Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/FLF0RWPIa7C9sUWoNlbt4pRUGAg.roa
File: FLF0RWPIa7C9sUWoNlbt4pRUGAg.roa (raw, json)
Hash identifier: jjqmgUmN+GnFcJDY+2bd2HoU0diqH7Csojx4V5AWHS8=
Subject key identifier: 14:B1:74:45:63:C8:6B:B0:BD:B1:45:A8:36:56:ED:E2:94:54:18:08
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 425C7C4E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/FLF0RWPIa7C9sUWoNlbt4pRUGAg.roa
Signing time: Sat 01 Jan 2022 14:03:01 +0000
ROA not before: Sat 01 Jan 2022 14:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16375
IP address blocks: 194.68.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113357390 (0x425c7c4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14b1744563c86bb0bdb145a83656ede294541808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:5e:53:f4:23:8e:d9:19:30:90:3c:bc:41:
72:01:fb:d0:3f:2e:bb:6b:a9:97:98:48:37:97:ca:
4d:d9:71:8f:90:80:e2:d8:a6:3c:3c:15:df:e5:ef:
9b:75:5e:e4:dd:b5:eb:e8:c0:42:d3:68:7f:7e:51:
26:16:48:be:57:ea:cf:45:fc:d1:cd:dc:d9:f9:9a:
d9:a8:d4:bd:1a:63:2d:bd:58:b8:fa:a3:c6:d5:78:
41:5e:06:dd:89:24:76:ec:a5:00:eb:0e:34:93:b3:
ed:d1:3c:8a:30:4e:57:ec:68:7f:36:69:32:ec:db:
ee:6d:2b:57:f0:19:5b:32:46:51:e9:30:0c:b9:5c:
69:86:87:b6:a5:4f:5b:ad:3d:4e:ec:63:a9:37:95:
d2:09:0a:23:84:19:0f:b3:78:99:46:05:74:82:21:
36:b9:34:9a:b7:39:e7:c1:cd:a1:d8:f6:69:b7:c2:
97:e5:01:35:ae:e8:67:59:21:d4:17:00:4f:96:f1:
79:7d:7b:0b:e4:4f:28:75:12:39:9c:0f:68:5d:6e:
9f:b0:3c:d3:da:20:f7:13:55:8c:02:c1:fa:81:a9:
c6:de:3f:4f:8f:fc:67:f9:d8:96:81:dd:8e:bc:c9:
26:59:80:65:c6:a4:61:2e:70:94:f4:d8:3f:9f:d4:
e6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B1:74:45:63:C8:6B:B0:BD:B1:45:A8:36:56:ED:E2:94:54:18:08
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/FLF0RWPIa7C9sUWoNlbt4pRUGAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.68.191.0/24
Signature Algorithm: sha256WithRSAEncryption
23:05:47:e3:4e:07:af:d2:97:2e:8a:89:75:2d:82:2e:c2:7a:
24:0f:eb:c4:75:38:97:3a:65:58:0c:77:e7:bb:98:28:cb:46:
8f:c2:4d:c5:24:cf:96:bc:d0:29:8f:b9:69:66:f6:5c:83:8d:
8c:cf:43:1d:e3:2e:aa:9d:e0:1c:17:42:42:21:8b:fd:81:ff:
d4:1f:08:d7:7b:f0:dc:16:4f:4f:75:18:18:99:31:a2:f3:e5:
17:d9:9d:8c:0f:21:da:42:78:a3:5f:ef:bd:e1:c5:29:05:f2:
1b:9a:c0:a5:2d:b5:60:d2:f6:87:2f:51:a4:d4:88:64:0b:dc:
5b:ff:c7:e6:c2:3c:ca:8b:68:51:c3:c1:38:49:bd:dc:99:4b:
3e:3d:e3:98:20:eb:9a:92:87:2e:58:d6:43:69:93:b7:cd:3d:
70:a0:ef:0d:f2:69:6a:3f:e5:aa:72:51:63:86:52:6e:67:11:
36:42:ba:43:e2:77:27:03:2e:25:c6:ed:f4:12:48:75:42:8d:
36:a0:dd:f5:ce:41:77:fd:93:ea:3a:8b:18:f2:09:00:b0:65:
cc:52:c3:88:9b:95:a3:e0:2a:fd:33:74:d5:07:76:ea:98:72:
59:bc:0a:5b:7c:2e:1a:d5:db:ef:7e:a6:83:4e:7f:20:50:72:
47:03:0d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org