Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/8QyvaKhIXrAwcblEHEVOYzH3lUg.roa
File: 8QyvaKhIXrAwcblEHEVOYzH3lUg.roa (raw, json)
Hash identifier: z1ZyAy/7RD+ZcCpF5uGHt0nCrz0VS25t7WTKIUUnrvI=
Subject key identifier: F1:0C:AF:68:A8:48:5E:B0:30:71:B9:44:1C:45:4E:63:31:F7:95:48
Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Certificate serial: 0181EDBF0D5484BB127AB5ACA9B9B70C30E9
Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/8QyvaKhIXrAwcblEHEVOYzH3lUg.roa
Signing time: Mon 11 Jul 2022 14:52:09 +0000
ROA not before: Mon 11 Jul 2022 14:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8405
IP address blocks: 193.188.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:bf:0d:54:84:bb:12:7a:b5:ac:a9:b9:b7:0c:30:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Validity
Not Before: Jul 11 14:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f10caf68a8485eb03071b9441c454e6331f79548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:5a:27:7d:d9:cf:0d:9e:cf:b0:a5:3c:8d:
3f:b1:af:1e:9f:17:23:5c:4a:94:70:5c:92:4f:27:
80:39:3c:1c:b2:5d:f4:62:10:e6:b2:d8:2c:f5:08:
3a:c2:c4:9c:5e:f6:2a:9f:14:5f:33:03:db:97:ad:
e0:6d:aa:34:37:0a:1b:9b:6a:e4:a9:da:49:dc:54:
d3:1f:03:06:9a:ed:fa:28:ad:2f:84:fa:c1:8d:65:
8e:cd:a6:a9:05:31:9d:3d:9c:ce:d8:89:01:e4:6d:
45:78:ef:2c:6c:75:76:de:1a:6c:47:71:42:b6:53:
18:cf:ed:a1:47:db:58:31:9c:cb:78:e2:1a:ef:7c:
c9:0f:81:25:22:4e:de:20:69:97:44:fc:9f:3b:94:
6f:fc:68:66:65:03:e0:2a:fc:ba:eb:47:d9:21:20:
7b:50:23:83:86:2b:1d:a4:0f:ba:53:3d:02:0a:04:
34:a8:f8:85:55:eb:18:a2:f3:a8:ae:1d:d4:c1:82:
c8:31:19:f6:2d:60:c0:d1:49:a0:37:3a:08:e7:04:
9b:c7:b7:1b:0f:5b:db:fa:b6:1f:c1:68:9a:89:0d:
3c:11:f1:01:6f:8d:b2:73:2d:d3:9e:8a:85:75:96:
13:4f:b0:af:89:42:c6:98:bf:87:35:4a:7e:9f:87:
65:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0C:AF:68:A8:48:5E:B0:30:71:B9:44:1C:45:4E:63:31:F7:95:48
X509v3 Authority Key Identifier:
keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/8QyvaKhIXrAwcblEHEVOYzH3lUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.154.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:9d:86:4b:6c:29:46:38:c1:03:af:96:cd:a2:09:1d:51:93:
a5:fe:ba:ed:c4:22:fb:93:3a:57:80:9c:c7:94:df:90:34:56:
a6:44:ff:5c:7b:ad:72:3d:2b:6a:19:0a:db:38:02:d3:28:d0:
9d:d4:0a:ba:cf:52:50:56:f5:9f:5f:b8:89:9a:af:af:da:e7:
1e:76:a9:e6:cf:4d:58:e7:3c:32:0c:64:a4:ca:12:c8:65:bf:
44:8d:3b:5a:df:ef:8e:f0:d3:f3:55:18:8d:e6:95:4d:92:72:
a2:18:46:be:12:c0:0f:f3:32:d3:00:05:af:8b:52:04:8a:aa:
53:80:e5:df:07:99:2e:e7:61:83:07:af:e0:18:fb:d9:dc:f3:
3e:9f:e5:f9:c0:d0:10:73:0c:07:49:8c:dc:d1:b2:ec:86:06:
3f:5d:90:cb:d2:06:c3:37:53:8b:b5:86:3a:1e:e1:07:2f:08:
dc:86:9b:d4:d0:c6:6f:0d:e7:3b:f7:fb:a1:78:e0:87:ab:50:
58:60:bf:d9:7f:21:6e:1a:df:3c:36:f7:d6:b2:3d:18:ea:b2:
9b:1a:ec:68:90:2d:f5:ed:42:75:ca:c8:63:28:10:df:ff:b9:
5c:de:d7:d7:fb:84:55:33:65:51:8a:1f:61:d0:c1:77:78:52:
78:c6:36:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org