Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/f955ef-d8ad-449d-8060-fe243437dfd5/1/FW2wyHwsLATfu_dLQIOXA77XB4E.roa
File: FW2wyHwsLATfu_dLQIOXA77XB4E.roa (raw, json)
Hash identifier: 9GkcDrQBqTRz+RSPaUKXw2nKX6w6syWDtnl2QAtjIIU=
Subject key identifier: 15:6D:B0:C8:7C:2C:2C:04:DF:BB:F7:4B:40:83:97:03:BE:D7:07:81
Certificate issuer: /CN=1cc56cfde7153c116efab52688cac9abd3bf2a5a
Certificate serial: 6AFC4D
Authority key identifier: 1C:C5:6C:FD:E7:15:3C:11:6E:FA:B5:26:88:CA:C9:AB:D3:BF:2A:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMVs_ecVPBFu-rUmiMrJq9O_Klo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/f955ef-d8ad-449d-8060-fe243437dfd5/1/FW2wyHwsLATfu_dLQIOXA77XB4E.roa
Signing time: Sat 01 Jan 2022 03:54:26 +0000
ROA not before: Sat 01 Jan 2022 03:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 212.52.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7011405 (0x6afc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc56cfde7153c116efab52688cac9abd3bf2a5a
Validity
Not Before: Jan 1 03:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=156db0c87c2c2c04dfbbf74b40839703bed70781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:47:92:af:7a:b5:25:6f:6b:ff:9e:8e:44:83:
37:2f:08:70:be:27:2c:e7:7d:af:5d:b6:1d:d5:2f:
9b:11:89:b4:ad:83:b5:0c:75:05:e0:76:bd:dc:5e:
7b:ee:a9:9d:8f:4e:71:01:e8:fc:78:23:70:8a:e4:
ca:6a:33:64:cb:27:99:21:a4:f7:c4:d9:ba:e4:28:
ba:05:c0:ad:94:95:be:40:91:24:9f:e8:63:6b:a6:
7c:7c:ad:02:c8:ff:31:d8:7c:d0:0f:34:d6:fd:05:
1c:a9:94:b6:d7:87:bd:c0:af:dc:f4:4f:ad:7a:03:
c6:2a:e1:07:14:0e:8f:cf:11:ba:0a:5b:e6:34:8f:
bf:7e:5f:a9:94:83:1e:e8:07:ff:fd:8c:c5:15:f7:
03:48:f8:76:d8:e6:1e:e0:c5:3a:32:fe:26:e0:a5:
04:e4:2b:40:34:19:11:9f:9f:42:ad:ad:36:fc:33:
dd:ea:b0:f4:69:85:f0:7d:cd:5f:1c:0f:41:b6:0d:
69:22:4e:e0:33:0f:f8:4a:b5:e0:c8:a5:a7:f3:b6:
b9:ce:d5:ce:df:33:38:c3:b9:f1:2a:4b:dc:c3:0d:
17:42:d0:b8:6f:cb:70:37:a0:3d:c8:2e:1f:ab:02:
d9:3f:31:78:67:48:48:61:dc:c0:31:ee:21:5a:8b:
30:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6D:B0:C8:7C:2C:2C:04:DF:BB:F7:4B:40:83:97:03:BE:D7:07:81
X509v3 Authority Key Identifier:
keyid:1C:C5:6C:FD:E7:15:3C:11:6E:FA:B5:26:88:CA:C9:AB:D3:BF:2A:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMVs_ecVPBFu-rUmiMrJq9O_Klo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f955ef-d8ad-449d-8060-fe243437dfd5/1/FW2wyHwsLATfu_dLQIOXA77XB4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/f955ef-d8ad-449d-8060-fe243437dfd5/1/HMVs_ecVPBFu-rUmiMrJq9O_Klo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:0e:5d:fe:54:28:45:e3:4d:39:66:1d:22:f1:23:c1:0b:24:
01:27:27:40:bf:4d:d6:11:0c:f2:d0:40:b2:00:1a:19:68:e3:
7f:70:dd:9b:53:09:31:7e:f9:c0:74:b4:3a:7a:f5:81:fa:f1:
4f:c1:e8:de:c8:52:28:26:23:9e:46:00:bc:cb:ab:41:49:4a:
26:15:3b:d8:62:c1:e0:eb:32:b1:1e:9f:f3:6a:0d:15:56:e7:
8e:9b:9b:e9:1a:92:13:3b:80:96:91:8e:e4:c3:3c:a6:ea:87:
42:4a:7f:fd:0c:25:8a:06:95:5f:05:f5:67:7d:92:82:69:5b:
4a:78:da:d4:d3:2c:c2:42:e0:59:d5:31:49:8b:fa:20:4c:94:
8e:21:5c:47:23:0c:91:9c:25:f7:9e:de:c2:47:9d:1f:d5:12:
d4:27:97:56:44:46:58:59:1a:31:59:65:a8:ad:29:5c:7e:31:
2f:a3:ea:f0:4d:d0:60:5a:e7:f9:be:a9:ac:3c:73:8b:e5:d6:
93:4a:cf:52:c5:f0:a2:c4:01:3f:55:4c:d6:58:cd:1d:5e:d5:
9d:a8:69:e1:f4:e5:bf:9f:a4:6b:59:59:9c:db:4f:e3:b0:88:
03:27:61:f1:8c:b6:6c:8e:03:a8:b1:2c:98:ec:18:a9:12:09:
36:88:34:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org