Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/01a421-bdbf-43e0-8aeb-2c48cb298646/1/1-9skNhp6jrZvf0wKJUOE8vPlCW8.roa
File: 1-9skNhp6jrZvf0wKJUOE8vPlCW8.roa (raw, json)
Hash identifier: b8oWaxvrr93Ftc8Pf62QSl5OQcgMh4ub+nPpNx2xNAI=
Subject key identifier: FB:DB:24:36:1A:7A:8E:B6:6F:7F:4C:0A:25:43:84:F2:F3:E5:09:6F
Certificate issuer: /CN=fcb6b17bd2e5f14bd375a0c0e69dfc77d9702f4a
Certificate serial: 090BA425
Authority key identifier: FC:B6:B1:7B:D2:E5:F1:4B:D3:75:A0:C0:E6:9D:FC:77:D9:70:2F:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Laxe9Ll8UvTdaDA5p38d9lwL0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/01a421-bdbf-43e0-8aeb-2c48cb298646/1/1-9skNhp6jrZvf0wKJUOE8vPlCW8.roa
Signing time: Sat 01 Jan 2022 03:51:36 +0000
ROA not before: Sat 01 Jan 2022 03:51:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197740
IP address blocks: 185.246.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151757861 (0x90ba425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcb6b17bd2e5f14bd375a0c0e69dfc77d9702f4a
Validity
Not Before: Jan 1 03:51:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbdb24361a7a8eb66f7f4c0a254384f2f3e5096f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a3:37:71:d5:0d:b3:d0:01:a8:2c:94:18:0d:
09:aa:28:e0:d2:45:b8:3a:75:7e:00:71:e6:c1:8a:
dc:5b:52:97:45:22:b8:55:54:50:ba:42:8b:5a:be:
47:4c:b9:ee:22:09:87:06:55:4a:2b:d9:84:69:45:
90:87:11:0b:e1:82:82:2d:e3:d4:ea:a5:a3:7d:1e:
25:9b:79:79:80:84:d5:cd:65:b5:ee:97:c8:e5:7b:
e6:90:e2:df:33:70:35:1b:72:46:5f:d7:b5:73:1c:
67:56:00:49:c9:32:61:e2:f6:1c:6d:04:e9:2a:2d:
be:51:4d:7f:31:88:3a:39:c0:a4:e6:4f:cd:13:2d:
07:1c:1b:bf:df:c8:c5:e0:60:f2:44:48:b0:c1:eb:
5e:a6:b0:b2:e9:8f:77:71:22:32:f4:62:e2:12:f5:
84:42:98:54:ce:e1:73:95:53:9f:a9:62:b0:da:fc:
3c:65:60:e0:86:78:08:ce:bd:7c:20:fb:f8:d7:ee:
b4:ac:3f:84:52:47:e7:8b:cd:31:6d:ee:dd:07:7f:
80:f5:37:9b:3b:1b:71:c7:5b:18:70:96:42:63:95:
63:9d:cb:b5:db:69:f2:38:cc:07:7c:03:3f:a5:23:
3f:5e:01:26:7c:21:2d:30:e2:d2:f4:57:c0:60:aa:
f9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DB:24:36:1A:7A:8E:B6:6F:7F:4C:0A:25:43:84:F2:F3:E5:09:6F
X509v3 Authority Key Identifier:
keyid:FC:B6:B1:7B:D2:E5:F1:4B:D3:75:A0:C0:E6:9D:FC:77:D9:70:2F:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Laxe9Ll8UvTdaDA5p38d9lwL0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/01a421-bdbf-43e0-8aeb-2c48cb298646/1/1-9skNhp6jrZvf0wKJUOE8vPlCW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/01a421-bdbf-43e0-8aeb-2c48cb298646/1/_Laxe9Ll8UvTdaDA5p38d9lwL0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.199.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f5:be:25:67:91:e3:e8:da:ee:90:2d:54:97:06:3e:66:6f:
fd:56:46:18:91:b9:cb:67:8c:7c:bf:80:de:d0:36:83:64:b2:
7b:37:11:54:b2:5a:a1:f2:cd:86:11:b4:59:5e:7c:29:41:5d:
1a:16:cb:97:8e:d7:ec:b2:ba:e9:ce:70:05:98:ba:32:f7:b3:
79:51:9a:cc:4f:eb:3b:9d:16:c9:46:3a:55:15:32:12:89:63:
f6:0b:26:87:fc:d4:dc:f7:e7:04:55:4f:62:c4:2c:af:64:dd:
81:96:36:47:40:5c:b3:57:dd:63:7d:d6:66:4f:ad:73:f5:1c:
e9:48:b7:ea:a2:04:f8:28:c5:c0:02:a9:82:1c:64:8e:6e:07:
b5:66:76:ac:3f:91:1b:22:2b:a7:96:58:59:ac:57:84:10:57:
2c:e5:9f:a5:3f:e3:3b:61:2b:d1:b4:a2:b9:64:a0:ca:4d:f4:
eb:ed:0a:5d:e4:8c:df:82:d1:c0:34:a9:9e:14:57:2d:5a:66:
73:b7:7d:0f:2c:ac:ba:0f:42:26:d1:05:66:7a:42:c4:58:0d:
ad:36:71:c9:1e:2b:da:60:d4:12:a8:9d:56:1b:04:e5:5e:cd:
2e:6c:5d:dd:e4:17:62:f4:e2:13:e3:78:1b:ee:50:73:18:59:
b1:36:8f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:09 2024 by rpki-client on console-fra.rpki-client.org