Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FOO0eWJ5nkNKkqbBRPRM9dVrQdA.roa
File: FOO0eWJ5nkNKkqbBRPRM9dVrQdA.roa (raw, json)
Hash identifier: QI55SRKO/ss/O2aagc2SwlxN28woFn5ALIf7oXRtse4=
Subject key identifier: 14:E3:B4:79:62:79:9E:43:4A:92:A6:C1:44:F4:4C:F5:D5:6B:41:D0
Certificate issuer: /CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Certificate serial: 01848617E72074EF46D4471170A1FD0328A2
Authority key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FOO0eWJ5nkNKkqbBRPRM9dVrQdA.roa
Signing time: Thu 17 Nov 2022 14:57:04 +0000
ROA not before: Thu 17 Nov 2022 14:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200597
IP address blocks: 185.32.77.0/24 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:86:17:e7:20:74:ef:46:d4:47:11:70:a1:fd:03:28:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Validity
Not Before: Nov 17 14:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14e3b47962799e434a92a6c144f44cf5d56b41d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ea:ef:9d:a3:23:ba:ca:a1:a4:8a:9c:93:ed:
fd:63:97:cf:29:6a:fd:29:ee:2f:29:cb:e0:a7:20:
73:0a:b3:38:3f:75:c5:78:2b:b5:ab:ce:ef:e7:f4:
63:58:21:b1:55:39:b6:87:39:4b:48:2b:82:ed:e3:
b6:18:5e:bf:49:a0:c2:73:6d:22:5a:3e:ff:7d:dd:
55:d4:97:cb:86:13:fb:e8:95:e6:c9:22:ef:0f:d5:
bc:dc:2a:ac:56:46:c7:8b:17:6c:b6:2a:55:e8:5a:
03:98:6d:8b:98:65:8e:f5:e4:97:9c:a1:51:2c:1f:
a2:56:f6:a4:00:d5:f2:ed:94:00:02:09:fd:4f:aa:
b0:a1:9c:bf:06:a6:70:5a:07:4b:5e:d4:36:0e:a9:
bc:9d:98:af:f6:91:ed:78:d4:2b:83:2a:45:25:09:
63:35:9a:39:5a:8b:7b:e5:36:3d:31:e7:21:61:02:
69:17:29:18:97:e7:ce:0e:8e:bf:51:a9:ab:86:ad:
2c:90:da:db:c7:f6:51:a6:0e:fa:57:26:d3:b2:31:
ec:21:ce:6f:8c:e3:cb:70:d4:cc:e3:44:a7:15:57:
f3:cb:34:fc:b0:d9:94:8c:56:9c:40:50:45:d5:9b:
8f:e6:e9:ce:9e:0c:cd:c9:42:aa:de:90:42:98:19:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E3:B4:79:62:79:9E:43:4A:92:A6:C1:44:F4:4C:F5:D5:6B:41:D0
X509v3 Authority Key Identifier:
keyid:6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FOO0eWJ5nkNKkqbBRPRM9dVrQdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.77.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:0e:c9:c6:76:2e:f1:e0:64:ff:81:92:e5:3d:04:24:74:78:
91:a9:e3:2c:09:70:4c:1c:4f:ff:e1:30:3a:01:60:30:fe:a6:
1a:ad:16:24:44:b4:d6:48:84:1d:88:32:78:20:64:37:89:59:
2a:f4:86:a6:20:58:85:e6:05:db:7d:1a:a3:0a:5d:2b:95:4a:
c3:33:45:b0:ff:00:5b:53:92:9a:4a:96:7f:76:e9:b7:5a:f5:
64:5b:41:aa:a2:43:83:c0:f1:85:43:e6:76:12:d3:de:f5:4c:
19:6d:c4:7a:26:e3:f6:f9:94:80:7f:74:16:b8:cd:40:f9:70:
df:00:5c:3a:11:0b:25:80:a2:78:a9:5f:b2:97:c2:4b:ae:19:
24:19:ad:7d:ca:8e:d2:c4:83:69:6d:a3:47:28:8c:12:3f:44:
9e:79:16:e1:f8:16:54:a7:11:5d:57:14:91:e5:b0:5d:16:42:
17:0c:a6:43:f5:42:ca:c7:b0:74:3c:a6:38:59:94:77:4d:b1:
1e:c1:6a:ef:eb:58:11:8c:d3:46:85:1e:4c:ad:7d:24:c2:11:
3b:c0:08:d7:d9:f9:e0:8d:e0:d5:7e:72:95:13:ea:47:a3:29:
37:6c:e3:cc:1b:0f:80:8e:37:ad:29:4a:9c:69:36:3a:14:13:
6e:62:d9:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:22 2024 by rpki-client on console-ams.rpki-client.org