Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/FFU7BQuXI7KyZk1GMK8Wx22XCNo.roa
File: FFU7BQuXI7KyZk1GMK8Wx22XCNo.roa (raw, json)
Hash identifier: pyA/KE8Dig5ZqSm/BVZWJgHc0A+jF6U97uLQQwev94o=
Subject key identifier: 14:55:3B:05:0B:97:23:B2:B2:66:4D:46:30:AF:16:C7:6D:97:08:DA
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 013A210F
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/FFU7BQuXI7KyZk1GMK8Wx22XCNo.roa
Signing time: Mon 23 May 2022 07:13:30 +0000
ROA not before: Mon 23 May 2022 07:13:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 2.59.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20586767 (0x13a210f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 23 07:13:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14553b050b9723b2b2664d4630af16c76d9708da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c8:cd:e1:45:a6:16:c1:25:29:62:00:3e:80:
83:21:cf:a6:f8:ca:fa:51:61:44:4f:a4:c5:09:76:
87:22:84:af:32:e5:4c:e1:3e:84:b3:1b:df:a0:d7:
cc:9b:20:19:27:38:03:a9:22:65:94:6c:99:5c:c5:
a9:f3:95:a8:cc:07:83:72:9a:f0:3a:19:5e:9f:bb:
68:d9:81:5e:98:ec:40:ae:ed:4d:9c:55:f0:59:45:
c2:06:8c:70:5f:b0:d2:68:47:35:5c:cf:6c:29:91:
ea:06:ed:10:66:f6:de:22:a2:88:a6:97:0c:cc:45:
99:0d:f4:44:93:95:33:2f:d5:73:5a:d3:42:e0:c9:
79:35:63:d8:f0:4a:54:18:92:f4:d6:62:20:d1:79:
05:fd:a8:27:21:4a:4a:f0:d8:93:b7:cb:a3:86:94:
c2:e2:9e:17:77:91:51:29:c1:fa:87:3a:c6:7b:44:
fb:e6:25:9a:8a:a0:0f:75:66:99:e3:69:66:0b:d5:
0f:55:20:5e:32:e4:9f:97:bd:8d:81:6d:1a:c2:47:
37:3c:28:3a:b5:48:c1:52:d0:39:01:52:3c:08:ae:
a4:c1:29:bb:77:02:69:19:37:7c:ba:43:4d:d0:93:
b5:6d:dc:e1:9d:cc:ac:b0:43:a8:77:49:49:bb:f3:
e5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:55:3B:05:0B:97:23:B2:B2:66:4D:46:30:AF:16:C7:6D:97:08:DA
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/FFU7BQuXI7KyZk1GMK8Wx22XCNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/24
Signature Algorithm: sha256WithRSAEncryption
42:86:69:d1:f8:13:b1:e2:3a:1c:ba:f8:fa:0a:94:b7:66:ca:
7e:bb:84:1f:40:4c:9c:c1:ce:fa:d6:6a:6a:2a:ee:29:a8:64:
b5:1a:31:67:24:1f:88:fc:c2:5b:f4:dd:1a:f3:90:57:21:99:
b7:b8:04:dc:a7:47:9a:b4:eb:bf:18:2f:9c:b8:1e:57:36:06:
e8:d7:c2:92:2e:a4:50:04:6c:16:bc:6f:32:7d:f4:df:8f:6c:
fa:39:af:4f:b2:d0:9c:f8:a5:c8:0b:88:37:5e:4a:5f:21:10:
62:16:d4:fd:9e:27:1b:10:a3:d5:63:ee:cb:88:f2:d0:80:80:
88:ec:1f:31:c0:17:33:66:d2:5d:96:46:5c:3d:bb:df:32:4e:
76:87:80:93:4a:c1:41:63:fb:71:f1:4c:fc:c7:09:95:67:48:
db:9c:fe:38:86:cd:96:fe:a5:82:c9:b6:5e:7a:e2:77:4c:46:
4d:45:30:bf:d4:3c:5c:82:34:71:78:c1:e2:8b:9e:62:4a:c2:
28:cf:87:19:ef:aa:20:19:a5:4c:f6:6d:82:4c:94:26:a6:f8:
73:75:3c:a0:b8:3a:77:f4:f5:af:8a:a7:25:bf:45:38:09:2c:
e0:00:45:4f:2e:af:0a:f0:9a:86:80:7f:00:db:60:db:65:db:
66:8e:f7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org