Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/FlTeAg1r0HRDoI_zss9Tvegppe4.roa
File: FlTeAg1r0HRDoI_zss9Tvegppe4.roa (raw, json)
Hash identifier: hVi/+swYZG/G8iv+Bm7fDkblLJ9iCqHIzFt5A28o9TE=
Subject key identifier: 16:54:DE:02:0D:6B:D0:74:43:A0:8F:F3:B2:CF:53:BD:E8:29:A5:EE
Certificate issuer: /CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Certificate serial: 143E4B7C
Authority key identifier: AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/FlTeAg1r0HRDoI_zss9Tvegppe4.roa
Signing time: Sat 01 Jan 2022 06:57:11 +0000
ROA not before: Sat 01 Jan 2022 06:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211099
IP address blocks: 194.156.235.0/24 maxlen: 24
94.177.116.0/23 maxlen: 24
2a02:7c9::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339626876 (0x143e4b7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Validity
Not Before: Jan 1 06:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1654de020d6bd07443a08ff3b2cf53bde829a5ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:45:a9:0e:45:74:4c:11:ef:c1:f0:29:f5:69:
cb:a2:9e:d9:b8:28:f2:62:7b:35:86:30:a7:7e:f0:
a6:3c:04:71:d4:81:12:da:3e:ee:af:ad:07:e6:07:
2e:e2:6e:e5:3c:57:ad:63:42:36:0b:4c:a0:3b:77:
dc:c9:1b:c3:f7:c0:8b:12:bc:20:af:cd:53:8f:81:
40:00:b4:c3:7e:72:0b:e7:2a:c6:e1:72:2b:5c:49:
2b:ab:a6:a4:d7:c0:1f:b9:4a:98:6a:15:12:e5:0a:
bf:1d:9b:c8:ec:d3:75:71:02:9e:7b:eb:da:dd:e0:
ac:13:db:e5:cb:17:29:16:0d:aa:af:e5:68:34:ef:
87:45:5a:90:2d:82:f0:75:7a:b7:aa:7d:9c:d8:ae:
2d:14:f2:ad:af:59:1b:d7:93:87:ea:ef:4a:f4:dd:
e6:12:06:72:32:69:cd:42:a7:64:d3:7d:7d:dd:14:
39:0b:62:b5:3e:c3:e2:c2:ba:40:f2:21:d7:e1:87:
9d:d4:29:0c:62:cb:15:58:c2:61:03:6e:7b:a1:f2:
68:0d:86:9d:fc:e5:fc:cd:99:e2:2d:23:47:3c:48:
89:29:cf:7f:bc:10:51:b9:75:f3:70:8b:33:2f:5e:
4e:3f:b8:04:97:cf:28:6d:1a:47:da:b5:ba:3f:b9:
1c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:54:DE:02:0D:6B:D0:74:43:A0:8F:F3:B2:CF:53:BD:E8:29:A5:EE
X509v3 Authority Key Identifier:
keyid:AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/FlTeAg1r0HRDoI_zss9Tvegppe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.116.0/23
194.156.235.0/24
IPv6:
2a02:7c9::/44
Signature Algorithm: sha256WithRSAEncryption
04:7e:5b:14:f5:aa:e9:8a:91:24:d1:a2:3f:ac:3e:48:39:5a:
1a:91:bb:75:7a:6c:c6:ce:4f:3f:1d:55:2f:5f:82:af:70:5f:
75:31:ba:d9:5f:90:18:72:a9:f8:26:90:47:59:04:c9:30:10:
f4:a3:cd:25:13:46:df:07:6b:2d:ce:f0:fa:f2:5f:3a:04:29:
65:b1:9b:b3:6e:78:73:85:a2:9d:8e:e9:ed:e8:b3:f9:b2:16:
62:3b:b3:41:8c:da:dd:f7:61:8d:4f:de:a5:24:19:4c:74:bf:
8c:33:35:c9:ed:d8:0d:d1:77:a4:7e:4d:ae:1c:f7:d0:fc:9f:
0d:9b:92:f1:92:7f:59:02:6a:62:69:e9:3d:0b:a2:cc:b3:c5:
f0:02:7a:21:02:6c:8a:99:a3:56:fb:2f:f1:db:ad:01:86:4d:
2a:1f:d5:b1:fe:4a:8a:79:0d:81:f4:ce:d1:93:c8:46:67:05:
80:b4:eb:51:f2:5c:09:c2:55:21:23:4a:fd:e2:bf:49:35:b2:
61:48:e2:16:e0:48:c1:a3:af:2a:0b:69:44:a3:dd:8a:cd:a7:
a5:ed:12:fa:68:b4:67:d9:11:6e:cd:a4:b1:1b:78:76:b7:81:
1e:2f:9e:e2:31:26:42:07:8c:77:73:97:2c:43:f1:73:c2:df:
4c:e5:0b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net