Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fmxau30QUiMjVULw9KpSEReTwSg.roa
File: fmxau30QUiMjVULw9KpSEReTwSg.roa (raw, json)
Hash identifier: RjDNKZFwYD53MlbVufcRWIPiAgXtb9ZI+bVojtMUlpw=
Subject key identifier: 7E:6C:5A:BB:7D:10:52:23:23:55:42:F0:F4:AA:52:11:17:93:C1:28
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 17A59D0F
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fmxau30QUiMjVULw9KpSEReTwSg.roa
Signing time: Sat 01 Jan 2022 13:03:30 +0000
ROA not before: Sat 01 Jan 2022 13:03:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211679
IP address blocks: 178.251.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396729615 (0x17a59d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e6c5abb7d105223235542f0f4aa52111793c128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:91:68:3e:ca:84:e7:5d:8b:2b:3d:40:9f:c2:
e4:5b:41:bf:46:69:bf:42:dc:4a:18:38:5f:57:66:
db:b3:c5:2d:65:33:4b:f2:40:a2:89:3f:0d:1d:fa:
c7:50:21:81:2c:f5:a6:bc:e6:a3:e1:04:e9:64:5e:
58:67:fd:fe:a5:4f:d0:d8:76:96:0a:d6:e3:58:f2:
8f:8c:c2:56:e4:67:7b:8d:50:24:9c:de:cf:7a:0b:
b5:c4:9b:32:db:36:12:4c:f4:31:53:23:94:23:61:
60:91:25:36:aa:fc:7a:46:e3:8d:7e:2f:f5:04:0c:
3e:33:5b:b3:ba:2c:10:6a:e4:82:8d:1f:f0:60:a4:
17:89:80:73:2b:2e:86:f3:aa:46:46:d3:13:d4:fd:
50:3e:96:6b:e4:41:e2:e4:67:5e:fe:70:40:c0:e8:
a9:9a:b3:70:51:1e:e5:10:70:26:11:56:7f:31:2d:
58:cf:fd:02:5e:82:c1:e7:6b:03:7b:2b:6b:c8:1b:
91:09:6c:2b:fe:1f:12:d9:da:20:f2:12:df:a0:76:
9a:32:da:32:52:db:50:8d:ed:67:2a:91:e1:5e:a5:
c2:f3:fc:3c:80:a6:82:f1:5f:22:be:88:d7:73:b8:
3c:15:0b:22:0e:6d:a5:6e:79:e0:2c:a2:a5:96:58:
a3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6C:5A:BB:7D:10:52:23:23:55:42:F0:F4:AA:52:11:17:93:C1:28
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/fmxau30QUiMjVULw9KpSEReTwSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.231.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:59:52:1a:9a:34:26:ae:4b:1f:c2:63:15:3b:26:85:2d:08:
46:71:09:4d:5a:f8:cf:7e:9b:01:f0:81:d1:ba:67:26:de:fb:
65:bf:6f:25:22:0b:aa:f9:a3:5d:b2:c5:51:74:4f:21:3e:61:
c4:78:11:cc:95:e1:41:6c:8e:b2:1b:ab:c8:19:30:4e:d4:fa:
2a:53:26:15:71:3a:b8:8a:ce:34:95:16:ad:d0:03:93:38:c6:
e2:fa:4d:5c:33:8a:39:51:d1:bf:53:d5:ed:5f:3c:b8:09:f1:
ff:55:de:90:a3:34:45:cb:75:24:59:ab:7a:0d:b7:53:87:4d:
68:58:dc:a4:93:f9:5a:17:d5:e6:d4:78:ec:74:26:89:e6:8e:
09:19:f7:11:de:14:b0:a7:9d:7b:a6:18:2a:d6:ed:2a:e3:74:
36:70:5a:da:10:3f:c2:4c:36:ab:93:d5:d2:b8:97:b7:e3:72:
8e:e6:54:3c:c2:b3:09:83:70:cd:6c:7f:bf:f3:79:31:f5:01:
c6:61:3e:6b:12:5b:58:6d:07:02:be:17:ea:d6:1b:e2:70:87:
61:45:39:2f:40:1c:c2:81:18:02:ec:c1:79:e8:2f:ca:f0:9a:
85:5a:e4:c7:84:45:92:9f:b9:b5:aa:c1:8a:6d:d2:7f:4c:26:
78:eb:e1:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org