Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/5ZXYBV_8gc3VOlwa1bCemc6Pqyo.roa
File: 5ZXYBV_8gc3VOlwa1bCemc6Pqyo.roa (raw, json)
Hash identifier: BTQF4m47I3nsyaXryLEF+wRqrQhY1NYsMhCjglZdNMY=
Subject key identifier: E5:95:D8:05:5F:FC:81:CD:D5:3A:5C:1A:D5:B0:9E:99:CE:8F:AB:2A
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 0183E6118781DB45FCCE7BB9D72409F9EB6C
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/5ZXYBV_8gc3VOlwa1bCemc6Pqyo.roa
Signing time: Mon 17 Oct 2022 13:10:51 +0000
ROA not before: Mon 17 Oct 2022 13:10:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60800
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:11:87:81:db:45:fc:ce:7b:b9:d7:24:09:f9:eb:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Oct 17 13:10:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e595d8055ffc81cdd53a5c1ad5b09e99ce8fab2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:bb:b2:f7:fc:0a:aa:9e:bf:f5:10:60:b3:
46:d1:05:8a:f0:e9:06:45:0a:40:1c:16:a2:3c:97:
c9:57:a8:44:f6:f5:52:70:66:90:ad:69:cd:9e:52:
e5:bc:43:78:5a:b4:38:a3:20:ae:17:82:f3:81:ed:
1b:3e:6d:9a:87:8c:8f:2d:e9:cf:75:2f:f3:33:41:
6f:a2:47:27:54:b3:93:1c:dc:1e:b2:f2:b4:49:0c:
a1:04:f1:12:fe:25:ff:30:bf:75:cf:5d:c2:b9:29:
54:fc:69:fa:fe:c1:ec:53:53:8d:08:eb:18:41:64:
7e:18:6f:4b:4d:ee:9c:59:c5:4c:c4:24:36:1c:d6:
5d:9b:26:b8:c6:5d:e1:0a:ca:95:64:84:c0:2f:91:
74:78:37:15:44:49:16:18:2b:a7:85:ba:6a:d9:46:
d7:91:45:df:ae:b2:7c:ab:7a:86:81:ae:d7:9c:ec:
88:4b:5a:7a:7c:2b:60:ca:4d:7d:f6:e8:74:12:d3:
05:43:d0:12:1d:9a:df:46:6f:fd:33:ad:a6:af:a4:
69:56:e3:4e:f4:0e:6c:ce:a7:84:fa:71:1d:f4:12:
b1:82:51:68:00:ff:17:bd:9c:d2:e3:20:58:5c:f7:
f7:fa:5c:3e:f9:d1:f9:a8:a6:79:05:b7:82:99:7e:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:95:D8:05:5F:FC:81:CD:D5:3A:5C:1A:D5:B0:9E:99:CE:8F:AB:2A
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/5ZXYBV_8gc3VOlwa1bCemc6Pqyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:1c:51:30:37:ff:2f:63:c6:01:a1:4d:da:84:6f:15:6d:04:
74:55:c7:a9:6d:e4:78:86:c1:35:1e:a9:88:e1:07:17:1c:97:
d0:b0:52:6b:13:ee:40:28:f9:26:88:6c:ba:95:6e:8f:3d:b8:
7b:4f:db:de:01:5b:7f:d6:17:ac:c5:46:26:3d:a9:5f:c3:61:
c2:c8:fc:6d:45:1f:ae:83:27:b6:3a:99:9b:98:59:5e:ca:44:
10:e4:e9:12:bf:f7:38:8d:de:30:e6:20:3e:b3:38:3f:2e:da:
8a:18:93:eb:3b:35:6e:72:15:85:4a:c6:53:71:99:78:6f:c6:
47:c7:05:e6:47:bf:3e:4b:ea:62:5d:fd:75:14:46:bf:8b:e4:
70:19:e0:46:60:9e:58:ed:95:ab:26:2f:e3:b4:7f:05:33:7c:
45:10:02:71:db:e2:2a:4d:7c:30:92:12:66:05:88:fa:3e:8a:
c4:cc:fa:ce:2f:bc:8a:ea:7c:b7:a4:39:0b:77:3d:e9:83:2a:
2f:3c:64:fc:4b:4c:20:59:ac:3f:a0:68:e6:3d:fe:2e:84:e3:
38:e6:cd:cb:46:4e:81:3c:58:f2:e7:b5:02:1f:e6:f2:83:56:
ed:bf:05:27:cf:48:f3:01:59:09:64:84:a0:55:b1:7a:0e:2a:
c7:fc:b3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:35 2023 by rpki-client on console-fra.rpki-client.org