Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/_-FautBrTCTTQPlCT6K8o62gt3k.roa
File: _-FautBrTCTTQPlCT6K8o62gt3k.roa (raw, json)
Hash identifier: EkePymlk2a2ruc7/m8vtziQmbx4O/zeg0N7/4GPenzM=
Subject key identifier: FF:E1:5A:BA:D0:6B:4C:24:D3:40:F9:42:4F:A2:BC:A3:AD:A0:B7:79
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 08BF1436
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/_-FautBrTCTTQPlCT6K8o62gt3k.roa
Signing time: Sat 01 Jan 2022 10:01:56 +0000
ROA not before: Sat 01 Jan 2022 10:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.108.33.0/24 maxlen: 24
134.109.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146740278 (0x8bf1436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: Jan 1 10:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffe15abad06b4c24d340f9424fa2bca3ada0b779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:99:37:35:46:79:61:c9:4e:b0:93:cd:f6:b2:
62:30:e0:ce:c2:c4:e5:00:f5:86:c2:01:63:4b:dd:
66:f5:41:01:f3:fe:fc:8b:13:15:aa:58:8a:d6:7f:
08:a0:6f:9a:80:b0:c2:f6:ec:22:6a:a5:55:65:43:
9e:bb:c4:6e:ba:24:36:12:01:3e:0e:8d:7d:b2:f2:
4f:72:0f:f4:01:27:3e:f9:a0:e4:54:04:40:54:48:
74:6e:d8:8a:6e:70:2f:9f:a7:4f:b2:c9:59:00:e0:
c2:e4:54:d9:37:27:f0:51:f9:e0:71:7b:a8:50:07:
68:dc:2a:05:74:32:61:1a:85:17:25:a8:b9:91:24:
ee:ac:5b:6a:a4:7e:c6:c8:f3:63:02:4d:08:55:6c:
67:2e:78:3b:65:02:7d:2b:17:0d:1a:8d:b8:72:92:
a1:7a:11:d9:e3:1c:ff:04:e1:57:d2:39:1b:2c:89:
e0:18:da:ea:31:52:6b:4d:49:8f:23:54:02:34:c5:
fc:8e:a8:2b:41:09:68:b3:ea:6b:8a:08:1d:f9:d4:
2f:19:13:99:50:5e:70:64:a3:bc:dd:ac:4f:c7:f4:
31:d2:01:1b:3e:fb:35:56:4d:cd:66:08:d2:50:78:
fe:d5:3f:32:fb:1b:82:be:5b:a8:db:11:06:8f:3e:
e7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E1:5A:BA:D0:6B:4C:24:D3:40:F9:42:4F:A2:BC:A3:AD:A0:B7:79
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/_-FautBrTCTTQPlCT6K8o62gt3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.109.0.0/16
192.108.33.0/24
Signature Algorithm: sha256WithRSAEncryption
63:0e:f7:d2:7b:a3:a5:65:1d:78:f1:c5:f7:ea:32:11:c3:bc:
b5:96:2f:f9:ae:e2:4a:9e:90:96:9a:f3:99:c2:db:77:7d:ba:
5f:56:2e:b6:86:3d:b5:70:02:3b:09:36:60:63:4f:c1:4e:5b:
8f:af:6a:d6:9f:b6:01:b5:a2:f6:e3:17:22:00:8c:9a:43:74:
6b:b6:ad:f7:7a:77:e5:22:62:42:c4:77:e7:80:c0:28:ca:e6:
bf:64:a2:e4:48:1c:bd:56:04:33:11:af:e7:cc:cf:db:8d:1e:
a5:f6:7f:de:dd:9f:4e:7f:74:2c:31:09:1c:17:e0:43:2c:12:
55:b2:f1:cf:a9:b0:ce:3b:c0:38:a7:c8:44:72:95:b1:b4:a2:
ce:62:0c:eb:01:fe:98:0a:b7:fe:6a:7a:b2:62:9b:2d:e5:cf:
71:cb:b0:0e:99:92:b4:27:a9:e2:89:c5:b7:19:02:ad:1c:7e:
49:7d:b4:54:02:67:03:b0:76:11:e7:e7:37:c2:aa:98:80:a0:
d1:bb:65:e8:ee:ab:79:86:66:33:87:d6:10:3a:72:cf:44:12:
e7:d4:a5:2a:88:9f:41:ce:70:fb:af:26:b3:ba:fd:fd:ae:cc:
09:81:ea:36:ac:b2:34:11:35:22:3f:c3:bd:b6:75:f1:00:b9:
5c:3c:e5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org