Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/p78XPvdL97jFPunlAY9L0eJqC1E.roa
File: p78XPvdL97jFPunlAY9L0eJqC1E.roa (raw, json)
Hash identifier: IeoJaV40BkXKsPrHlaWFA77yv9IpgCXALxbQpJxntYs=
Subject key identifier: A7:BF:17:3E:F7:4B:F7:B8:C5:3E:E9:E5:01:8F:4B:D1:E2:6A:0B:51
Certificate issuer: /CN=f571716c098aa06f4703154b98ab00228b5b7d89
Certificate serial: 0183B666EAD0CA58650F6E230B00244CBF92
Authority key identifier: F5:71:71:6C:09:8A:A0:6F:47:03:15:4B:98:AB:00:22:8B:5B:7D:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XFxbAmKoG9HAxVLmKsAIotbfYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/p78XPvdL97jFPunlAY9L0eJqC1E.roa
Signing time: Sat 08 Oct 2022 07:02:21 +0000
ROA not before: Sat 08 Oct 2022 07:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.92.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b6:66:ea:d0:ca:58:65:0f:6e:23:0b:00:24:4c:bf:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571716c098aa06f4703154b98ab00228b5b7d89
Validity
Not Before: Oct 8 07:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7bf173ef74bf7b8c53ee9e5018f4bd1e26a0b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:d9:2b:f1:7a:f3:4d:77:7a:1e:15:ea:43:
07:ee:a0:97:eb:ea:c6:15:6a:5e:a6:9b:a6:7d:dd:
9b:1e:59:b2:f1:9e:85:07:b9:f7:2b:94:f7:c7:f2:
80:1e:c1:f0:35:fb:0f:84:90:ec:5a:d8:82:da:89:
35:22:b6:d7:44:d1:cf:c8:6a:9d:fd:eb:de:f7:2d:
80:a1:16:67:10:c8:91:28:d3:e6:2f:71:a2:d2:03:
8f:ee:e8:fe:bc:f8:93:eb:c3:f6:cc:1b:46:be:f3:
4a:66:91:a4:d9:dc:32:14:c7:e3:22:de:b2:12:7b:
e1:c8:c8:ca:6c:f9:50:3f:0d:0b:41:94:cc:70:1d:
88:cd:33:bd:f3:df:1b:a6:35:cc:be:69:16:e9:19:
0a:60:29:53:c1:94:02:0e:a5:79:56:b8:be:b0:80:
71:f1:33:1b:9b:a5:10:af:6b:01:4e:ce:9c:b4:e4:
90:48:14:45:af:ad:5f:a5:b4:59:39:46:3e:a0:72:
61:64:34:81:25:26:5f:87:38:55:38:c9:61:f3:6e:
00:39:6c:90:f6:6c:dc:e9:c1:47:e4:b7:c8:ee:59:
e5:00:5b:21:44:55:2c:2b:4c:20:bf:1d:71:c7:9a:
4a:2d:c1:5e:95:14:47:56:7e:63:86:7d:3e:93:2f:
43:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BF:17:3E:F7:4B:F7:B8:C5:3E:E9:E5:01:8F:4B:D1:E2:6A:0B:51
X509v3 Authority Key Identifier:
keyid:F5:71:71:6C:09:8A:A0:6F:47:03:15:4B:98:AB:00:22:8B:5B:7D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XFxbAmKoG9HAxVLmKsAIotbfYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/p78XPvdL97jFPunlAY9L0eJqC1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/9XFxbAmKoG9HAxVLmKsAIotbfYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.209.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a6:1f:48:24:70:c8:99:18:40:32:95:60:16:b2:e8:95:e1:
c0:bb:6a:3f:7d:b5:3a:08:3c:87:69:51:2d:74:51:ba:aa:38:
62:03:c0:ea:3c:2c:ad:11:45:4e:77:d3:58:54:f3:c0:75:5a:
b3:db:0a:4c:a3:a5:d4:a5:bc:7e:90:91:51:1b:5e:a4:2e:ec:
cd:a4:e7:63:95:60:65:99:b9:ae:5c:a5:1e:fc:53:af:a8:92:
d4:af:bb:19:f8:2c:93:9e:a9:c2:0a:1e:53:12:b0:f3:45:18:
f3:bb:d9:26:01:4c:27:3f:d4:ed:67:ef:c4:05:e2:05:af:94:
84:24:de:02:b6:de:81:da:c4:ef:0f:a1:8a:ad:68:c8:da:2c:
4c:cd:fe:d7:12:44:e6:ce:0c:6f:9e:9e:80:67:a8:26:18:b9:
c5:cb:4f:0d:9f:82:0d:04:76:8f:73:0d:26:b6:05:6e:bb:f7:
a4:a6:45:ff:87:55:fc:7a:fb:18:ac:91:a9:2d:79:4a:c6:83:
44:b0:e9:78:28:54:ba:68:a3:c3:12:26:6c:12:dc:75:a1:de:
4f:07:94:01:fc:c8:1b:c7:45:98:9e:d9:b8:b2:82:49:9a:76:
87:ae:fd:cd:83:55:4a:cb:57:81:20:1d:01:2d:aa:54:71:10:
2a:e9:09:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:46 2023 by rpki-client on console-fra.rpki-client.org