Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/FUJLkoI1JzslmhFMr_PJ_uVqNrY.roa
File: FUJLkoI1JzslmhFMr_PJ_uVqNrY.roa (raw, json)
Hash identifier: Qny6Au0UcCaFaUveFDrls2vZdDxXRLve4HUODSIkWoc=
Subject key identifier: 15:42:4B:92:82:35:27:3B:25:9A:11:4C:AF:F3:C9:FE:E5:6A:36:B6
Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Certificate serial: 13645B9C
Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/FUJLkoI1JzslmhFMr_PJ_uVqNrY.roa
Signing time: Sat 01 Jan 2022 05:58:20 +0000
ROA not before: Sat 01 Jan 2022 05:58:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15702
IP address blocks: 80.252.32.0/20 maxlen: 24
185.99.80.0/22 maxlen: 24
195.74.65.0/24 maxlen: 24
217.19.32.0/20 maxlen: 20
2001:1618::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325344156 (0x13645b9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba
Validity
Not Before: Jan 1 05:58:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15424b928235273b259a114caff3c9fee56a36b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:71:2f:06:51:c1:31:74:b8:d4:62:1a:5b:66:
2e:8b:e6:57:f5:4f:5d:45:e0:f6:5f:fc:32:43:fb:
a9:d1:5f:a5:88:96:7c:cc:7a:9e:7f:bc:31:74:96:
85:96:11:5d:a6:12:55:18:13:88:0f:df:da:53:d0:
cb:fd:4e:59:e4:33:70:ef:7e:e9:45:1a:f6:52:e0:
5b:f8:7c:06:2c:ba:13:3f:c0:5b:72:ca:44:47:16:
54:36:6f:71:8d:ed:a1:9b:69:77:51:4d:6d:bd:f5:
6f:4f:1c:82:3f:09:cc:f0:d5:a1:39:30:f3:2c:be:
76:27:a8:d5:5e:61:0f:4f:db:f0:01:5c:b4:b6:a3:
fb:0c:25:f9:d2:4d:24:d9:48:75:cd:82:a7:e7:0c:
4a:d5:c1:35:77:90:b8:2c:09:96:81:1e:ff:7a:76:
ab:70:44:d1:32:bd:11:d3:10:d7:ca:aa:59:8b:c2:
40:7b:a1:9e:c0:c4:32:8b:39:93:92:f8:c1:48:ab:
70:03:ef:d8:ac:67:f1:ac:5b:c4:3f:21:03:35:28:
55:b2:4f:9f:8f:30:56:82:14:0a:fc:43:c6:8b:c7:
b2:0a:fc:da:10:73:01:69:21:ab:af:d8:f1:3a:e1:
9a:f4:fd:67:61:6a:c0:b9:24:14:72:c3:8a:e9:21:
77:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:42:4B:92:82:35:27:3B:25:9A:11:4C:AF:F3:C9:FE:E5:6A:36:B6
X509v3 Authority Key Identifier:
keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/FUJLkoI1JzslmhFMr_PJ_uVqNrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.252.32.0/20
185.99.80.0/22
195.74.65.0/24
217.19.32.0/20
IPv6:
2001:1618::/29
Signature Algorithm: sha256WithRSAEncryption
3d:e8:02:4f:ec:49:d2:c4:8d:68:13:45:74:be:d9:22:70:f5:
42:3b:cb:ba:6e:03:f7:d5:0c:32:c6:34:e6:0d:c4:fa:c7:db:
38:cf:b1:2c:f7:56:c1:13:8a:cd:64:b0:2f:f7:28:01:48:2b:
38:b5:e2:75:a8:ee:4f:51:8d:d7:62:35:f8:e8:a4:10:f8:b2:
59:f7:87:7d:d0:43:e8:0f:45:dd:1b:f5:85:97:1b:f3:ba:40:
77:db:16:7b:fd:bc:68:6e:c5:bf:0d:a3:4d:cb:55:fa:af:2f:
95:b2:77:8e:55:07:3b:00:be:53:11:6f:64:46:a8:73:de:75:
74:af:c7:66:4f:be:5e:69:e8:69:73:ab:47:9b:93:be:18:9b:
9a:ec:28:e7:ba:af:8e:1e:37:7a:d0:ec:91:ab:d8:b6:6d:74:
1e:ef:6e:f7:11:f7:23:30:81:f2:d6:36:7c:01:19:7d:53:1e:
dd:4d:00:00:71:3d:ef:cf:21:92:ed:47:80:f6:f0:a5:77:ec:
bb:ae:52:c5:94:8e:63:26:eb:a0:d1:2a:74:8d:f0:6f:09:8a:
2c:c1:fd:14:d5:7c:6a:1b:3c:c1:3a:b7:b4:ef:0e:bf:6a:26:
88:80:07:b8:db:ef:00:59:1e:27:b1:5f:9a:a6:ff:f8:7d:d6:
a4:f8:26:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-fra.rpki-client.org