Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5QlyBqG4SeZuEUBsc76XiNZFRVE.roa
File: 5QlyBqG4SeZuEUBsc76XiNZFRVE.roa (raw, json)
Hash identifier: p0Q3ZGT330fLSC63QN9WIdyheEfvV+OmO3Ca8a/+1Ek=
Subject key identifier: E5:09:72:06:A1:B8:49:E6:6E:11:40:6C:73:BE:97:88:D6:45:45:51
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 01855EBD4985A81B2BD30E8A0CE5208A2686
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5QlyBqG4SeZuEUBsc76XiNZFRVE.roa
Signing time: Thu 29 Dec 2022 16:35:41 +0000
ROA not before: Thu 29 Dec 2022 16:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.103.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5e:bd:49:85:a8:1b:2b:d3:0e:8a:0c:e5:20:8a:26:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Dec 29 16:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5097206a1b849e66e11406c73be9788d6454551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:86:69:d2:96:ae:4a:3c:77:2f:2d:9a:08:6f:
4e:bd:23:c9:30:71:be:3e:31:ac:dc:30:7a:98:6d:
b2:1c:8b:32:4b:57:71:50:6a:98:3b:c0:a4:8a:b8:
36:d0:6a:ca:da:47:ed:b6:47:86:1d:8d:4e:bd:5a:
09:4d:62:ad:b9:1a:cc:98:44:51:23:24:66:9e:11:
e9:32:6d:3d:4e:72:ab:99:21:39:fc:96:b7:07:a3:
5c:60:a2:28:6e:44:86:d6:be:a4:e3:b1:20:79:b3:
ef:97:b0:fe:5f:e0:e3:6e:37:ea:72:4e:70:c8:d8:
ca:c7:55:b0:c5:80:9a:7c:8e:2b:c5:5b:c3:3e:24:
bf:2a:ac:07:37:a3:2f:6a:1e:6b:5b:61:5e:fd:01:
1a:c0:85:1d:cf:23:18:02:38:25:be:ab:b3:1d:11:
53:7c:1e:4a:12:93:48:0b:f3:0d:0c:1e:10:f3:90:
a6:d6:2f:ee:ff:10:cd:79:d3:45:a1:9b:9c:51:5d:
6d:e8:bd:64:f5:ec:c6:2a:86:89:4f:0a:d9:05:09:
52:6a:2e:c6:ca:d1:e1:f6:62:ed:31:91:f4:35:21:
9f:dd:14:26:20:5c:13:e6:2c:13:26:b5:02:56:f4:
77:7c:41:43:2c:bf:3e:7c:74:91:16:a7:e1:a6:37:
1c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:09:72:06:A1:B8:49:E6:6E:11:40:6C:73:BE:97:88:D6:45:45:51
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/5QlyBqG4SeZuEUBsc76XiNZFRVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c1:e4:b6:0d:5a:72:e7:1d:63:c8:a2:e8:06:d6:93:e0:62:
5c:b2:03:45:fa:3f:25:a0:37:5e:68:db:76:3d:eb:b2:1a:52:
8d:1e:28:20:fc:bf:85:89:c8:c5:fb:c0:1f:8f:a2:32:9f:c6:
e7:78:c4:f6:ac:44:99:66:04:ce:6a:ca:28:36:d7:5a:53:3d:
85:e0:a6:1e:d8:ed:20:e7:d0:28:4c:f4:0f:69:72:3a:3a:8c:
97:77:5a:85:bd:b3:b4:92:ed:d8:09:51:44:7a:62:10:a9:41:
3c:2c:a2:a9:ff:24:6b:21:9c:61:5f:2a:d6:49:4c:40:16:60:
fa:fa:16:2f:4c:82:28:fb:8b:5a:f6:ab:4a:65:33:91:ba:48:
02:c4:f5:dc:4e:79:b7:49:0d:1b:e0:47:b8:7a:d7:6f:c2:2e:
82:e1:00:d9:79:47:28:b3:07:87:bf:9b:94:7f:9f:8c:09:fc:
36:ad:80:f2:33:aa:b9:b7:b6:49:f8:50:25:99:6a:1f:37:31:
ab:be:56:97:0d:e7:f7:b3:11:02:4a:f1:28:12:39:b7:af:20:
bc:52:45:84:f6:a5:0c:bf:d1:11:96:3b:cd:f2:75:79:d5:fc:
0f:a1:0c:32:14:13:13:94:58:70:46:06:dc:69:d6:34:ef:02:
08:00:64:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:23 2023 by rpki-client on console-fra.rpki-client.org