86:0a:64:
e9:d1:e2:b1:00:33:57:1d:14:36:ff:65:6d:6c:aa:4b:c0:fd:
c4:a0:e5:57:ea:d2:bc:01:79:1d:9f:b6:69:09:ba:f7:5d:36:
15:ad:d4:9f:a2:95:f3:4c:91:81:bb:79:d6:27:97:cc:08:b2:
cf:aa:4a:7e:48:d7:8d:81:f8:49:5a:98:f3:a4:3f:4e:25:24:
1f:6e:d6:01:61:87:6f:60:4f:06:36:28:c0:7d:06:21:95:82:
75:6d:83:41:35:89:0b:71:6b:65:74:c1:68:ca:a1:43:05:f7:
bd:69:4d:1a:76:1f:c2:e2:52:54:54:b8:ab:1d:66:53:86:1f:
b6:09:7c:ff:39:f0:ed:c7:7c:ec:09:f4:79:38:48:c8:9c:65:
23:59:ed:9d:3d:e2:88:85:72:53:f5:25:73:06:5d:aa:10:bd:
dc:c5:6e:84:b6:48:00:72:7f:e1:21:de:c9:57:83:eb:41:63:
20:2a:a7:84:a4:16:97:6d:3e:15:3e:28:9d:19:cf:2d:6c:f9:
8b:04:26:9c:61:63:88:c1:a6:fd:cd:9f:1f:42:d7:b0:9f:a2:
c9:b1:e9:c8:e9:63:b3:f9:dc:67:40:1f:5d:9d:19:5c:2b:33:
6f:f0:cc:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:16 2024 by rpki-client on console-ams.rpki-client.org