Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5jkVfGgTjYHIfIhD-X3YLf4gLQU.roa
File: 5jkVfGgTjYHIfIhD-X3YLf4gLQU.roa (raw, json)
Hash identifier: LBmRaPjkMbRo1SjjPWnks+2Cd3geyKMONYh4cZAbRcA=
Subject key identifier: E6:39:15:7C:68:13:8D:81:C8:7C:88:43:F9:7D:D8:2D:FE:20:2D:05
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0FBC1EBF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5jkVfGgTjYHIfIhD-X3YLf4gLQU.roa
Signing time: Fri 13 May 2022 06:09:57 +0000
ROA not before: Fri 13 May 2022 06:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272686
IP address blocks: 194.87.164.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263986879 (0xfbc1ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 13 06:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e639157c68138d81c87c8843f97dd82dfe202d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bc:e5:24:b8:17:b3:42:d3:27:4a:4a:56:23:
49:be:70:e3:09:40:69:91:aa:71:62:49:87:ad:d4:
93:ad:64:40:5d:58:ac:c0:ea:28:a2:c0:04:ec:ea:
85:31:47:0b:ab:3b:ce:e9:56:1b:e0:67:0a:5c:e7:
70:07:84:30:93:6b:d7:a0:b2:45:f5:ba:34:36:49:
c9:38:29:ca:94:35:b6:9a:5d:8d:2b:49:50:e0:06:
a4:3d:15:29:78:d3:65:7d:bb:43:c4:62:b2:68:95:
38:89:9c:f7:9d:c5:9e:a9:8f:1a:0d:f1:2b:f9:cb:
c9:58:df:3b:88:37:88:87:90:99:9d:b0:e3:d2:e0:
e7:7a:e0:1e:a3:7e:67:01:2e:37:04:94:c9:30:71:
1d:45:43:eb:8e:fa:8d:70:8b:83:7a:bf:7c:59:ee:
11:0c:24:36:f5:f9:8b:02:6a:f6:5b:64:a1:0d:48:
5e:4b:36:1e:f5:d2:08:99:5c:e1:ac:16:ab:b4:b5:
d9:63:b3:e6:41:58:c7:5d:65:81:34:6b:30:7f:72:
ba:e2:a1:54:a4:0d:76:cc:e4:cb:1c:6f:17:7c:ad:
3e:b8:a6:26:42:52:ba:3e:8f:2d:b4:44:db:9e:d2:
ca:c5:c9:f7:d2:86:de:95:bd:f0:32:8c:09:f2:f5:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:39:15:7C:68:13:8D:81:C8:7C:88:43:F9:7D:D8:2D:FE:20:2D:05
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/5jkVfGgTjYHIfIhD-X3YLf4gLQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.164.0/23
Signature Algorithm: sha256WithRSAEncryption
70:29:e9:1a:cd:e4:89:83:a8:ea:b6:06:54:ee:bf:02:a0:d1:
bb:6c:12:a8:87:b7:31:df:bc:0d:d9:33:db:ee:c4:c9:28:e5:
b8:a7:2d:0d:c4:49:5a:e2:a6:87:be:33:5e:e1:64:72:54:9f:
d4:74:9b:05:fd:ed:92:e4:03:d8:6a:0c:df:27:f7:fe:a4:65:
15:02:01:62:e0:8c:60:29:9a:93:4d:5b:a6:78:ff:df:49:e4:
08:7a:3e:02:a9:0e:29:4a:a8:99:b1:d9:93:15:0d:0c:aa:83:
3f:61:97:d5:d7:4c:35:34:7b:02:17:a6:cf:9a:9f:78:99:04:
64:a9:37:04:b8:95:ac:59:74:c3:06:2b:17:b2:5b:5e:37:69:
f3:86:bd:b7:7a:c7:ac:14:28:a2:d1:97:92:08:9a:e5:95:99:
da:04:f7:bb:05:e1:90:0d:94:99:a8:bd:60:58:6a:64:84:e2:
b7:1a:b8:01:c0:ba:23:55:12:9c:87:32:2d:7a:96:6b:b3:56:
46:0f:88:54:ba:75:a3:37:39:bd:14:07:7f:a0:19:40:9e:c2:
35:67:ee:fb:8f:88:65:03:15:ac:8e:7d:71:1c:58:d2:22:8f:
1c:b8:31:f7:18:66:18:11:69:9a:f6:11:47:9b:e5:78:16:d4:
88:52:5e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:55 2023 by rpki-client on console-fra.rpki-client.org