Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/fXFfeg3QwWoxnGFyLghZjECCLVI.roa
File: fXFfeg3QwWoxnGFyLghZjECCLVI.roa (raw, json)
Hash identifier: aXGJtyYtSSS7/uf12bQlG++4aiQ//h8qp3B3fwAUcJc=
Subject key identifier: 7D:71:5F:7A:0D:D0:C1:6A:31:9C:61:72:2E:08:59:8C:40:82:2D:52
Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Certificate serial: 05EBBC51
Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/fXFfeg3QwWoxnGFyLghZjECCLVI.roa
Signing time: Sat 01 Jan 2022 06:02:15 +0000
ROA not before: Sat 01 Jan 2022 06:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44716
IP address blocks: 87.225.128.0/17 maxlen: 17
212.42.224.0/19 maxlen: 24
212.42.244.0/24 maxlen: 24
212.21.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99335249 (0x5ebbc51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Validity
Not Before: Jan 1 06:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d715f7a0dd0c16a319c61722e08598c40822d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:54:c0:6e:84:0b:ef:34:25:0c:0e:f3:fb:37:
5c:f2:83:49:64:a6:4e:3c:a0:bf:b9:be:50:45:8f:
85:6e:ac:15:10:72:54:89:11:13:ea:dd:2d:d0:a1:
8d:7b:ed:82:b6:b7:2f:0c:97:0f:31:6e:89:21:c5:
44:30:41:50:d4:4b:40:24:f2:eb:d0:8e:d4:3a:bf:
07:5e:bd:05:ca:80:05:67:95:24:4f:1a:3e:18:88:
15:0b:4f:0b:58:31:2d:f6:74:d1:a1:ab:60:de:1c:
df:9e:24:29:ff:81:fa:a7:7e:7d:c5:fa:a3:5c:db:
bc:f7:ef:d9:be:63:aa:7c:45:89:c3:37:28:84:fa:
18:4d:42:0c:bf:c8:a6:49:34:09:9f:4f:c3:a4:7d:
9b:38:c4:3d:af:c2:fb:17:0b:6a:1a:d2:c7:38:85:
70:ec:ab:fd:85:02:aa:ca:d8:f5:c6:0c:34:78:b8:
dd:15:15:de:4e:f6:e0:65:84:40:5b:5d:32:ce:0a:
7b:c1:bd:b0:1f:ec:d7:63:32:f0:7b:1e:30:3a:a6:
f5:bf:54:dc:db:83:10:c3:bf:64:97:2e:8b:ad:8e:
28:aa:8c:6e:2f:5f:62:dd:4f:ab:86:77:08:d3:29:
69:44:59:75:ec:9a:4d:92:13:fd:81:0b:ef:7b:c3:
21:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:71:5F:7A:0D:D0:C1:6A:31:9C:61:72:2E:08:59:8C:40:82:2D:52
X509v3 Authority Key Identifier:
keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/fXFfeg3QwWoxnGFyLghZjECCLVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.225.128.0/17
212.21.64.0/19
212.42.224.0/19
Signature Algorithm: sha256WithRSAEncryption
50:ef:0f:c8:1b:60:ba:ec:49:bb:af:1a:5d:8b:70:fa:12:28:
50:4b:13:c0:f9:86:3d:35:58:ec:cb:3c:f6:9f:55:18:43:25:
9c:b7:a0:c4:68:36:a5:81:7d:42:ec:f8:ab:00:7e:9f:38:01:
e6:40:ad:cc:86:d9:64:3d:75:e9:05:3a:d7:4c:5f:f3:53:cc:
5a:fd:f9:75:7e:28:55:b3:e6:05:57:4d:d9:2b:2c:aa:a8:91:
c1:1c:cb:3a:b7:36:ee:49:e4:15:17:ad:37:ab:74:7a:78:70:
fe:b2:8a:d3:68:f8:b1:a1:a1:d1:27:18:b2:74:66:4c:e4:7f:
6f:c2:86:1c:b0:b3:d9:a2:af:d5:31:2c:df:08:27:f6:d9:5a:
c9:4a:b2:fe:6d:c8:29:ae:fb:e0:46:8a:f6:8a:25:e3:47:60:
76:7b:d0:43:ab:f2:45:9c:b0:a0:a7:73:67:bf:44:60:b2:9b:
64:3c:94:02:f1:6c:e8:53:86:9f:d6:fa:7e:b3:f1:38:a2:84:
4f:bf:10:65:b9:d8:79:16:d8:bf:b0:cb:c9:2b:95:8e:f4:b3:
dc:3d:c0:d8:be:53:14:b4:b6:c4:d6:83:7f:13:22:3d:b9:f9:
41:e9:c5:63:40:63:77:aa:b7:55:f4:fe:9a:05:b6:16:c3:c0:
ac:6c:b6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:46 2024 by rpki-client on console-fra.rpki-client.org