Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/fQ5fSPmlDWP1m_QETAvpxpBfD6U.roa
File: fQ5fSPmlDWP1m_QETAvpxpBfD6U.roa (raw, json)
Hash identifier: Ae0ISu/hEAmD2nRbRV9O0lUkAyqvUIvWTlvTMdssyUY=
Subject key identifier: 7D:0E:5F:48:F9:A5:0D:63:F5:9B:F4:04:4C:0B:E9:C6:90:5F:0F:A5
Certificate issuer: /CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Certificate serial: 06BD78F8
Authority key identifier: 4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/fQ5fSPmlDWP1m_QETAvpxpBfD6U.roa
Signing time: Sat 01 Jan 2022 12:04:37 +0000
ROA not before: Sat 01 Jan 2022 12:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211505
IP address blocks: 194.5.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113080568 (0x6bd78f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Validity
Not Before: Jan 1 12:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d0e5f48f9a50d63f59bf4044c0be9c6905f0fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:88:be:1c:f2:04:af:97:3a:96:35:df:33:
af:17:b2:0b:5c:78:31:df:77:ee:4a:b7:3c:34:97:
d1:10:b5:34:ad:ef:bc:bd:22:44:b5:60:4a:56:d6:
9a:b0:32:b3:ab:11:a5:03:1f:d6:d1:56:3b:72:1f:
bb:73:c7:35:56:31:4e:85:9a:25:68:2b:9e:2c:3a:
93:c7:ac:23:da:b9:51:d5:c2:7f:f4:62:80:0c:3e:
6c:6e:4d:44:96:a7:a5:fc:85:02:19:cf:76:48:26:
6f:ba:65:2c:c6:29:9d:86:01:dc:b4:e4:1d:b2:ba:
dd:d4:98:d1:c7:4e:2d:4a:6d:63:cf:c4:6c:c9:35:
1b:e6:81:ab:f9:69:d9:0b:28:04:fd:d0:a2:cf:8e:
92:58:55:75:c3:1f:f7:5a:9e:b1:20:12:43:2c:4b:
08:81:9c:00:7d:6a:aa:9c:89:27:eb:56:c7:41:be:
a4:73:32:93:6b:05:d9:b1:23:76:88:47:1b:09:40:
bc:e2:d5:ca:16:e3:1e:6c:e3:1c:a4:33:b5:45:bf:
22:6e:d7:8b:80:e3:90:9c:c1:b1:eb:d3:e3:6b:f2:
87:d6:6c:b1:11:98:09:51:ee:32:0c:28:3c:25:d2:
87:e6:5d:e6:12:9d:27:91:0a:a3:c3:25:97:61:dd:
da:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0E:5F:48:F9:A5:0D:63:F5:9B:F4:04:4C:0B:E9:C6:90:5F:0F:A5
X509v3 Authority Key Identifier:
keyid:4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/fQ5fSPmlDWP1m_QETAvpxpBfD6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/TRNilffzLmS-ePs5nrbRWuPpJjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.195.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:90:35:0b:38:30:9f:8a:77:d1:b8:7d:88:c0:e1:f0:43:ab:
8c:51:0d:f6:99:4e:1d:2c:19:76:40:7c:14:e0:53:60:f8:28:
f1:63:ab:f9:e0:cb:46:60:35:8a:99:9c:9d:ae:69:87:f5:f9:
79:42:c9:9f:a3:b0:96:bb:f5:69:bd:f8:83:21:62:3f:ba:1b:
3a:2f:ee:c4:0b:e4:7e:18:ca:b6:0e:5f:76:7b:4c:a5:02:21:
b1:f1:a0:92:57:5f:8f:c4:f8:6e:7a:c4:ec:df:31:ee:27:39:
56:2a:57:f8:cb:84:1d:7e:db:92:bc:b6:1e:ee:02:9c:e7:56:
de:b0:13:e2:21:1b:34:d3:d9:90:81:0c:89:c9:08:cb:89:8f:
1a:41:7c:38:76:34:2f:f8:b2:5f:49:98:c8:cf:92:3c:67:e4:
f3:a6:df:50:65:14:22:25:a5:ec:33:b0:75:06:92:0a:c4:9f:
cb:ab:d6:f4:45:19:ab:69:ad:15:6f:83:66:24:a3:13:2d:83:
41:77:9c:ac:38:74:e5:73:40:1c:b7:5d:e6:ca:04:95:9b:02:
af:fe:c4:e8:85:31:13:ad:01:1f:21:d0:06:20:5d:b0:90:9e:
51:b3:71:74:29:bf:80:b0:39:b3:a6:a1:2c:b3:1d:2f:9c:dd:
be:bd:b5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:36 2024 by rpki-client on console-ams.rpki-client.org