Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/5dq3s9GJFlbpEVtdzYTmDEyE8fU.roa
File: 5dq3s9GJFlbpEVtdzYTmDEyE8fU.roa (raw, json)
Hash identifier: XXBuccIWHB1DEza3voJ13rOVx3Z3pHKw+HQn3W276kA=
Subject key identifier: E5:DA:B7:B3:D1:89:16:56:E9:11:5B:5D:CD:84:E6:0C:4C:84:F1:F5
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 0184CF2BC3E40E632233020B66097B642FF0
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/5dq3s9GJFlbpEVtdzYTmDEyE8fU.roa
Signing time: Thu 01 Dec 2022 19:31:02 +0000
ROA not before: Thu 01 Dec 2022 19:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 80.91.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cf:2b:c3:e4:0e:63:22:33:02:0b:66:09:7b:64:2f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Dec 1 19:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5dab7b3d1891656e9115b5dcd84e60c4c84f1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:9b:15:11:7b:4d:a5:32:81:4d:ac:a6:28:
f3:61:13:a7:0a:f4:7b:92:34:72:47:71:b5:87:df:
49:7f:b6:32:d2:73:78:58:1e:9d:4b:2c:8a:87:94:
2d:b8:51:52:12:fe:07:94:3a:6d:99:c5:69:66:21:
5e:dd:b2:3c:c5:0b:8c:b9:42:4a:f4:70:1b:71:1f:
ae:6f:37:72:83:f4:10:3d:80:59:58:ee:02:f7:da:
ad:ee:ba:04:44:d0:fe:10:db:c0:38:ac:0e:89:be:
aa:01:61:53:05:7a:51:7f:05:b3:c0:73:a8:0b:be:
86:00:2d:8a:b1:ee:63:7c:fc:4d:ad:97:5a:73:a6:
89:ee:85:62:b7:ca:09:6e:ae:34:58:3a:59:12:88:
9b:17:26:01:44:2a:3e:33:ca:47:2c:24:c6:a5:73:
6a:ab:a9:81:68:1e:e2:b3:cb:4e:b5:ab:ba:f6:8f:
b0:0c:99:95:7f:b6:89:77:00:d7:aa:a9:bb:6f:c9:
11:8f:f1:a1:61:45:d2:6c:fc:bd:24:c3:f5:47:9b:
ed:dc:4e:09:2d:cc:e9:fa:da:42:09:43:3e:db:7d:
05:72:db:9e:04:39:10:96:40:3b:c5:ab:b7:39:7b:
45:d4:72:c2:9d:01:e1:2f:aa:f9:c3:01:1c:b6:59:
51:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:DA:B7:B3:D1:89:16:56:E9:11:5B:5D:CD:84:E6:0C:4C:84:F1:F5
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/5dq3s9GJFlbpEVtdzYTmDEyE8fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:70:9e:20:47:c3:99:c9:b7:ed:c9:0b:4a:5a:5f:0a:8b:41:
d7:8c:8f:d0:aa:7d:7e:52:fc:ba:6e:81:bd:32:61:6a:ac:f5:
ab:47:0f:4e:51:8f:3f:3d:db:4b:9b:cc:85:5e:5e:22:bc:ce:
1d:be:1f:12:95:1c:2b:7d:6b:b4:29:8d:64:1e:7e:8a:d2:ff:
35:ec:2a:3f:36:f1:63:59:6e:f8:7d:80:bf:7a:09:d1:4f:93:
53:47:79:d7:d5:01:fe:c3:5c:49:8d:e8:74:c7:d1:dd:bd:9b:
21:54:c6:b5:bb:21:29:30:0e:34:56:3d:30:7e:7a:b5:6b:2e:
52:29:f6:f2:df:54:37:95:ae:0b:99:85:ec:83:b7:53:bd:5a:
f5:ab:3a:7a:9f:6b:f4:ba:39:ba:de:9d:2c:a3:22:10:e2:1b:
d1:ec:97:2a:77:35:a5:b4:c2:e3:28:27:45:cc:c1:9b:bb:a1:
16:80:f0:c7:0d:71:99:ff:d5:3f:b2:c5:ff:d2:db:e8:41:c7:
26:2c:0a:35:6e:cb:9f:24:4e:a1:fc:20:20:5a:91:1e:21:af:
69:82:cf:ab:58:58:9b:ad:9d:1e:f2:b4:37:43:3b:e9:af:cf:
91:d3:83:f5:94:e0:ba:41:e6:77:7c:fe:b3:d3:8e:53:d5:25:
c5:8f:e1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org