Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c29a1c-244d-44d4-bf1b-db843340f3d5/1/CEETFHGiM6BSsW3BN6LNoZcZb10.roa
File: CEETFHGiM6BSsW3BN6LNoZcZb10.roa (raw, json)
Hash identifier: Qu6syOx0Riwkuzvw/z9Ga6M8Ttrvpc/GjafhgrSXLg4=
Subject key identifier: 08:41:13:14:71:A2:33:A0:52:B1:6D:C1:37:A2:CD:A1:97:19:6F:5D
Certificate issuer: /CN=f6f4febab33760475755755122b9f20262391b92
Certificate serial: 0C398A4F
Authority key identifier: F6:F4:FE:BA:B3:37:60:47:57:55:75:51:22:B9:F2:02:62:39:1B:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9vT-urM3YEdXVXVRIrnyAmI5G5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c29a1c-244d-44d4-bf1b-db843340f3d5/1/CEETFHGiM6BSsW3BN6LNoZcZb10.roa
Signing time: Sat 01 Jan 2022 15:59:03 +0000
ROA not before: Sat 01 Jan 2022 15:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.249.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205097551 (0xc398a4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6f4febab33760475755755122b9f20262391b92
Validity
Not Before: Jan 1 15:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0841131471a233a052b16dc137a2cda197196f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c5:58:d4:07:94:81:ef:6f:3f:30:27:75:9e:
b1:a3:8d:eb:0e:88:fd:de:63:92:55:cf:a7:21:ef:
0b:62:b1:85:b6:16:43:a5:a0:b9:1e:1b:56:fa:76:
e7:5e:f8:45:27:1d:a2:f9:bf:8b:65:69:d2:89:34:
9e:9b:da:5e:04:f0:e4:f3:7e:3d:a8:f8:23:3a:41:
47:67:05:29:16:ea:3a:7f:0c:b4:54:eb:60:50:bb:
fd:42:f0:f7:83:16:b6:ef:3e:71:91:44:68:3a:f8:
2f:3e:34:c4:fe:3f:cf:de:e0:80:86:b2:ee:af:d5:
aa:08:24:e8:f2:34:99:c2:20:9e:f1:38:61:41:c7:
d7:99:12:2c:8d:f2:88:97:11:7c:da:4e:c6:0e:ed:
1d:46:1b:99:08:1b:38:49:99:4c:b5:12:26:a3:01:
06:de:92:39:dc:7d:2f:e3:04:3f:6f:d4:4d:29:bd:
77:26:ef:c0:37:37:6d:1c:96:16:48:41:27:f6:48:
26:2f:7e:cf:3d:f7:2c:6d:3c:5c:be:40:32:f6:d8:
34:57:d4:a7:a2:35:48:8f:a6:87:a7:6c:cc:78:ce:
ff:43:65:b1:cd:ff:9b:c0:7f:d6:a4:30:19:3a:09:
8c:1e:4b:bf:99:d2:1e:c5:3d:49:b2:8b:7e:23:a1:
35:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:41:13:14:71:A2:33:A0:52:B1:6D:C1:37:A2:CD:A1:97:19:6F:5D
X509v3 Authority Key Identifier:
keyid:F6:F4:FE:BA:B3:37:60:47:57:55:75:51:22:B9:F2:02:62:39:1B:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9vT-urM3YEdXVXVRIrnyAmI5G5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c29a1c-244d-44d4-bf1b-db843340f3d5/1/CEETFHGiM6BSsW3BN6LNoZcZb10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c29a1c-244d-44d4-bf1b-db843340f3d5/1/9vT-urM3YEdXVXVRIrnyAmI5G5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.192.0/22
Signature Algorithm: sha256WithRSAEncryption
01:ac:6e:df:4f:8a:c3:5d:32:02:d8:cd:47:e7:10:7c:cb:e8:
b8:41:13:f3:08:86:e1:0f:90:40:dc:63:e6:75:ff:7d:c7:4f:
9d:14:0e:1f:da:b5:90:7b:d8:ed:44:d7:9d:95:c9:d7:b2:14:
6d:56:5c:45:8a:15:af:ae:cd:0f:4e:79:1a:a0:34:44:bf:99:
f7:4e:3d:d8:26:da:b2:33:29:a8:22:86:52:62:e1:29:7f:95:
86:ed:2c:57:75:d7:3e:6a:9a:aa:9d:ea:57:a1:14:a0:7c:54:
8a:da:af:1f:d9:26:9f:7f:e9:f0:83:c1:f4:0c:7b:b9:ea:b9:
de:de:8e:18:f2:af:87:7c:35:12:7e:9f:d6:23:08:cb:e5:d4:
06:9d:2b:71:a7:ec:af:3f:36:b6:c4:74:37:0e:1d:c7:d2:73:
67:d2:b9:c3:c9:a9:b6:78:99:d4:3f:ce:c5:e9:d4:ab:28:7e:
ba:d0:ee:83:16:8d:db:aa:27:df:29:58:1d:e4:20:25:9b:af:
d3:ac:db:cf:93:5d:37:0d:7c:3c:9a:ef:de:33:4c:01:36:44:
95:71:b4:9a:c3:16:72:84:2c:ce:ee:69:6a:31:09:c4:12:0a:
25:81:c9:92:60:fe:ad:64:3f:a7:13:69:58:c2:b2:65:96:1d:
bf:d9:af:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org