Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5dNwk9CQ5A4k_VrcZYrB8bbOQo8.roa
File: 5dNwk9CQ5A4k_VrcZYrB8bbOQo8.roa (raw, json)
Hash identifier: 1+odJ1RrLkHnJBuRX3uQOXePPOOBDSo3w8u3c4BXArA=
Subject key identifier: E5:D3:70:93:D0:90:E4:0E:24:FD:5A:DC:65:8A:C1:F1:B6:CE:42:8F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018243A1A5FACAAE7AB3C09899235BEA00A7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5dNwk9CQ5A4k_VrcZYrB8bbOQo8.roa
Signing time: Thu 28 Jul 2022 07:07:23 +0000
ROA not before: Thu 28 Jul 2022 07:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213028
IP address blocks: 194.135.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:a1:a5:fa:ca:ae:7a:b3:c0:98:99:23:5b:ea:00:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 28 07:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5d37093d090e40e24fd5adc658ac1f1b6ce428f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bc:df:19:1c:e8:9b:6f:d0:07:36:6c:91:c5:
c5:84:f7:7c:ec:dd:1c:b1:fc:35:a2:8d:13:63:b4:
96:14:f6:d6:00:fc:40:3e:f0:c7:2a:af:07:c4:46:
11:71:b6:6f:62:86:4d:d3:7e:da:06:21:ba:f7:6a:
3a:4a:70:a5:f8:1b:56:fb:e9:56:18:0a:06:fa:18:
e9:c3:79:7b:72:f0:d1:fc:38:51:66:bd:7a:59:e8:
e1:50:65:9c:34:1b:02:f4:24:6d:22:97:a6:09:1d:
3c:d5:e5:c9:ee:6b:b6:8b:31:0c:cf:73:53:2c:6a:
5a:9e:50:26:41:51:d7:01:98:9d:d3:ba:20:69:c5:
7f:ce:66:5f:8e:7b:7b:2e:b3:1c:f4:a6:28:b9:e1:
74:f7:53:b2:7e:21:4e:22:61:f4:9c:87:e1:5b:57:
e9:69:c7:d6:26:07:4f:31:5d:18:82:1d:dc:b1:5c:
38:7c:26:b7:5d:31:c3:16:21:26:77:90:f8:e8:a0:
62:80:5f:ea:81:c7:3b:80:56:11:8d:04:8d:a3:29:
2f:97:99:13:02:6f:dd:eb:f8:0d:99:03:33:fd:3c:
c6:14:c9:56:85:2e:4e:51:43:18:2d:cf:02:fc:b3:
30:76:df:49:88:a1:17:ec:d7:18:4d:3a:d5:f0:da:
9d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D3:70:93:D0:90:E4:0E:24:FD:5A:DC:65:8A:C1:F1:B6:CE:42:8F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5dNwk9CQ5A4k_VrcZYrB8bbOQo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.124.0/24
Signature Algorithm: sha256WithRSAEncryption
61:93:78:27:03:34:22:4e:74:cb:10:15:78:79:05:13:9f:5d:
f3:c3:fe:a9:33:ec:46:27:d3:2c:99:32:99:08:b5:a2:3d:76:
c4:1f:8c:92:c8:78:5e:f8:22:b7:14:d3:b3:ca:5d:4f:76:2e:
09:ff:9b:5c:c1:f0:02:a0:88:8b:c0:4a:9b:be:b4:59:4b:d0:
98:b2:c7:c0:ee:16:3b:82:1e:f7:10:47:b9:0b:ce:8b:74:4a:
b0:85:bb:92:bf:77:db:a0:8c:20:5a:10:d6:1a:2f:c5:57:27:
84:4b:56:c1:b5:c4:d6:23:2a:fa:85:60:00:a3:84:b0:a0:45:
70:d4:bc:d8:e3:d0:41:49:76:b9:e3:9b:10:92:1c:e8:1c:c4:
07:ba:1f:de:1f:05:e5:9f:24:87:7c:26:9c:e5:31:91:14:4c:
44:fa:a1:b7:b5:5f:7f:8d:92:15:54:31:07:03:d6:1d:71:ae:
f6:d4:01:3b:bc:35:f3:92:6b:27:b6:85:e1:00:ca:bf:b9:8e:
3a:22:4a:da:93:0a:82:d3:63:3e:3b:32:70:91:14:e3:37:de:
e0:65:bb:69:76:67:e4:7c:f2:ed:c9:e8:a1:99:f7:3d:61:02:
1e:b0:1a:25:9a:6c:1e:06:2d:c8:6d:9a:f1:85:de:6f:3c:ff:
ea:c5:cb:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-ams.rpki-client.org