Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5882IH94mcd7mJoK2AVQwC7LIE4.roa
File: 5882IH94mcd7mJoK2AVQwC7LIE4.roa (raw, json)
Hash identifier: 2eGzNhvPWEQKObVZTfJUsm020ljYZ23H5oR9whrRNZY=
Subject key identifier: E7:CF:36:20:7F:78:99:C7:7B:98:9A:0A:D8:05:50:C0:2E:CB:20:4E
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 0183F6EC684144977A5E95926F2D811839F2
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5882IH94mcd7mJoK2AVQwC7LIE4.roa
Signing time: Thu 20 Oct 2022 19:43:51 +0000
ROA not before: Thu 20 Oct 2022 19:43:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.103.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f6:ec:68:41:44:97:7a:5e:95:92:6f:2d:81:18:39:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Oct 20 19:43:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7cf36207f7899c77b989a0ad80550c02ecb204e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:dd:62:41:82:a2:c8:32:a7:aa:29:8b:1b:19:
b6:cb:6f:95:8a:d8:ca:c9:c6:92:83:1d:16:c3:ae:
0a:c6:c0:76:c4:6f:de:c5:2a:d0:8f:f2:a1:fb:bc:
5a:7d:4b:0d:87:13:fa:8e:67:79:3f:cb:b0:c0:30:
6d:0b:fe:54:2e:14:05:50:ea:93:8d:ee:83:e1:ff:
96:98:7a:bd:5f:26:63:de:80:46:b7:02:ef:ec:c6:
0d:70:ca:dd:33:68:2c:28:a4:9d:e9:ea:63:5e:14:
89:07:62:3c:92:58:f6:e6:fe:82:87:18:82:9a:c3:
00:c6:3c:48:37:b8:9c:0d:37:48:0d:b5:70:ef:01:
cb:5e:b9:5a:08:f8:0f:d6:3d:9a:7e:32:2d:ae:d1:
e8:3c:e3:b4:7d:a9:75:78:02:30:e4:73:5c:9d:96:
24:53:e0:e7:82:cf:50:0e:86:f1:34:21:6d:9b:83:
a8:5f:d4:c7:11:cd:36:42:f8:0f:14:c5:eb:c1:e5:
f5:09:65:d6:85:9d:8f:82:d2:68:3b:d1:24:fe:79:
5b:e4:70:a3:ce:54:b0:96:3b:d0:06:bb:f8:69:e0:
7c:f5:34:78:a6:6c:8e:ec:57:84:ef:b9:a2:ee:3d:
95:95:dd:85:94:c1:94:18:b2:bf:d7:b0:ad:46:60:
02:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CF:36:20:7F:78:99:C7:7B:98:9A:0A:D8:05:50:C0:2E:CB:20:4E
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5882IH94mcd7mJoK2AVQwC7LIE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.5.0/24
Signature Algorithm: sha256WithRSAEncryption
28:05:12:bf:b1:ab:90:14:79:60:05:a5:09:9f:90:55:69:40:
62:d3:b4:54:c7:87:70:9a:67:1a:d9:ba:75:a9:7a:ba:a5:c0:
1d:34:10:e0:70:52:d7:8e:28:48:ce:6d:53:be:67:8f:f5:f0:
d6:d0:21:a4:e3:92:a5:81:f7:de:b5:01:e2:f7:08:3f:50:53:
b9:d9:d7:b5:c5:30:ea:32:45:49:da:40:8e:45:18:2d:cf:4f:
46:97:03:7d:48:7f:8f:87:0d:07:a5:c7:0e:8a:95:25:a5:ed:
37:08:fd:02:27:f5:27:2d:e2:e2:cd:8f:db:ee:d1:81:e0:ee:
a6:6f:81:cd:0d:fd:87:a3:4b:a5:29:76:73:e8:84:3a:32:d3:
d4:6d:86:71:75:28:66:38:47:7f:ba:81:be:29:2b:ce:d8:e5:
42:72:6c:c0:33:4b:af:2f:3c:c5:d6:8a:66:43:22:df:7a:79:
ed:68:f7:b2:6b:ae:30:3c:99:17:fa:41:56:52:28:36:3b:7d:
b2:f2:9b:18:62:c1:6f:61:c5:6b:49:01:fc:9a:c5:cf:3b:e5:
ac:78:7d:5f:76:0f:50:83:e5:53:1e:b3:20:56:fd:57:00:dd:
47:ce:3a:04:41:1c:86:26:7b:8d:f6:84:52:16:76:09:16:ba:
2d:44:80:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org