Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fqvpc0iosjrCezWNrC4hHC7PaYA.roa
File: Fqvpc0iosjrCezWNrC4hHC7PaYA.roa (raw, json)
Hash identifier: 3O1v6z/atkgGEr0bzH6mz5XCS0EKoNn3ixmn8yZwu3g=
Subject key identifier: 16:AB:E9:73:48:A8:B2:3A:C2:7B:35:8D:AC:2E:21:1C:2E:CF:69:80
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17CEC10A
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fqvpc0iosjrCezWNrC4hHC7PaYA.roa
Signing time: Sat 01 Jan 2022 04:54:31 +0000
ROA not before: Sat 01 Jan 2022 04:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137443
IP address blocks: 94.140.20.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399425802 (0x17cec10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16abe97348a8b23ac27b358dac2e211c2ecf6980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:52:76:a1:59:28:56:99:a7:4c:be:2e:ff:b3:
b8:b3:61:42:80:f0:49:40:40:b1:d9:e9:cc:f5:cc:
0c:aa:aa:75:8e:29:c4:d6:86:5a:63:7e:6f:88:b7:
e1:0b:d8:1a:d3:89:0e:fd:f7:d9:9a:fc:da:cc:db:
64:45:e1:92:9a:7c:fe:59:fe:4e:51:cf:1d:fc:97:
b0:77:18:29:c6:4e:9c:38:c0:48:20:34:c6:1b:03:
c8:cd:b2:3d:75:65:fa:05:9e:7a:0a:84:ae:c8:59:
f1:a8:08:1f:ce:33:a8:af:da:69:c6:09:b6:d8:e2:
8a:54:2d:4d:ef:99:ba:d8:ca:c8:11:96:7e:eb:7a:
ea:4d:0c:bd:d9:f0:eb:b3:ac:b9:2c:16:ca:31:a7:
c1:03:fb:23:8b:52:96:c8:7d:a2:5d:71:db:7c:66:
1c:f7:95:f3:b0:05:f5:44:b1:73:e1:01:10:6e:83:
55:fe:ed:a9:c6:52:3d:13:af:c2:e6:37:35:84:ab:
ff:ae:82:07:4a:35:4b:f4:6a:4b:37:4b:10:c0:6a:
80:25:28:bf:e9:39:35:e2:4a:72:d5:2c:eb:f8:f2:
db:4d:11:9c:1d:f0:d7:41:fd:f9:9c:28:ad:9e:b7:
6d:e3:30:b0:f1:89:97:cc:51:99:4c:a7:e7:36:9f:
4c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:AB:E9:73:48:A8:B2:3A:C2:7B:35:8D:AC:2E:21:1C:2E:CF:69:80
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fqvpc0iosjrCezWNrC4hHC7PaYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.20.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c3:67:b9:8c:67:48:91:9d:d9:bf:1a:f3:78:0b:88:e1:62:
7f:b6:b4:fc:0c:ec:ad:25:51:20:4c:e0:58:e8:ff:b8:c5:48:
7f:53:8d:a6:63:19:88:7c:75:97:c6:b0:71:26:c6:5e:3e:df:
4b:95:0f:da:2e:7b:a7:c6:3c:02:e6:73:da:8e:69:88:1f:a2:
8f:ab:c1:40:f5:b8:bd:55:04:e5:51:f9:85:5e:04:1e:33:b4:
10:83:3b:b3:67:94:2c:c0:0b:34:4b:64:6c:34:aa:4c:bd:1b:
6a:08:da:ad:0b:3d:bb:6b:8d:5c:fd:5e:44:e2:c1:43:b6:71:
d3:d4:e5:c3:5b:ce:e4:88:65:1d:af:7d:f4:86:90:21:4c:2f:
42:fb:5a:96:6d:be:32:0a:dd:77:52:10:1a:62:8f:99:bb:34:
ab:fb:ce:ae:d1:24:48:7e:81:7e:1a:26:d9:0c:af:5c:82:3e:
2b:32:3d:41:9a:39:ce:c5:ff:12:e6:b3:b0:fc:f4:f5:4c:ac:
3a:90:dd:76:90:50:08:83:f2:9c:77:6b:63:f1:27:f0:7d:c6:
8a:bf:c5:c2:08:d2:27:b5:c0:72:52:1a:c9:61:30:2d:76:96:
df:eb:25:6c:6a:7d:64:62:6e:b2:d2:7e:56:9f:44:3a:da:7f:
b5:7d:99:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org