Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5YBDhC5DaWz2yyFyVY7RJ6htJSg.roa
File: 5YBDhC5DaWz2yyFyVY7RJ6htJSg.roa (raw, json)
Hash identifier: HotXJJ1+6++QDU5fj+/Jga/Y5aW9X2EZZrqi1apCWk4=
Subject key identifier: E5:80:43:84:2E:43:69:6C:F6:CB:21:72:55:8E:D1:27:A8:6D:25:28
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C8D81DD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5YBDhC5DaWz2yyFyVY7RJ6htJSg.roa
Signing time: Sat 01 Jan 2022 01:02:52 +0000
ROA not before: Sat 01 Jan 2022 01:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209274
IP address blocks: 87.120.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479035869 (0x1c8d81dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e58043842e43696cf6cb2172558ed127a86d2528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:57:9e:e1:26:7a:ce:72:09:4e:0b:39:a1:
85:26:67:8f:33:0a:7a:8e:6a:b3:02:c6:22:a8:e3:
6a:10:31:0e:26:a5:ef:cd:86:96:80:41:cb:8e:88:
83:36:ec:49:e7:d7:ba:ac:92:b7:a4:1f:71:c2:5f:
19:f7:ad:df:b2:b3:e4:38:3f:19:86:4e:70:ab:9d:
d6:1b:63:77:14:29:2c:ee:d5:5f:5f:2f:53:64:4d:
d4:27:ac:78:d5:b5:1c:4c:c7:32:a7:4f:80:70:38:
84:93:af:27:71:db:6b:f1:fd:51:49:07:7f:ba:e2:
d4:b5:0d:f5:84:63:3c:84:0c:64:30:94:c4:70:88:
e9:5d:2f:d5:99:32:04:0a:ba:fc:ad:c1:ca:bf:86:
4e:bf:d5:71:3c:4c:e2:ef:03:f9:b7:b4:ac:22:9d:
77:61:8e:4b:0f:2f:dc:9c:cd:12:22:4f:80:2d:f3:
14:d9:80:22:4e:69:44:05:3a:6e:5d:fd:31:7a:29:
28:e0:2f:8b:3c:54:e1:fa:4f:b0:b5:04:bc:ca:02:
fb:1f:d7:09:1f:45:5f:0d:24:6a:b4:cc:56:16:88:
a5:4c:fe:71:23:d3:e8:e0:1c:1d:b5:ee:1a:50:2d:
f7:af:55:a0:09:cc:8f:40:d6:0f:b1:a3:69:29:5f:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:80:43:84:2E:43:69:6C:F6:CB:21:72:55:8E:D1:27:A8:6D:25:28
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5YBDhC5DaWz2yyFyVY7RJ6htJSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.92.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:2b:25:cf:65:6a:78:48:07:de:0b:99:f7:77:c0:cb:53:b2:
41:12:d5:17:da:9b:f5:22:b7:be:b9:a0:b5:08:cb:af:70:35:
19:da:e2:c5:2d:fe:68:c3:e4:02:78:93:73:49:29:c3:23:03:
02:89:13:57:a1:14:3d:6c:1a:59:7c:3e:78:74:62:48:a3:91:
15:d8:82:cb:4e:8e:7e:a9:a5:dd:6a:64:9b:17:8c:11:7d:c4:
c1:37:5f:74:11:b4:b8:33:66:46:53:9a:20:0a:0b:c3:87:7a:
99:43:69:29:d9:6d:0c:0e:0a:1c:1f:89:22:0f:cd:7d:bb:76:
a2:0b:39:78:26:97:03:60:d9:5f:9c:fd:43:48:dc:ce:58:e8:
96:00:d2:f7:a4:8d:f9:a3:49:4f:3d:7a:e4:3c:9e:a5:eb:db:
bd:34:2f:b3:86:45:f3:41:84:ec:c1:ab:b3:09:22:3e:0c:03:
57:ba:6e:e3:c8:ca:9f:12:65:08:6d:fb:ff:85:69:51:8e:19:
2a:06:11:ef:45:ea:9a:9f:c8:99:a5:0a:5f:0b:cd:f0:7b:5f:
e4:62:19:2d:51:2e:d9:f5:95:7b:f9:c0:2a:bc:6c:d2:70:3e:
0f:84:bb:d7:4b:06:a2:fd:b4:37:ba:9a:04:42:36:f6:11:40:
fa:f3:5c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-ams.rpki-client.org