Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/fsoFzx_EoS7asEf2YfU0eDJeFgQ.roa
File: fsoFzx_EoS7asEf2YfU0eDJeFgQ.roa (raw, json)
Hash identifier: tHwvklnQB69MilDXoPoi/+R9yHnI6vaWD19xBftJ/Hw=
Subject key identifier: 7E:CA:05:CF:1F:C4:A1:2E:DA:B0:47:F6:61:F5:34:78:32:5E:16:04
Certificate issuer: /CN=07a0486dc0b4ba730903788ff3f3f7c8249b921f
Certificate serial: 0ADF4F4A
Authority key identifier: 07:A0:48:6D:C0:B4:BA:73:09:03:78:8F:F3:F3:F7:C8:24:9B:92:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6BIbcC0unMJA3iP8_P3yCSbkh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/fsoFzx_EoS7asEf2YfU0eDJeFgQ.roa
Signing time: Sat 01 Jan 2022 07:02:28 +0000
ROA not before: Sat 01 Jan 2022 07:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 185.246.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182406986 (0xadf4f4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a0486dc0b4ba730903788ff3f3f7c8249b921f
Validity
Not Before: Jan 1 07:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eca05cf1fc4a12edab047f661f53478325e1604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e1:ec:56:92:b2:f9:b4:2e:29:29:dd:50:e0:
38:1c:c0:23:b0:0d:76:27:f4:a5:43:47:44:c7:f7:
bc:83:21:9c:9f:b5:d6:96:25:59:5d:8b:80:da:44:
1c:fa:43:c5:7d:e1:97:6a:21:de:3c:39:59:b5:df:
1d:74:d5:ac:94:82:ea:c2:dd:6e:63:9e:f2:8b:23:
17:20:ae:f2:65:39:cb:12:13:5b:3c:7a:1f:84:41:
19:71:df:e7:7a:ba:aa:f3:b7:4d:b1:61:6c:e5:5f:
fd:e0:db:d3:b4:62:70:c3:94:39:20:20:02:f3:e8:
ad:17:0f:5b:e6:45:37:96:4b:5b:80:fa:2b:92:a4:
f2:d8:13:ef:ae:1e:4d:fd:4f:ae:cd:db:88:41:d4:
29:d4:c4:0c:19:9a:1d:6b:44:eb:e1:02:20:c6:e3:
7f:1b:e8:0e:ee:ec:cd:28:50:b6:39:7a:62:a2:7a:
f8:11:e0:25:32:77:b8:9e:9a:4a:4f:d7:07:27:20:
d2:8d:73:ef:39:53:2e:40:12:e9:d8:ec:5b:0e:8f:
40:37:43:ed:96:27:5f:27:ee:54:48:ef:00:05:76:
24:35:19:ba:f4:82:1c:72:b6:9f:40:aa:49:0e:d1:
1a:48:1d:5b:61:7d:05:f0:3f:e6:70:01:4a:a1:a1:
c3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CA:05:CF:1F:C4:A1:2E:DA:B0:47:F6:61:F5:34:78:32:5E:16:04
X509v3 Authority Key Identifier:
keyid:07:A0:48:6D:C0:B4:BA:73:09:03:78:8F:F3:F3:F7:C8:24:9B:92:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6BIbcC0unMJA3iP8_P3yCSbkh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/fsoFzx_EoS7asEf2YfU0eDJeFgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/56cc91-ba62-4037-b57f-6bddb317e78b/1/B6BIbcC0unMJA3iP8_P3yCSbkh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:83:be:61:a0:96:93:67:c0:d9:66:c3:92:25:1a:d2:45:00:
7d:27:c6:56:5a:54:5f:44:54:60:08:90:87:ca:87:b5:b4:1a:
08:ef:29:20:28:eb:66:a0:c6:23:db:57:03:5a:35:56:a0:ae:
36:a3:6f:f4:ba:9d:a1:12:82:7d:ef:df:fc:50:00:86:cf:1f:
6f:41:70:68:aa:be:03:13:f9:73:39:33:16:cb:04:b2:8f:17:
bc:fe:25:56:c2:73:32:32:f3:f2:b2:d8:61:34:8b:82:cd:b2:
3d:e9:5f:d5:6a:e8:f7:b5:a0:da:50:27:28:16:18:8c:d7:59:
85:46:1f:4a:d8:3e:f0:f2:7a:ab:9d:98:9b:c2:1e:ab:5a:72:
ce:a5:98:eb:54:7d:88:99:7f:32:70:99:66:f4:aa:6e:f3:26:
7c:3e:bb:11:50:0f:e8:02:0e:cc:9d:cc:33:18:14:07:cc:f8:
3f:a1:e9:f5:47:28:90:fb:ab:56:a8:1b:3a:34:39:10:ae:a6:
85:48:00:97:f3:be:22:85:0c:9f:6b:26:fc:fe:92:1a:22:ad:
08:18:30:3e:ce:ff:ca:5f:0b:b3:e4:57:a3:e2:97:f0:d5:24:
27:7c:b5:62:2f:ae:62:3b:bb:94:72:55:da:ff:94:1e:c2:c4:
29:b8:5f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:00 2023 by rpki-client on console-ams.rpki-client.org