Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/FAYA9EmR3eTJth3dhFZF6BKlwDM.roa
File: FAYA9EmR3eTJth3dhFZF6BKlwDM.roa (raw, json)
Hash identifier: dkOgox52mjI3x+cJJpvOa8/r5kzwIaFgQe9jK9+3SwQ=
Subject key identifier: 14:06:00:F4:49:91:DD:E4:C9:B6:1D:DD:84:56:45:E8:12:A5:C0:33
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 0183AEA4B5241FBEB90739BD0CA294FF989D
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/FAYA9EmR3eTJth3dhFZF6BKlwDM.roa
Signing time: Thu 06 Oct 2022 18:52:53 +0000
ROA not before: Thu 06 Oct 2022 18:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 192.35.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ae:a4:b5:24:1f:be:b9:07:39:bd:0c:a2:94:ff:98:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Oct 6 18:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=140600f44991dde4c9b61ddd845645e812a5c033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d9:6d:e8:50:75:4b:0f:e3:10:ea:83:fd:c7:
0c:f0:1b:d6:f6:83:74:80:d7:ab:54:23:05:dc:b7:
35:6b:26:5d:53:9c:ae:2e:0f:53:3b:df:36:25:1a:
a5:19:a3:a9:56:0d:77:dd:5b:ce:4a:66:3f:a3:e5:
19:5e:a3:bf:26:ca:c7:a1:63:47:ff:57:30:38:58:
e6:64:2b:c3:c5:38:13:a8:c0:6d:c6:b6:2c:b5:e7:
0b:b0:f6:2a:17:83:1e:55:af:a7:19:8c:f6:24:d0:
1a:57:48:ed:75:e6:72:df:cd:b6:e2:3f:45:f4:8b:
f6:88:47:73:d2:ec:a5:26:b2:86:34:7d:00:3d:f1:
82:77:3b:b5:96:51:20:fc:54:83:c7:eb:0f:14:53:
57:67:ee:e8:ef:14:4c:fe:dd:75:91:4d:75:b1:8b:
b9:d8:9d:c9:62:da:da:0e:d5:73:b9:77:13:2f:ae:
6d:ef:04:25:81:d1:7c:49:41:34:7b:45:01:1b:c4:
fb:f6:d0:c6:01:23:d4:2d:e0:17:84:a3:74:f6:c0:
82:44:36:39:93:aa:7a:4d:c1:d4:e8:b1:3a:46:ec:
6f:ae:d1:5f:f7:6f:a7:14:ae:3d:94:12:97:53:74:
64:91:d5:11:12:eb:31:28:8e:3a:63:d8:1a:66:9e:
b5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:06:00:F4:49:91:DD:E4:C9:B6:1D:DD:84:56:45:E8:12:A5:C0:33
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/FAYA9EmR3eTJth3dhFZF6BKlwDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.35.206.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c1:8f:ac:52:da:3b:c1:ba:18:88:36:c7:48:16:ab:7e:30:
e0:6a:fd:cb:25:18:77:e7:27:8a:7e:6d:d3:07:73:e1:05:38:
83:3c:0b:d3:a6:28:a3:88:96:9a:96:0f:ee:7c:ca:4f:bb:8c:
02:25:8d:9f:ac:48:38:35:64:52:e3:0d:d3:1e:9f:2c:1e:b9:
52:d4:d1:92:bf:a9:cb:a8:07:cd:49:d1:d2:f2:2f:49:e0:64:
ff:7a:7a:6a:72:23:ef:f1:ea:1c:d2:93:7a:c0:1b:b2:7f:58:
95:63:be:cd:53:43:f6:f6:db:e9:8f:e9:cf:e6:01:0e:f2:3f:
94:84:56:aa:0e:86:ab:7c:9d:3a:15:16:46:94:f2:a4:e6:fc:
b9:2f:16:d4:3b:82:82:d8:62:cc:00:13:c5:35:d1:a4:db:da:
96:84:f8:27:5d:a0:2b:51:32:45:7d:8d:be:3f:61:4d:48:3e:
45:78:5b:81:7d:5e:39:52:c9:0e:b0:4b:32:04:99:26:bc:4b:
51:78:96:a8:fa:5b:c9:b6:ee:31:87:08:0e:64:9f:0f:24:ee:
9b:67:e7:2a:fc:eb:2c:ea:d8:bd:88:56:0f:67:40:b0:ad:b1:
52:9a:57:3d:60:b9:ec:a1:fc:2d:8a:5c:8e:7c:5f:ac:bc:b7:
c9:71:df:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org