Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/5NxIMqPh40kFs7VWwkjRXS-a-rE.roa
File: 5NxIMqPh40kFs7VWwkjRXS-a-rE.roa (raw, json)
Hash identifier: q6a17EKFofiYS3RptwFeRcSzXpQBBLPFrAXadlHOrGQ=
Subject key identifier: E4:DC:48:32:A3:E1:E3:49:05:B3:B5:56:C2:48:D1:5D:2F:9A:FA:B1
Certificate issuer: /CN=b05a0604e76876fa03e6ad8687fa1db6c63d3908
Certificate serial: 0CDE6F33
Authority key identifier: B0:5A:06:04:E7:68:76:FA:03:E6:AD:86:87:FA:1D:B6:C6:3D:39:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFoGBOdodvoD5q2Gh_odtsY9OQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/5NxIMqPh40kFs7VWwkjRXS-a-rE.roa
Signing time: Sat 01 Jan 2022 04:51:14 +0000
ROA not before: Sat 01 Jan 2022 04:51:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203038
IP address blocks: 185.243.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215904051 (0xcde6f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05a0604e76876fa03e6ad8687fa1db6c63d3908
Validity
Not Before: Jan 1 04:51:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4dc4832a3e1e34905b3b556c248d15d2f9afab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5a:de:cb:3c:4a:a8:76:44:8a:e5:5f:7c:db:
b2:12:fd:aa:6d:1d:20:54:05:07:97:1a:ce:15:00:
9f:72:4c:54:34:79:15:9e:0b:e3:62:3c:ff:4b:27:
cd:f7:67:c6:b3:32:fc:8d:16:64:83:de:2c:60:cc:
61:bb:a8:ca:af:b8:f2:78:b0:a0:ec:1b:54:92:48:
07:07:e3:f6:6d:d5:cb:4b:76:28:5b:dc:f5:fe:a5:
59:5e:36:5e:11:31:19:bd:06:5a:8b:48:7f:eb:94:
43:c9:26:33:1e:ae:5f:08:4e:b0:a3:a1:7a:7c:3c:
0b:07:35:44:2b:a8:1e:e7:e1:92:09:12:bc:48:d1:
f2:df:92:85:c5:18:ea:61:28:cf:29:93:87:04:5c:
8b:8d:a8:60:8a:41:34:0d:85:c5:6f:79:14:3b:ef:
70:5a:0e:5a:85:30:87:f7:c0:a1:23:14:96:52:e7:
ad:6d:98:79:5f:c9:90:d1:0b:35:ee:5c:59:93:d3:
5f:75:e7:5b:74:1b:d3:1d:ad:7a:ea:73:2b:f1:3b:
99:dc:43:f3:1a:c8:e2:9b:15:a3:cc:41:0c:b6:be:
ac:49:10:b9:66:da:58:64:89:98:15:35:95:de:dd:
bf:20:73:12:cc:d4:02:90:14:2c:b2:f7:31:ee:1a:
df:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DC:48:32:A3:E1:E3:49:05:B3:B5:56:C2:48:D1:5D:2F:9A:FA:B1
X509v3 Authority Key Identifier:
keyid:B0:5A:06:04:E7:68:76:FA:03:E6:AD:86:87:FA:1D:B6:C6:3D:39:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFoGBOdodvoD5q2Gh_odtsY9OQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/5NxIMqPh40kFs7VWwkjRXS-a-rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/81aa49-8b4a-4c28-a578-a605717d34ae/1/sFoGBOdodvoD5q2Gh_odtsY9OQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.23.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:b5:ab:c7:d4:96:c9:14:16:3d:e3:1b:48:c9:33:13:0f:6f:
3a:cd:dd:da:b2:92:c7:b8:d1:bf:0a:47:53:09:55:2a:40:43:
34:57:5d:9f:67:c3:27:8d:17:28:8e:41:33:0f:7e:53:5e:08:
bc:27:ec:c8:9b:ef:2b:21:85:a9:7f:d4:42:cb:e7:fe:1a:76:
6c:69:a1:72:ac:5c:e0:07:05:e9:cf:2a:2c:2f:ad:da:42:3d:
cb:51:c1:be:c3:d4:39:40:8c:7b:0b:cd:57:22:4e:e0:0d:77:
e7:7f:7d:a3:e8:71:1b:e7:3b:0b:6d:83:26:eb:34:5f:7e:4d:
b0:04:02:b8:d8:41:c6:a9:04:a3:68:91:58:54:dd:26:50:6c:
7b:9a:3a:84:e5:fd:cf:17:d3:d0:b1:74:aa:a1:e6:9b:da:3a:
70:17:42:b6:f8:60:62:66:10:c6:3c:c3:48:32:a5:f0:74:e1:
cf:09:5c:15:04:79:24:a5:21:fe:77:e9:3b:54:19:7c:64:ac:
e1:57:cf:77:9a:cb:ee:ad:e4:46:c1:2a:e1:18:7e:f1:63:aa:
33:b5:c9:b6:c5:94:37:29:d7:c6:1b:82:17:0d:d1:08:e6:a1:
2c:fc:92:a1:c0:79:a6:ec:84:c4:c5:2a:89:e8:1a:0c:08:25:
fb:d4:f3:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org