Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ad6954-af32-4996-bb69-2ed9f1cc2b0d/1/FvT7mWX1d6MJUgF-tKeqdr9X53M.roa
File: FvT7mWX1d6MJUgF-tKeqdr9X53M.roa (raw, json)
Hash identifier: HKXdE96WtpwXBp01iQHWCM0pQZ7YMoG9umZIg9P39zk=
Subject key identifier: 16:F4:FB:99:65:F5:77:A3:09:52:01:7E:B4:A7:AA:76:BF:57:E7:73
Certificate issuer: /CN=2fbe2ad7cc69a95e3a8071fb33df9af7a379928b
Certificate serial: 059A1EEF
Authority key identifier: 2F:BE:2A:D7:CC:69:A9:5E:3A:80:71:FB:33:DF:9A:F7:A3:79:92:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L74q18xpqV46gHH7M9-a96N5kos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ad6954-af32-4996-bb69-2ed9f1cc2b0d/1/FvT7mWX1d6MJUgF-tKeqdr9X53M.roa
Signing time: Sat 01 Jan 2022 00:54:07 +0000
ROA not before: Sat 01 Jan 2022 00:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42605
IP address blocks: 185.243.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93986543 (0x59a1eef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fbe2ad7cc69a95e3a8071fb33df9af7a379928b
Validity
Not Before: Jan 1 00:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16f4fb9965f577a30952017eb4a7aa76bf57e773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:01:d7:7b:ef:3f:4c:f9:ea:2d:f7:08:f2:
75:d6:51:db:14:a3:db:f0:ae:62:88:29:e4:ba:d8:
6a:2e:a0:e6:a2:b3:74:fa:b9:21:14:d8:c1:f9:43:
f0:86:39:e0:69:92:9c:08:c2:7b:41:64:32:e6:a6:
58:92:11:72:05:c4:05:28:8b:c6:82:80:d8:c0:40:
85:e0:fe:d0:13:53:92:45:f8:d0:18:a4:91:9e:14:
fd:5a:da:96:3c:d1:3a:45:34:f6:d3:a3:c6:2b:8a:
f1:cd:81:65:df:b4:6c:8c:7b:52:ad:43:12:8d:8d:
c3:cd:ea:44:02:0c:56:8b:90:6e:25:1a:6b:70:5f:
7b:4d:16:77:cc:4c:57:2a:b5:54:22:37:f2:7f:9c:
35:c2:6e:88:12:1a:89:09:88:5f:68:f9:0b:a7:60:
17:cc:f4:51:2c:b2:5b:71:94:d1:4f:6f:1a:88:f1:
11:6f:fe:6f:af:13:38:95:d9:da:cc:be:89:cd:01:
9a:95:a0:20:b5:17:26:fc:24:22:b4:f9:48:6d:ae:
55:2f:74:77:41:3d:7b:f1:4a:a0:d5:73:47:53:f0:
3c:5f:26:c2:18:f4:2a:c2:06:35:03:c4:9e:d6:7a:
c3:0e:9a:85:b8:10:bd:21:58:73:31:bc:13:eb:ae:
c3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F4:FB:99:65:F5:77:A3:09:52:01:7E:B4:A7:AA:76:BF:57:E7:73
X509v3 Authority Key Identifier:
keyid:2F:BE:2A:D7:CC:69:A9:5E:3A:80:71:FB:33:DF:9A:F7:A3:79:92:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L74q18xpqV46gHH7M9-a96N5kos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ad6954-af32-4996-bb69-2ed9f1cc2b0d/1/FvT7mWX1d6MJUgF-tKeqdr9X53M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ad6954-af32-4996-bb69-2ed9f1cc2b0d/1/L74q18xpqV46gHH7M9-a96N5kos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.200.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:3d:a3:db:e4:37:4d:f2:bd:47:74:0a:ff:25:9f:74:b2:5f:
02:59:ab:e4:83:80:a3:58:19:a6:3b:39:3e:ea:0c:64:62:80:
e5:17:8d:15:f8:52:90:7a:a6:d7:fd:a5:6a:f1:c8:22:59:be:
e6:c7:0d:bc:fa:65:13:76:1d:16:fa:fc:bb:2b:f9:38:53:69:
92:20:ea:fa:de:cd:2e:00:77:56:a8:cf:76:7d:b3:2d:06:76:
33:6a:09:f9:04:ea:5d:e2:07:f7:73:d0:56:53:e7:25:41:64:
03:ae:a2:49:f5:81:8f:42:3b:61:ec:ae:a1:80:25:35:90:d3:
93:48:cf:a4:e1:6d:ee:e8:53:be:0d:30:91:68:45:4b:ce:30:
96:2e:53:4e:0a:e1:f0:24:67:e5:ea:96:73:06:b7:0d:78:47:
6d:ef:99:df:63:60:a8:10:a0:e0:70:72:90:29:95:e6:42:19:
87:94:31:12:51:12:e4:95:a5:a8:fb:13:6e:7d:b5:a5:0b:2c:
c5:ce:86:13:15:e5:73:c4:15:86:fc:69:7b:19:a8:fd:50:ea:
3b:c8:83:35:06:dd:07:c8:93:68:01:5e:f8:bd:87:e4:5e:c3:
b3:50:61:ec:6e:34:36:1c:76:cb:00:41:03:ca:88:7f:d5:b6:
eb:62:d8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org