Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5GB61G211mYcGrmz3HgUOeS3nCU.roa
File: 5GB61G211mYcGrmz3HgUOeS3nCU.roa (raw, json)
Hash identifier: uRHQeThmuQYxEyCymCcx8F0MXUSwaDAWYCkLwEkiaT8=
Subject key identifier: E4:60:7A:D4:6D:B5:D6:66:1C:1A:B9:B3:DC:78:14:39:E4:B7:9C:25
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04332D7F
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5GB61G211mYcGrmz3HgUOeS3nCU.roa
Signing time: Sat 01 Jan 2022 12:05:01 +0000
ROA not before: Sat 01 Jan 2022 12:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203163
IP address blocks: 193.233.155.0/24 maxlen: 24
193.233.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70462847 (0x4332d7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4607ad46db5d6661c1ab9b3dc781439e4b79c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:09:34:f9:84:e3:98:90:dd:69:fc:ea:51:6c:
45:f8:dc:9c:b2:ac:07:9a:f1:af:4d:3b:61:60:c0:
02:c4:86:1c:fa:59:6c:fd:c6:ad:b3:0b:37:c7:df:
33:c9:83:37:87:3a:8f:c6:31:59:ef:79:23:99:fb:
4e:5f:df:59:9b:c9:3a:d0:36:f7:e4:06:13:5e:9d:
df:f1:98:65:35:c7:9a:53:8c:15:b7:9c:20:3c:27:
fb:0a:30:f0:22:32:52:35:15:34:fe:54:77:6b:cd:
43:88:09:28:2b:2f:f7:11:eb:dd:c6:af:ca:34:79:
a6:14:a5:39:8b:90:07:8b:1e:8f:a6:1f:7f:23:10:
87:b9:df:77:ba:e7:d4:01:81:ee:b0:13:ec:b6:e5:
fa:30:af:fd:db:5d:cf:84:48:a6:01:4a:53:4b:6d:
3c:f7:0a:92:8c:f4:d2:bf:21:4e:11:5c:89:b7:0e:
8e:cc:41:ef:17:aa:72:68:66:c5:29:66:26:2a:75:
d4:82:fb:1d:7b:55:32:e8:47:e7:b3:12:80:2f:e1:
1e:50:a2:24:da:85:cb:16:74:ea:0d:c2:88:5a:ca:
1f:45:21:34:c3:9c:cc:eb:ac:b9:28:60:a9:de:f3:
dc:9c:2b:bb:67:56:e5:0b:7c:49:9f:81:5a:d2:55:
4a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:60:7A:D4:6D:B5:D6:66:1C:1A:B9:B3:DC:78:14:39:E4:B7:9C:25
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/5GB61G211mYcGrmz3HgUOeS3nCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.155.0-193.233.156.255
Signature Algorithm: sha256WithRSAEncryption
57:bc:e8:fc:f2:01:36:e5:09:22:8f:b9:6d:46:1b:04:3d:45:
7f:fd:55:49:cc:c9:ef:1c:7d:b7:13:3d:72:96:d5:8f:d7:23:
7d:ec:12:9f:aa:b7:58:d8:a1:fe:d5:f5:4d:1a:dd:d1:c4:7a:
a8:dd:f1:5c:84:8d:8b:5d:3d:f9:79:9e:49:70:aa:b2:e8:5f:
40:6c:69:c5:e0:19:73:97:40:20:35:9e:53:c1:7a:28:e2:4b:
09:67:7b:3f:05:f4:b9:d8:47:08:8f:6b:0e:fa:d4:07:27:b5:
26:73:b0:30:9c:f2:fd:23:1c:71:41:fd:d3:e5:bb:af:04:9f:
f5:a2:f2:50:8e:ed:9b:8e:9f:41:5f:01:37:35:95:9c:07:ba:
d6:64:9c:ed:14:81:75:61:be:23:44:07:0d:a1:58:b3:1b:ee:
40:f2:e4:73:98:80:93:d8:88:e7:cf:56:33:d6:25:23:c9:6f:
a0:6e:66:0d:c9:27:ad:16:ab:81:64:4e:3f:81:6b:55:71:4e:
99:7b:91:be:b6:cd:59:45:3c:ad:58:0b:b5:4f:67:28:2f:56:
93:a0:79:8f:06:d3:26:e4:0c:fb:b8:21:82:09:14:ec:17:50:
35:07:4c:4e:48:9a:db:b4:70:da:05:22:79:f3:75:85:0e:76:
67:32:3c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org