Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fxq5JcO83_SwazVXxh2uxO7w0X4.roa
File: Fxq5JcO83_SwazVXxh2uxO7w0X4.roa (raw, json)
Hash identifier: 62SOdqlaCVzTjnIT90L4IN8j1ngis8D2sRV6Zu0a7h0=
Subject key identifier: 17:1A:B9:25:C3:BC:DF:F4:B0:6B:35:57:C6:1D:AE:C4:EE:F0:D1:7E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17FB98CF
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fxq5JcO83_SwazVXxh2uxO7w0X4.roa
Signing time: Sat 01 Jan 2022 04:54:58 +0000
ROA not before: Sat 01 Jan 2022 04:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398129
IP address blocks: 92.119.148.0/24 maxlen: 32
185.240.217.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402364623 (0x17fb98cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=171ab925c3bcdff4b06b3557c61daec4eef0d17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ef:09:a6:21:0b:57:00:cb:ef:3a:b9:b2:16:
22:69:e3:2e:0d:be:50:37:49:5e:43:87:92:67:35:
29:fb:20:4e:55:5d:a3:88:68:ec:f1:70:5e:41:7c:
2d:07:eb:ef:51:4c:4b:b8:25:21:fa:10:87:7d:63:
e7:1f:76:a8:65:b7:d1:46:53:2d:2d:13:c5:92:df:
95:2e:ba:79:8b:23:9e:87:c6:01:67:01:3a:71:ee:
ae:4d:e8:46:72:55:84:8b:64:b3:72:fe:de:06:76:
7e:68:93:aa:b8:a0:e4:14:a1:8a:be:6c:13:46:5a:
80:17:d5:dd:96:aa:0f:87:05:7c:70:54:65:09:d2:
3c:13:73:0d:8e:d1:e8:e9:27:8a:b7:13:9e:c8:06:
66:8b:73:80:66:fd:62:57:68:65:9d:59:a6:75:f4:
2c:5e:cf:a2:7e:6b:60:28:74:63:fc:67:50:01:dd:
5a:78:11:5c:1a:d8:21:30:63:a1:c6:c8:31:2a:3b:
44:96:74:dd:0f:3d:f1:7a:22:74:1a:af:67:d2:34:
ff:e6:2b:be:2f:fc:05:89:07:91:99:c3:b5:6f:2f:
e5:0b:91:6b:f5:79:5d:e5:51:39:1b:d2:27:60:00:
03:56:12:13:7c:e5:a9:21:e4:f3:93:9f:bf:97:06:
0f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:1A:B9:25:C3:BC:DF:F4:B0:6B:35:57:C6:1D:AE:C4:EE:F0:D1:7E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Fxq5JcO83_SwazVXxh2uxO7w0X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.148.0/24
185.240.217.0/24
Signature Algorithm: sha256WithRSAEncryption
55:4e:b5:f3:3f:78:82:e2:e6:64:62:c6:33:1d:80:da:36:42:
dc:d2:40:15:90:59:2f:03:59:84:f8:39:1f:35:8a:7e:d2:a7:
61:c7:9f:04:89:43:ee:8d:ea:2e:1b:7d:af:ee:84:d5:3d:ba:
f0:f1:ab:81:1f:1a:91:34:66:ac:04:c3:39:b7:41:9f:ec:57:
7f:19:71:b5:d7:da:3d:69:cb:c2:79:d1:66:45:4a:8a:9a:10:
bd:7c:dd:65:e2:17:b7:43:18:c5:5f:54:dd:bf:af:71:0c:c4:
6c:3f:6a:78:7d:34:f0:53:88:1a:ec:82:59:b9:0a:7c:ca:a1:
5b:71:89:05:dc:05:69:fe:d3:9f:45:9e:32:cc:bc:b0:69:b9:
3a:17:ae:c7:04:88:97:ae:5e:3a:c4:96:38:97:0c:05:5a:95:
6c:11:50:9b:ae:fc:22:1a:3a:89:80:9d:7b:1f:19:e8:97:c7:
dc:09:de:a3:0c:62:68:46:87:cd:07:23:70:d5:4f:cf:09:d5:
df:3f:35:a4:06:ae:55:0e:07:0a:df:5f:54:e0:aa:c2:9c:bd:
c6:d8:32:aa:46:10:c7:c3:8f:cc:90:36:9f:67:3e:7a:87:8c:
bc:1e:c5:f2:7d:02:6d:9b:da:42:01:56:38:e1:29:cb:2e:55:
32:7c:a7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org