Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/c66a1f-7707-4f8d-a274-4df65aba6a62/1/FVN66DtjkaxCO-iPqNC-J_4o7WI.roa
File: FVN66DtjkaxCO-iPqNC-J_4o7WI.roa (raw, json)
Hash identifier: S5egMhRv4mbtDGBdLFWG3h8Xvh2KYbcmD1HKzDApjk0=
Subject key identifier: 15:53:7A:E8:3B:63:91:AC:42:3B:E8:8F:A8:D0:BE:27:FE:28:ED:62
Certificate issuer: /CN=e55b1a4f1942e4b1d894cbc8cf09073d02890170
Certificate serial: 07BC8057
Authority key identifier: E5:5B:1A:4F:19:42:E4:B1:D8:94:CB:C8:CF:09:07:3D:02:89:01:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VsaTxlC5LHYlMvIzwkHPQKJAXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/c66a1f-7707-4f8d-a274-4df65aba6a62/1/FVN66DtjkaxCO-iPqNC-J_4o7WI.roa
Signing time: Sat 01 Jan 2022 08:59:51 +0000
ROA not before: Sat 01 Jan 2022 08:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211740
IP address blocks: 185.112.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129794135 (0x7bc8057)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e55b1a4f1942e4b1d894cbc8cf09073d02890170
Validity
Not Before: Jan 1 08:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15537ae83b6391ac423be88fa8d0be27fe28ed62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:03:b7:8b:a4:1e:3c:a2:64:a1:46:f9:b1:0c:
c4:6c:b0:71:f8:82:a6:84:47:da:42:39:2e:47:83:
11:4f:66:09:85:b1:6d:c9:3f:63:7b:e6:71:9f:7c:
59:8c:0a:7e:d8:c5:a2:1a:1d:de:98:45:b4:b5:b0:
f3:55:3c:b2:cc:a9:48:4e:b1:5f:ed:68:9b:27:5f:
21:ff:66:dc:47:ba:b5:67:68:34:bd:df:23:c7:d8:
20:14:2a:88:11:14:3b:db:89:b5:3b:b6:78:06:c6:
94:94:37:bd:77:46:30:41:56:c5:2c:d7:6f:b6:8a:
25:c5:28:3c:ef:be:96:4d:c8:b9:ac:e7:3e:44:c5:
0b:e7:52:42:f1:49:b0:cf:27:16:1d:e0:9f:b3:65:
99:1a:b4:f3:42:64:21:80:73:97:b3:54:3f:02:0e:
94:21:98:1e:7b:a4:4f:de:63:f5:da:4f:23:b0:d9:
07:32:d2:98:1f:34:8e:c9:94:fb:b7:09:5f:91:92:
cf:ab:64:f9:09:28:b9:a4:dd:23:17:61:59:99:a5:
36:fc:4e:1b:ff:80:4c:5b:e9:ee:f9:2d:31:a9:78:
ec:71:6c:36:a3:07:44:51:c4:0f:b7:2c:ef:f9:16:
61:cd:9a:ce:b1:71:b8:9a:79:61:03:0c:90:1e:2e:
e7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:53:7A:E8:3B:63:91:AC:42:3B:E8:8F:A8:D0:BE:27:FE:28:ED:62
X509v3 Authority Key Identifier:
keyid:E5:5B:1A:4F:19:42:E4:B1:D8:94:CB:C8:CF:09:07:3D:02:89:01:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VsaTxlC5LHYlMvIzwkHPQKJAXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/c66a1f-7707-4f8d-a274-4df65aba6a62/1/FVN66DtjkaxCO-iPqNC-J_4o7WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/c66a1f-7707-4f8d-a274-4df65aba6a62/1/5VsaTxlC5LHYlMvIzwkHPQKJAXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.88.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:cb:1d:cf:c1:b7:1f:e5:86:12:ed:64:f5:99:1b:1f:bc:91:
53:89:2a:ca:d5:a6:9e:82:42:9d:98:97:02:85:75:0d:71:c9:
f1:06:f5:62:71:7a:2b:f4:ee:4f:44:93:91:98:21:6d:bb:8a:
1e:81:68:12:75:45:7c:03:63:3b:31:6b:45:19:af:d6:f2:f0:
af:e8:f0:ca:19:80:20:b6:e6:ff:45:1a:8d:e8:13:23:0d:0b:
b6:dd:d3:5f:fc:2f:33:04:6a:da:4d:c9:48:96:63:bc:7d:46:
9a:c8:74:00:2f:40:1e:1b:8d:ad:f9:7a:a3:8f:28:90:b4:c9:
8d:63:d1:be:47:db:e7:6e:4c:bf:0c:c3:7d:73:8c:65:b7:5c:
2b:f5:e3:7f:bf:66:bb:60:cb:7a:6b:e2:6c:3b:82:f3:75:e3:
10:e2:c9:9f:52:8e:0e:74:c0:e8:62:9d:1f:28:88:73:51:67:
5c:3f:96:51:f2:35:80:08:03:ca:d8:b8:b6:84:79:38:21:b3:
df:25:f1:4b:f2:eb:99:e0:bc:aa:e4:30:7e:4b:88:d9:56:48:
34:0e:c1:96:2d:41:64:16:9f:96:32:be:c1:6e:71:ed:17:ba:
e8:bd:be:41:73:bb:46:92:60:e7:a3:de:64:31:0d:60:2b:0b:
f5:81:5e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:42 2023 by rpki-client on console-fra.rpki-client.org