Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/fwJ1Fz0yr9iWDVJ2mZVGjtmGwz0.roa
File: fwJ1Fz0yr9iWDVJ2mZVGjtmGwz0.roa (raw, json)
Hash identifier: 03gHGufPSp6KKTHmEiW73ZTREeHe/ijQZRiQkuXVZMs=
Subject key identifier: 7F:02:75:17:3D:32:AF:D8:96:0D:52:76:99:95:46:8E:D9:86:C3:3D
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 02B2B7D9
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/fwJ1Fz0yr9iWDVJ2mZVGjtmGwz0.roa
Signing time: Wed 12 Jan 2022 21:41:28 +0000
ROA not before: Wed 12 Jan 2022 21:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60602
IP address blocks: 195.133.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45266905 (0x2b2b7d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 12 21:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f0275173d32afd8960d52769995468ed986c33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:17:b3:00:1f:ce:9a:b8:51:d3:41:9a:90:4d:
cf:06:ad:db:a1:40:a8:e9:9d:8b:3a:69:53:3b:c0:
2e:c6:43:e7:ad:bd:ac:7f:9c:0b:7c:4e:b7:dc:a4:
44:67:87:f9:f4:f2:81:61:a8:44:05:b0:5f:e6:f4:
da:a0:e5:bb:82:cd:85:c4:7c:d9:16:93:ae:6a:66:
48:81:26:a0:53:6b:8e:0c:e9:ae:b7:d4:51:99:4a:
21:1e:14:56:a2:0f:29:81:04:66:00:9d:4b:5d:35:
ba:c0:a7:29:6d:55:dd:6d:ec:ef:0d:4f:5d:8d:fe:
07:5d:1b:67:dc:e0:dc:22:6f:7d:ea:86:93:93:2a:
c5:eb:77:24:b2:61:8b:a0:13:a1:a5:f6:1d:0d:87:
ff:e6:65:c1:f0:71:a3:40:5f:83:16:a6:57:41:56:
96:ae:9d:61:65:62:72:e0:b1:8f:b8:9f:06:ae:d2:
38:e6:a5:45:bf:86:5a:91:25:29:dd:a0:1f:c8:7e:
6d:0a:0f:73:81:21:25:ed:99:77:57:7b:b1:1e:70:
d6:8b:fe:99:bc:79:d3:94:2c:74:99:62:f2:47:a7:
45:00:b6:c7:59:86:8a:a7:d3:36:f7:67:78:d4:17:
3e:b9:d3:0a:7c:3a:90:7a:72:51:f9:a5:ad:e8:12:
63:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:02:75:17:3D:32:AF:D8:96:0D:52:76:99:95:46:8E:D9:86:C3:3D
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/fwJ1Fz0yr9iWDVJ2mZVGjtmGwz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.202.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:d1:f7:a4:c5:65:e2:5a:52:78:af:03:b4:bf:9b:f5:7d:85:
d0:8b:26:35:7f:e9:5f:57:c8:b7:5f:29:ea:c3:64:50:ab:ba:
aa:74:1a:e4:4b:56:f8:f7:9a:3f:65:76:d6:48:11:44:78:87:
20:48:59:dc:4f:5b:18:e9:0a:bd:7a:2d:1f:85:7b:3b:9c:a1:
d8:d8:66:60:16:f1:10:cb:b7:05:9f:25:a2:bb:65:9e:a0:ac:
fc:a3:f1:8c:c6:bc:10:12:46:78:da:06:a3:09:7d:8c:e7:4c:
d5:9b:4f:60:b2:6c:be:5f:09:74:cb:1f:fc:ae:0e:b0:55:c3:
4a:f0:29:bc:c6:b0:75:26:ed:d1:8c:ef:e6:41:c1:7c:d7:36:
6a:0e:2f:ce:61:41:2a:b6:84:cc:ba:0b:d8:32:98:9a:02:aa:
be:13:97:2c:e0:3e:41:63:03:93:03:a6:e3:52:12:7a:b8:f6:
5c:ff:4e:7d:aa:a8:54:1f:49:c7:2e:78:44:ab:be:d6:36:a9:
0d:47:ce:30:04:38:a6:79:c1:89:a9:b4:53:e8:a9:6f:10:82:
31:37:9f:d7:c4:25:3b:ab:02:fe:2b:da:de:19:ef:c8:70:d1:
f7:0b:fc:cd:2a:8b:15:33:c2:6e:07:38:8b:df:ef:82:7c:4e:
fe:d8:00:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:05 2023 by rpki-client on console-fra.rpki-client.org