Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/fvmoK6PKiofI2AaZ4sxlSOepKZE.roa
File: fvmoK6PKiofI2AaZ4sxlSOepKZE.roa (raw, json)
Hash identifier: LXkqQtSQMjpkbGBAH3N6nAH4qqaAif451kw7gVZyeIk=
Subject key identifier: 7E:F9:A8:2B:A3:CA:8A:87:C8:D8:06:99:E2:CC:65:48:E7:A9:29:91
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0BF05240
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/fvmoK6PKiofI2AaZ4sxlSOepKZE.roa
Signing time: Fri 29 Apr 2022 14:09:48 +0000
ROA not before: Fri 29 Apr 2022 14:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 91.229.132.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200299072 (0xbf05240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Apr 29 14:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ef9a82ba3ca8a87c8d80699e2cc6548e7a92991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:05:18:d4:a7:b4:ed:e8:54:09:ae:f7:ae:
e9:04:b0:27:33:42:17:48:ee:cb:b2:4b:ea:e5:1d:
53:54:53:d7:a3:c1:94:34:13:8f:81:4f:20:71:4a:
96:3e:59:67:d6:fe:44:12:93:ee:9e:f6:af:b1:22:
77:08:1f:e3:c2:86:f9:c2:1f:40:9b:0f:e2:d8:90:
bf:30:43:97:3e:71:02:8c:45:a0:61:e2:dd:38:38:
cd:45:ac:d2:41:c8:2e:60:8b:54:37:c0:62:e0:6f:
e0:94:b7:4d:9a:cc:cb:56:66:e2:f1:51:4f:cd:c3:
29:f7:45:71:f2:e0:7a:a4:05:2a:09:d0:0c:eb:d4:
c2:f1:9d:66:5e:8e:e0:23:84:79:b7:18:f3:5d:d7:
5b:0c:c3:f4:ab:2b:74:c6:b6:7f:5a:37:9d:70:29:
b7:6c:e8:23:e1:16:da:f1:35:59:40:4b:e8:26:d0:
2b:67:49:01:b8:a7:fe:0b:a4:a8:c7:c0:e8:c4:0e:
e3:b2:23:91:9e:36:86:21:37:e5:ef:c6:f3:90:1c:
12:64:67:99:57:ca:a1:0e:f0:64:ea:3d:6b:f1:27:
52:ce:10:5b:5d:a2:af:84:9f:57:c5:e3:5e:3d:c1:
d9:ce:70:1a:a9:32:ee:b7:0e:4a:f8:22:f5:6b:5b:
22:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F9:A8:2B:A3:CA:8A:87:C8:D8:06:99:E2:CC:65:48:E7:A9:29:91
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/fvmoK6PKiofI2AaZ4sxlSOepKZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.132.0/23
Signature Algorithm: sha256WithRSAEncryption
e0:24:68:40:81:93:d7:7a:fa:9e:54:9b:13:26:14:90:cf:13:
8b:19:22:54:6f:8f:5e:2a:73:09:ed:f7:ea:a6:ad:56:f6:05:
5b:c1:58:10:45:61:48:59:78:b4:86:90:33:6d:ad:c5:8a:42:
cf:c7:38:d1:24:72:7c:bc:73:42:99:24:87:ee:de:69:db:2c:
63:f7:9b:2f:76:b8:a6:f8:54:63:97:74:d8:c2:28:e6:14:14:
cd:92:04:b2:ee:57:6d:50:9a:5d:d2:37:c4:7a:1c:f4:4c:4f:
65:69:48:09:85:3b:ba:59:99:01:8f:2f:8b:80:48:52:0f:12:
4d:14:d7:a2:37:da:6b:c0:f7:ae:cd:40:05:cf:11:d9:c0:90:
d8:1a:b1:44:76:8f:91:ac:bc:d3:c9:7e:9b:dc:50:d7:a7:d0:
11:45:8a:ab:7b:89:06:d1:72:49:d1:da:c0:32:73:5b:12:36:
fe:6c:4e:f6:fa:26:43:b7:09:6c:1d:a0:69:53:74:42:d7:89:
af:f6:2f:b4:2a:f1:62:2e:00:0f:07:fb:23:3e:26:82:70:12:
e1:e7:7c:e3:c0:fb:3f:1a:12:fc:9f:94:3f:1e:15:21:4c:b4:
51:e6:1f:20:25:cc:1b:7b:7c:76:51:15:74:29:cf:b7:97:fb:
17:6c:a0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org