Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/F0K5OeVASpP_J3kIby4biRuCgHM.roa
File: F0K5OeVASpP_J3kIby4biRuCgHM.roa (raw, json)
Hash identifier: 9m7rZEuDvSDXeIxDuF/jle3UNSGGRHcnV8sVfIHRudg=
Subject key identifier: 17:42:B9:39:E5:40:4A:93:FF:27:79:08:6F:2E:1B:89:1B:82:80:73
Certificate issuer: /CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Certificate serial: 018353073EC04893EF1264F10723A4401C2D
Authority key identifier: 13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/F0K5OeVASpP_J3kIby4biRuCgHM.roa
Signing time: Sun 18 Sep 2022 23:55:27 +0000
ROA not before: Sun 18 Sep 2022 23:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204478
IP address blocks: 185.11.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:53:07:3e:c0:48:93:ef:12:64:f1:07:23:a4:40:1c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Validity
Not Before: Sep 18 23:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1742b939e5404a93ff2779086f2e1b891b828073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:80:3c:ed:62:9e:9a:64:e1:51:b3:b1:d8:eb:
d3:98:cd:46:da:86:5a:ee:58:9a:05:bb:54:91:3b:
99:c4:f6:33:fe:0e:38:b6:e1:46:85:2d:5a:f6:9c:
78:0f:da:20:21:32:33:8b:69:63:5d:b2:b5:a6:30:
3a:76:c8:96:bd:25:fb:28:1f:89:a5:94:91:71:51:
89:3a:07:50:8b:7e:70:8d:53:9b:97:1b:39:87:37:
0f:ec:94:1f:ef:95:a8:72:2b:ab:41:4b:6e:6c:d1:
f7:24:3e:43:90:35:de:b5:64:fe:4f:5e:b9:91:c7:
e6:c7:c9:f2:3d:52:1c:1f:62:2e:ef:a4:48:16:ed:
fa:09:3a:67:b3:a2:86:7c:e6:71:dd:3f:87:7e:16:
3b:d7:4f:2a:90:25:51:c7:3e:81:b3:ac:9f:44:8f:
f3:2a:2f:83:a1:fa:8c:bb:00:b5:e3:4c:e9:54:76:
04:71:b3:49:61:d2:fa:6b:55:72:2c:41:60:bf:79:
cb:9f:e7:e4:9e:0f:45:f8:cb:e0:b4:d2:77:c7:e1:
a0:2e:bb:0d:63:b2:8b:63:61:ce:59:a5:e9:8b:e9:
53:cf:7d:d5:a3:74:43:0d:f6:2c:e3:5f:89:71:a6:
89:f6:cb:a9:d6:9c:00:f9:53:4c:ed:a0:98:f6:79:
c2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:42:B9:39:E5:40:4A:93:FF:27:79:08:6F:2E:1B:89:1B:82:80:73
X509v3 Authority Key Identifier:
keyid:13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/F0K5OeVASpP_J3kIby4biRuCgHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/E_xd30njbWmTYwGtIr8kOkcbUkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.168.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:d0:91:74:93:fa:5c:3e:d9:52:4b:78:32:07:17:bc:ea:3a:
b9:3b:6a:e9:0f:2d:e5:27:30:c6:d2:ac:5d:09:ce:48:c7:01:
e5:ee:11:e9:a7:4f:2a:33:eb:1f:09:86:da:c7:9b:7d:ee:7b:
ca:90:6b:ec:c6:12:0d:2a:97:ce:f7:75:d8:a1:19:f4:65:9c:
0a:d0:c9:ff:99:0a:e6:67:5f:e1:2f:d3:f4:0d:3b:e2:6c:6c:
91:0a:c4:93:d3:81:4e:f4:e9:aa:f9:c6:bb:a4:9f:ee:f6:a8:
8b:a8:f7:73:fe:b2:b6:c4:58:ee:af:48:75:e9:5d:60:2b:62:
02:c5:13:d6:58:93:48:8f:37:e2:75:03:e5:f6:3c:89:8f:28:
4c:d5:69:d9:bd:05:3e:a3:b5:45:64:be:13:91:9e:12:8e:e5:
38:1a:67:ca:85:67:a5:74:76:cf:7b:30:9d:c1:12:63:75:44:
68:13:35:43:7f:36:11:a0:91:61:6a:92:0a:e3:b6:9d:1c:2c:
0c:d9:b7:57:2d:e7:a2:22:7d:3c:91:a9:a3:2a:01:d4:07:bd:
74:6e:2e:c8:01:78:91:6c:7e:12:3f:9e:21:0c:6b:ee:ed:7a:
c0:a2:d2:7f:3a:3a:11:7c:32:7e:e4:ab:27:dd:5e:a1:d4:98:
0f:f2:d1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:24 2024 by rpki-client on console-ams.rpki-client.org