Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/XdVbIiERCOOS9PqphWvI5DJF6Ns.roa
File: XdVbIiERCOOS9PqphWvI5DJF6Ns.roa (raw, json)
Hash identifier: w/vtrDLxuKxzGaRiY3YgtbTpBVlyMuLoUeoxqg5Xv8M=
Subject key identifier: 5D:D5:5B:22:21:11:08:E3:92:F4:FA:A9:85:6B:C8:E4:32:45:E8:DB
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 02AAAE89
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/XdVbIiERCOOS9PqphWvI5DJF6Ns.roa
Signing time: Sat 01 Jan 2022 15:55:59 +0000
ROA not before: Sat 01 Jan 2022 15:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8255
IP address blocks: 193.57.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44740233 (0x2aaae89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jan 1 15:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dd55b22211108e392f4faa9856bc8e43245e8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:51:27:43:d6:34:5c:fd:23:93:5d:4d:6d:65:
7e:25:21:b3:3d:47:b9:fd:62:c3:4e:ec:a5:5e:c4:
9b:09:36:7a:11:51:9d:54:29:5d:ba:99:78:4f:83:
40:46:87:45:64:59:20:06:41:62:9d:2d:ac:4f:a5:
9c:69:51:33:0e:f7:87:12:e5:c2:57:d0:cc:c7:09:
e7:43:3e:7e:21:7b:38:82:07:c3:1d:6c:19:8f:23:
eb:de:0a:59:0c:e3:73:8e:12:8e:c0:25:7b:93:bc:
be:17:12:5a:ab:4e:97:69:c1:cd:be:0c:65:51:e0:
63:b0:45:51:22:c5:15:32:84:ca:be:5f:2d:a6:ec:
c5:8a:f6:62:b7:12:94:1b:b3:f6:aa:4a:a9:0e:72:
40:ae:b7:df:a8:1d:eb:5a:e6:ba:b6:98:b0:c8:7e:
ca:ac:7b:38:84:7d:c3:88:9c:df:66:b4:07:d7:db:
1b:a2:8e:79:54:bc:3b:d5:1c:fe:ee:e7:a2:2b:01:
e9:1b:20:3d:f9:ff:e1:d9:31:e9:f6:d0:0b:ef:d2:
1b:ad:4a:4b:bd:a5:db:a0:3c:f8:c5:6b:9f:40:c0:
0c:b8:cb:a9:bb:ce:57:26:7e:d8:02:8f:46:58:dd:
8b:9e:20:b3:5b:e6:52:bf:52:13:bd:cf:dc:08:c5:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D5:5B:22:21:11:08:E3:92:F4:FA:A9:85:6B:C8:E4:32:45:E8:DB
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/XdVbIiERCOOS9PqphWvI5DJF6Ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.225.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:69:38:22:44:d6:3e:29:44:8f:0e:79:52:dd:f2:f4:a9:bc:
8a:55:ea:97:e6:2f:3f:5f:77:4c:b5:e0:e3:be:d0:e7:73:d8:
18:55:9b:86:23:1e:ab:7d:a2:53:41:d9:0d:11:d8:e6:e9:a3:
ce:4d:d7:44:24:00:3d:42:54:19:aa:d9:f9:93:ad:4c:ae:38:
51:82:1b:4a:2b:41:a6:fe:1c:54:7b:00:c1:6a:53:48:6d:b7:
f5:e7:c7:36:71:0c:6d:42:d1:c4:87:91:9d:1a:d2:f3:d3:4a:
a5:65:28:b1:8a:5f:dc:3f:fc:6a:44:c3:aa:86:cd:af:39:8a:
98:95:be:d7:ff:ef:c8:cf:1a:d5:da:e9:20:42:94:25:4c:2f:
e5:31:de:06:89:0e:01:09:93:50:e6:3d:60:82:d5:d9:6a:c3:
b3:48:4f:5a:89:cb:28:7e:32:00:e2:21:ef:67:bd:44:41:c9:
b5:a5:83:77:08:96:52:30:fa:fb:2b:3c:f6:99:32:d7:52:8e:
cc:8c:40:38:8c:2e:b3:96:fe:d1:98:1d:65:6a:7c:24:d7:1c:
2c:86:c5:60:eb:e0:6b:7e:80:5f:31:40:7b:ef:fa:90:03:68:
5d:d0:27:00:fd:95:09:d7:55:a9:8c:54:af:09:0d:93:13:a2:
5b:e5:40:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:14 2024 by rpki-client on console-fra.rpki-client.org