Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/fw_5H-2IYv6N2nLc96h-I4N-O54.roa
File: fw_5H-2IYv6N2nLc96h-I4N-O54.roa (raw, json)
Hash identifier: 3pIQooRDQolBMFJcWHDRZL8owyQjf7K0ncpm3P5o5AY=
Subject key identifier: 7F:0F:F9:1F:ED:88:62:FE:8D:DA:72:DC:F7:A8:7E:23:83:7E:3B:9E
Certificate issuer: /CN=04a7f9072e8b3004ba08681fb1ef88c03f620a88
Certificate serial: 06EB6A51
Authority key identifier: 04:A7:F9:07:2E:8B:30:04:BA:08:68:1F:B1:EF:88:C0:3F:62:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKf5By6LMAS6CGgfse-IwD9iCog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/fw_5H-2IYv6N2nLc96h-I4N-O54.roa
Signing time: Sat 01 Jan 2022 06:02:03 +0000
ROA not before: Sat 01 Jan 2022 06:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210161
IP address blocks: 87.101.84.0/22 maxlen: 22
87.101.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116091473 (0x6eb6a51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a7f9072e8b3004ba08681fb1ef88c03f620a88
Validity
Not Before: Jan 1 06:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f0ff91fed8862fe8dda72dcf7a87e23837e3b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:05:32:36:da:92:64:3a:46:10:d1:48:64:
36:0a:58:6f:23:f9:93:e1:02:18:c8:f8:eb:ce:29:
d2:81:b7:80:e4:0e:65:0b:02:6b:09:ff:1a:ba:f5:
0c:f6:c5:b3:e1:60:64:d3:b3:67:7f:d6:78:83:06:
ed:98:cf:7b:5c:75:ee:f4:20:55:39:47:62:12:bc:
9c:f3:a5:93:a4:4f:dc:da:ee:08:6c:28:bc:4c:cb:
7f:e4:07:f1:64:80:08:ee:bb:fd:ef:33:ba:0e:d3:
47:dc:a2:10:52:25:71:61:73:a8:04:e0:0e:76:ea:
9c:ad:fa:94:d7:a7:91:30:ff:9b:83:22:61:36:c8:
b4:ba:40:ae:71:cc:7b:53:86:f8:cd:66:af:59:31:
45:7c:be:cb:e5:27:79:2f:10:31:15:bb:f6:7c:a1:
6e:a0:35:40:cd:41:cf:a2:cc:2b:c3:a6:31:bd:69:
d4:24:e7:69:d5:37:8f:9a:f7:c8:b4:35:35:64:1c:
e3:85:cf:6c:68:35:ce:39:0d:b4:1d:a9:76:fb:a9:
2e:e4:05:03:d6:da:29:1a:87:ab:8c:be:e3:ae:ae:
04:3f:e6:1e:31:e5:5f:47:ae:21:5d:2a:92:6e:e8:
6d:3c:77:25:ff:30:ae:e0:67:87:72:95:1b:ad:fb:
df:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0F:F9:1F:ED:88:62:FE:8D:DA:72:DC:F7:A8:7E:23:83:7E:3B:9E
X509v3 Authority Key Identifier:
keyid:04:A7:F9:07:2E:8B:30:04:BA:08:68:1F:B1:EF:88:C0:3F:62:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKf5By6LMAS6CGgfse-IwD9iCog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/fw_5H-2IYv6N2nLc96h-I4N-O54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ca8e58-8afd-493b-a916-e05aa513e5dd/1/BKf5By6LMAS6CGgfse-IwD9iCog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.101.84.0/22
Signature Algorithm: sha256WithRSAEncryption
84:05:7c:93:c4:8b:ec:bd:e4:86:57:83:ab:b8:93:9b:d9:8e:
b4:0a:9d:74:27:f1:ab:a5:f0:57:9b:fc:9a:1a:3d:a4:20:3b:
e5:ae:fa:0f:f2:07:6b:fe:14:af:f0:ac:db:96:0b:42:11:79:
1b:83:3d:2e:91:a8:28:0e:e2:f8:09:c2:c4:3e:81:67:54:80:
5e:75:20:cc:49:78:c4:81:f1:1f:93:26:12:9d:d2:49:1e:31:
d6:55:19:16:2d:07:ce:87:10:8e:66:cd:7a:02:bd:79:8c:df:
9e:b9:f9:79:b9:03:54:0c:12:6c:bc:37:4e:b5:e4:e3:fe:23:
d9:02:72:cb:9a:9c:6d:9d:6b:cb:0e:e4:bd:ed:b3:da:70:21:
45:18:32:3c:9e:d9:ae:c7:a7:c3:eb:2f:f4:52:10:7c:cc:3b:
b7:6a:58:86:70:dc:b8:c0:45:4a:5d:0c:7b:7a:e9:bc:5e:9f:
39:70:38:85:27:48:e1:ba:8b:a2:5a:05:34:be:1b:48:4f:b3:
66:93:28:e4:60:50:db:63:2b:00:09:56:ee:1a:74:58:20:a7:
66:1a:a1:31:5a:7b:b1:fd:5e:c0:65:63:17:00:48:07:10:b0:
83:01:3c:3e:f5:e5:94:e9:7a:15:ae:18:cb:3f:1f:17:53:51:
a7:30:52:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:27 2023 by rpki-client on console-ams.rpki-client.org