Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/5S9Giq1VwTdYxxqPlX9jfLgIpbo.roa
File: 5S9Giq1VwTdYxxqPlX9jfLgIpbo.roa (raw, json)
Hash identifier: MRzKIz6je+nsj0/awszMNGGI8AuTX1TGQlzPCjQK8TM=
Subject key identifier: E5:2F:46:8A:AD:55:C1:37:58:C7:1A:8F:95:7F:63:7C:B8:08:A5:BA
Certificate issuer: /CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Certificate serial: 1521C678
Authority key identifier: 4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/5S9Giq1VwTdYxxqPlX9jfLgIpbo.roa
Signing time: Sat 01 Jan 2022 15:57:44 +0000
ROA not before: Sat 01 Jan 2022 15:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63140
IP address blocks: 195.244.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354535032 (0x1521c678)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d7683d6ea539fef1b6b6dbdd74a31d05e5f0a23
Validity
Not Before: Jan 1 15:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e52f468aad55c13758c71a8f957f637cb808a5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8b:c8:c5:cf:d9:e9:49:30:2e:3f:1c:da:de:
8d:69:2e:df:c4:66:ba:b5:7b:2e:d4:3f:54:82:37:
05:c7:39:e5:6c:75:e3:36:f4:31:cf:a9:48:f9:cd:
bf:98:89:c4:0b:bd:3f:7a:f8:2e:34:56:20:64:91:
26:ef:04:f6:ef:fc:4d:c3:de:75:17:fe:43:33:6e:
6d:3d:67:c8:02:2d:ba:08:48:7f:6d:d4:7e:8b:0b:
ab:99:d2:38:58:61:c8:ce:d9:52:63:72:5b:b2:58:
9c:41:f2:37:e0:0a:b5:42:e3:fa:32:c6:ee:6a:0f:
ae:58:1a:a1:65:2f:78:0f:c7:27:f3:bb:27:f9:2c:
5a:d1:87:d0:e6:84:78:dc:7f:87:c9:49:39:ce:bf:
e4:85:ab:ea:97:dc:14:fa:39:f1:7d:e4:6c:0f:71:
ef:cb:ca:c4:a2:9c:26:c8:3e:56:63:16:0f:c3:d0:
51:0b:ee:5e:41:cb:dc:0a:e3:2f:5f:84:c9:98:74:
04:95:b6:7d:d2:7c:40:28:dd:a1:33:9e:a6:4b:c4:
e8:5b:35:a8:74:a4:2e:18:b3:91:58:ee:ab:e4:0a:
18:96:c0:9f:9a:5e:09:5c:cb:d7:17:fc:2e:51:72:
a8:02:24:5c:e7:8a:f7:44:fb:25:75:8d:38:e7:f9:
c3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2F:46:8A:AD:55:C1:37:58:C7:1A:8F:95:7F:63:7C:B8:08:A5:BA
X509v3 Authority Key Identifier:
keyid:4D:76:83:D6:EA:53:9F:EF:1B:6B:6D:BD:D7:4A:31:D0:5E:5F:0A:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXaD1upTn-8ba22910ox0F5fCiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/5S9Giq1VwTdYxxqPlX9jfLgIpbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e5195d-6698-4604-9114-68b3768f50dc/1/TXaD1upTn-8ba22910ox0F5fCiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.30.0/23
Signature Algorithm: sha256WithRSAEncryption
dc:36:c4:3b:be:f3:e5:2b:99:ac:41:3e:a2:c0:7b:f2:73:48:
eb:16:22:03:0b:79:59:6b:5b:33:58:a0:da:48:6e:bf:6d:9a:
96:70:d8:95:59:84:f5:ce:8e:7a:e8:8c:54:6f:04:95:b5:02:
da:be:c6:f6:07:46:4e:59:7a:bd:61:db:5c:1b:64:ac:d6:c1:
7e:37:01:a6:31:be:f1:dc:c4:6a:83:33:09:82:64:e9:20:82:
79:39:f2:01:4b:9a:66:c3:d4:57:84:a6:1f:f8:53:ba:90:a8:
7e:ca:73:23:8e:e1:5b:e3:03:bd:6b:2a:2d:20:1d:87:0e:96:
5d:d8:e1:b1:05:86:16:18:0e:47:60:f2:39:d0:5e:a6:f9:02:
fd:ad:29:cd:bd:71:36:8c:cf:84:88:40:0c:06:6f:f9:a9:48:
a0:cc:8a:14:71:18:da:82:9c:5c:cf:e2:12:c1:04:d3:98:96:
36:1e:b3:49:84:b9:69:cf:f9:2f:b4:24:ea:ca:c6:2d:1d:72:
6f:a5:b1:2d:80:97:43:b1:55:94:37:04:57:db:b0:02:f3:b3:
58:4a:12:06:7e:d4:df:3a:15:68:65:53:99:b4:90:79:95:05:
0a:30:40:37:40:0c:d3:bc:88:f7:17:6c:1f:f3:a7:51:d1:1d:
84:cd:1f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:58 2024 by rpki-client on console-ams.rpki-client.org