Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/5af699-b1a9-49dc-bdc9-1d4dfb4f4800/1/friQzEqzsAIRoChKiTpbjMvNcyw.roa
File: friQzEqzsAIRoChKiTpbjMvNcyw.roa (raw, json)
Hash identifier: gfcBPZKAl/wAOK2smU5O+jF2CdOnfDjhMCdO1Sjo59E=
Subject key identifier: 7E:B8:90:CC:4A:B3:B0:02:11:A0:28:4A:89:3A:5B:8C:CB:CD:73:2C
Certificate issuer: /CN=21269675acefbbf8497b1e21ca73764af4aa8c7b
Certificate serial: 0DFC0A80
Authority key identifier: 21:26:96:75:AC:EF:BB:F8:49:7B:1E:21:CA:73:76:4A:F4:AA:8C:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISaWdazvu_hJex4hynN2SvSqjHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/5af699-b1a9-49dc-bdc9-1d4dfb4f4800/1/friQzEqzsAIRoChKiTpbjMvNcyw.roa
Signing time: Sat 01 Jan 2022 15:06:35 +0000
ROA not before: Sat 01 Jan 2022 15:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20847
IP address blocks: 62.165.64.0/18 maxlen: 24
84.241.128.0/18 maxlen: 24
80.65.96.0/19 maxlen: 24
2001:1690::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234621568 (0xdfc0a80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21269675acefbbf8497b1e21ca73764af4aa8c7b
Validity
Not Before: Jan 1 15:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7eb890cc4ab3b00211a0284a893a5b8ccbcd732c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:48:82:51:fa:6b:59:c4:64:2e:ef:6a:8c:64:
00:56:02:fa:1f:3d:8a:96:78:15:ea:1b:85:f5:4b:
89:25:46:af:35:e5:8f:ff:3b:d1:7e:24:4d:2e:58:
0c:b2:1c:53:b5:c1:78:08:df:be:ce:a5:96:7d:12:
70:15:75:aa:9d:82:1f:48:5a:7c:4e:a1:3e:c9:a3:
0f:28:14:0b:73:80:40:03:db:a8:7e:0e:6b:78:50:
88:7d:06:0d:b0:b4:bc:27:75:c8:6f:d5:6b:90:43:
4c:b2:05:43:b4:f0:af:30:88:75:eb:7b:82:2f:32:
a2:99:d7:51:53:55:51:79:38:20:6b:58:9f:48:02:
98:ec:3b:61:c9:6e:5a:44:53:2c:7c:20:21:e7:c4:
48:01:b3:3e:f6:00:85:7b:21:96:1d:23:af:3f:64:
7d:63:41:96:88:73:6c:7c:c1:e1:93:fe:99:26:72:
19:27:6b:ab:7a:55:24:f2:2d:23:46:a1:64:23:ef:
c8:e0:e7:e8:01:2c:ad:5d:44:83:71:92:14:f0:92:
7f:94:78:c1:ef:03:62:ee:0b:38:32:af:96:2a:7d:
d3:b6:6d:c0:79:76:56:30:7d:84:7f:f8:e7:65:27:
63:48:a0:37:94:7d:80:df:7d:24:28:9d:ec:20:8f:
fd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B8:90:CC:4A:B3:B0:02:11:A0:28:4A:89:3A:5B:8C:CB:CD:73:2C
X509v3 Authority Key Identifier:
keyid:21:26:96:75:AC:EF:BB:F8:49:7B:1E:21:CA:73:76:4A:F4:AA:8C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISaWdazvu_hJex4hynN2SvSqjHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/5af699-b1a9-49dc-bdc9-1d4dfb4f4800/1/friQzEqzsAIRoChKiTpbjMvNcyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/5af699-b1a9-49dc-bdc9-1d4dfb4f4800/1/ISaWdazvu_hJex4hynN2SvSqjHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.165.64.0/18
80.65.96.0/19
84.241.128.0/18
IPv6:
2001:1690::/32
Signature Algorithm: sha256WithRSAEncryption
2d:3d:9d:19:91:2c:72:84:61:87:ec:36:e6:ae:50:81:cc:d8:
90:4a:48:09:46:74:db:7d:c2:b1:3d:42:12:50:3f:14:a1:00:
55:e2:d8:97:31:36:c3:ed:0d:5e:b9:30:f5:a2:27:e1:35:c6:
84:11:9e:45:6e:bd:6d:21:f5:c8:54:06:0d:ea:d8:ae:89:84:
97:77:ea:c7:a4:81:dc:d0:60:f8:5d:ab:5a:b4:50:1d:e1:8a:
a9:b4:0e:a0:e1:81:70:ec:82:40:6d:42:67:1a:d5:08:b1:f8:
d6:73:f3:b4:a8:15:ef:d8:92:c3:62:f5:34:3b:d2:b7:b7:4b:
08:90:35:50:64:cb:5e:10:7c:5a:97:bb:cc:69:54:a5:7d:d7:
c9:09:f7:8f:ab:54:e7:d1:1b:82:3d:c1:c7:89:60:68:0c:9e:
4f:b0:ec:4c:ab:6a:ce:7d:53:25:9c:d2:e4:05:ae:2b:25:57:
94:c7:3e:34:d9:15:18:e9:b3:82:7a:43:54:7b:95:e6:7e:7f:
4f:41:92:28:ba:02:d8:5b:f3:6c:b7:dc:82:a4:e0:01:fe:df:
a2:1b:81:b9:63:d8:f2:14:3c:db:9b:1f:78:a8:c1:10:b1:2c:
26:e7:47:d6:d1:74:47:5e:e3:2e:57:3b:3d:bd:f9:7a:1c:e4:
dc:e1:cb:30
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:52 2023 by rpki-client on console-fra.rpki-client.org