Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FjabRhpTx1JpqVRXnnsXBrgtMtk.roa
File: FjabRhpTx1JpqVRXnnsXBrgtMtk.roa (raw, json)
Hash identifier: RDThG2mdDK39AE0p7etNDGlhgKB2DmlcrX0e6qwYvrY=
Subject key identifier: 16:36:9B:46:1A:53:C7:52:69:A9:54:57:9E:7B:17:06:B8:2D:32:D9
Certificate issuer: /CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Certificate serial: 050DF0B7
Authority key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FjabRhpTx1JpqVRXnnsXBrgtMtk.roa
Signing time: Sat 01 Jan 2022 04:03:30 +0000
ROA not before: Sat 01 Jan 2022 04:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62417
IP address blocks: 185.32.78.0/24 maxlen: 24
185.32.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84799671 (0x50df0b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73
Validity
Not Before: Jan 1 04:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16369b461a53c75269a954579e7b1706b82d32d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:44:9c:f9:7b:9e:eb:0d:b6:e6:3d:96:a5:
f7:d5:7a:5f:6e:40:53:29:e4:36:b0:2b:46:f2:1d:
e6:ea:4b:46:dd:17:03:32:de:81:a0:5c:d2:8f:7c:
ba:e2:1f:e4:bc:02:56:03:fc:54:1e:90:06:8c:6c:
73:94:c8:f6:8d:b1:e2:fa:00:63:3c:5a:5a:16:ab:
fb:a9:e5:18:02:7c:39:97:33:1f:b8:94:d1:42:82:
e3:5b:a1:71:94:e5:3e:7e:ae:f1:0e:7d:d1:8b:d0:
b6:6e:ef:d6:5b:7d:87:fe:55:84:21:e4:f3:f2:d2:
93:e7:66:26:17:19:b8:34:6b:1e:69:91:f5:44:15:
e0:63:55:93:0a:48:2b:c5:07:16:ae:56:70:3c:06:
1e:22:a4:6b:4e:4f:c6:0b:12:60:44:df:e0:9b:54:
08:fd:88:f8:a3:b4:a2:3b:24:c9:27:a2:31:46:d9:
7a:c6:63:11:79:01:ed:fc:d6:d7:7c:4b:60:e2:fb:
a7:52:ff:f9:d5:34:41:cb:d6:aa:a5:c8:80:2c:4f:
94:29:d2:cb:fe:e5:a7:6e:5b:fd:3a:a5:d7:ef:eb:
79:cc:8e:ec:b3:81:bc:5c:fa:04:53:a3:36:a7:ad:
b8:6a:0a:90:7b:0f:8c:34:a9:93:89:66:28:cf:cb:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:36:9B:46:1A:53:C7:52:69:A9:54:57:9E:7B:17:06:B8:2D:32:D9
X509v3 Authority Key Identifier:
keyid:6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/FjabRhpTx1JpqVRXnnsXBrgtMtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.78.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:df:cd:1a:44:82:d5:b8:0e:0d:ba:39:f1:1d:80:3f:bd:fc:
e9:cf:64:d6:11:9a:8f:55:98:28:c9:fd:27:fd:55:ff:4d:8d:
e9:e7:75:ae:ff:96:67:8f:7b:55:09:a9:a0:4b:43:b2:87:17:
f0:08:57:97:ed:71:db:78:d8:13:4b:8e:08:28:f7:df:ab:bb:
c7:e0:94:75:b7:41:b3:1f:fa:ca:14:6b:2b:b3:d3:6d:23:9e:
ab:62:c6:f1:46:41:fa:49:79:f8:6e:53:c5:1a:f4:b0:cf:d2:
60:89:cf:51:0f:a1:5e:35:6e:82:dd:7d:44:6c:d3:ff:5e:80:
b8:fe:51:b7:39:81:a7:27:fe:c4:98:f0:ec:04:18:c7:37:6a:
9d:0f:34:1a:1c:c4:26:2f:af:ec:63:e2:a6:cc:72:06:16:0a:
55:a6:84:7f:cd:98:20:8c:c8:b9:22:11:92:f7:b5:9e:c2:82:
43:d9:e8:3c:83:09:d0:46:a2:52:50:1f:92:67:f7:ba:72:0f:
3f:b9:cb:29:b6:da:48:e4:da:32:68:23:31:b3:b4:1a:77:d0:
ef:f6:3b:3e:9c:3a:c4:29:9d:bf:d3:ae:3a:f4:0e:25:03:21:
f6:ec:ed:a1:65:70:fd:a1:b2:aa:96:d5:e2:68:ae:f8:51:4e:
89:a3:47:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:34 2024 by rpki-client on console-fra.rpki-client.org