Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5UKy2JzK36ar8wI6SGD6vn8MadE.roa
File: 5UKy2JzK36ar8wI6SGD6vn8MadE.roa (raw, json)
Hash identifier: HySaeZbnJwRx9QrgtpsRkhYyLrAGbmRnjM+xWDZyEd8=
Subject key identifier: E5:42:B2:D8:9C:CA:DF:A6:AB:F3:02:3A:48:60:FA:BE:7F:0C:69:D1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01823A0A33E91EC368E510C9E7A6E9F7F5BE
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5UKy2JzK36ar8wI6SGD6vn8MadE.roa
Signing time: Tue 26 Jul 2022 10:25:23 +0000
ROA not before: Tue 26 Jul 2022 10:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211851
IP address blocks: 212.193.12.0/24 maxlen: 24
212.193.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:0a:33:e9:1e:c3:68:e5:10:c9:e7:a6:e9:f7:f5:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 10:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e542b2d89ccadfa6abf3023a4860fabe7f0c69d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:74:6f:68:0c:28:8f:b2:90:08:4b:70:f7:8c:
bc:80:4d:31:26:08:3f:a0:64:2f:21:15:bf:ac:67:
f3:33:26:ef:0d:74:8f:e7:79:8d:e7:e8:03:3e:2a:
3b:78:71:d6:6f:25:9f:be:18:a5:5b:81:b1:9f:27:
a9:cc:ee:cb:d9:68:c4:d5:a6:b7:bc:0f:5e:93:99:
2e:7b:02:e8:64:7a:8a:48:ac:2c:53:0e:11:18:ca:
78:69:ca:b8:2e:66:d9:c5:69:e2:ee:f0:cc:26:2d:
44:c0:6b:60:36:dc:37:ce:ff:63:56:ff:d3:ea:2b:
01:5b:20:7c:eb:a5:af:f5:4c:8f:dc:0f:3c:f9:3f:
28:5a:9b:55:da:e9:9c:b0:bd:c5:8e:b5:f2:62:e8:
83:27:2a:9a:f2:44:99:d8:47:53:4b:79:0b:71:a5:
98:9b:fb:a4:e4:bd:a6:c3:df:2f:a8:d3:a9:fd:e9:
5b:69:17:4d:b9:08:81:f9:bb:05:9b:21:68:e2:18:
de:7d:0c:a0:4f:cd:5f:e5:15:a2:e5:ea:af:86:bd:
9c:e0:4e:6c:c8:5f:26:82:bf:3f:73:b0:0d:db:fe:
86:dc:f2:80:6b:e3:a3:6b:69:22:67:02:93:a8:4b:
7d:5a:7c:b6:30:04:a1:88:ac:ee:c6:de:a2:61:4c:
be:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:42:B2:D8:9C:CA:DF:A6:AB:F3:02:3A:48:60:FA:BE:7F:0C:69:D1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5UKy2JzK36ar8wI6SGD6vn8MadE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.12.0/24
212.193.15.0/24
Signature Algorithm: sha256WithRSAEncryption
98:1f:89:3f:03:e1:67:8b:a0:5f:6f:97:82:35:bd:8b:ef:3e:
29:c6:7f:72:22:22:43:85:18:9f:d0:f6:58:57:5c:7b:d0:f7:
a0:f2:87:70:8e:25:56:d5:83:34:56:33:40:64:53:c2:c0:ad:
98:ac:18:95:a5:fd:fe:37:f1:5e:df:19:6f:a2:51:dc:bc:2b:
d8:18:bd:d6:91:7b:35:ef:28:99:fe:0a:e1:ec:52:2d:2a:f9:
d2:85:6a:f0:e5:b6:f4:76:64:e1:09:96:0d:62:8d:94:87:06:
df:a1:c1:5f:4f:70:93:bd:ce:2a:f8:79:1c:6b:b9:ce:b6:d5:
15:91:89:4e:3f:38:df:a9:33:92:e0:0d:45:2f:7e:95:35:ea:
1b:2d:c2:4f:0a:49:9e:50:ce:6b:bf:41:e6:71:6b:45:6d:d9:
e8:b9:b3:bb:88:50:04:2a:ee:ec:f2:5d:7a:bd:a1:a7:1d:00:
09:3b:d7:d2:ec:e2:70:ea:de:9a:13:87:01:4c:f3:7a:af:61:
09:0a:29:a7:53:22:b5:00:12:ac:f3:45:77:12:49:5e:cc:9f:
3c:72:91:6f:4b:fb:37:39:43:cb:b4:32:be:f0:69:0f:24:4c:
04:19:8b:0c:b5:34:ed:57:d9:78:e3:dc:6f:53:57:05:a4:6d:
e2:23:79:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org