Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/4bX5EsBeihf5tcUEdjtsS4UrFJ4.roa
File: 4bX5EsBeihf5tcUEdjtsS4UrFJ4.roa (raw, json)
Hash identifier: HtFdQG0q8bt92BjRUj5ryciu4ARP7HgfsCXSd/FQ9IY=
Subject key identifier: E1:B5:F9:12:C0:5E:8A:17:F9:B5:C5:04:76:3B:6C:4B:85:2B:14:9E
Certificate issuer: /CN=49bd4d28c52c2f12e46a1efbe113241be00ca58f
Certificate serial: 057706B5
Authority key identifier: 49:BD:4D:28:C5:2C:2F:12:E4:6A:1E:FB:E1:13:24:1B:E0:0C:A5:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sb1NKMUsLxLkah774RMkG-AMpY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/4bX5EsBeihf5tcUEdjtsS4UrFJ4.roa
Signing time: Sat 01 Jan 2022 06:53:08 +0000
ROA not before: Sat 01 Jan 2022 06:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20676
IP address blocks: 193.56.174.0/23 maxlen: 24
193.56.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91686581 (0x57706b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49bd4d28c52c2f12e46a1efbe113241be00ca58f
Validity
Not Before: Jan 1 06:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1b5f912c05e8a17f9b5c504763b6c4b852b149e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:39:59:d1:47:27:7c:3b:3e:41:ea:f1:63:69:
fd:54:64:56:1b:87:af:69:c6:ef:1d:27:3d:0f:6e:
d6:d6:a8:78:f3:7f:c4:61:e2:76:6f:3f:61:c3:1d:
4a:6a:8b:56:7e:10:2d:c9:34:a4:8c:cc:85:84:47:
af:54:58:21:6a:4e:37:ae:74:9e:46:93:0a:5e:b9:
7d:b9:17:2d:ec:36:2a:60:98:d4:57:29:70:ec:59:
a6:7e:22:14:81:f4:7e:de:fb:4a:8a:87:e6:56:07:
80:4e:8d:1a:c8:4a:62:99:41:6a:fc:ec:56:62:8a:
ea:f1:18:be:cb:6c:f8:ed:0c:27:21:4c:5e:c5:77:
dc:ef:2c:20:f7:12:e1:c8:42:9a:eb:9d:c6:39:4c:
80:9e:0d:99:3c:d5:2d:9b:41:2d:46:08:bb:d6:91:
a1:0e:d1:f5:a7:af:1d:6b:c0:e4:bd:c5:66:d5:4c:
0e:5b:80:7f:7b:07:b1:0b:1a:be:50:b0:ab:eb:a5:
eb:d6:ff:0e:47:bd:77:de:4a:15:c2:26:24:85:9d:
47:92:d2:1b:6f:65:2b:62:34:77:2f:86:a5:ae:e3:
f9:3e:46:f7:d3:90:aa:5d:2e:0a:85:31:a0:f1:e6:
97:a8:b1:b1:01:fe:da:78:2c:a8:fb:71:92:9b:c7:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B5:F9:12:C0:5E:8A:17:F9:B5:C5:04:76:3B:6C:4B:85:2B:14:9E
X509v3 Authority Key Identifier:
keyid:49:BD:4D:28:C5:2C:2F:12:E4:6A:1E:FB:E1:13:24:1B:E0:0C:A5:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sb1NKMUsLxLkah774RMkG-AMpY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/4bX5EsBeihf5tcUEdjtsS4UrFJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b5af47-9452-4c55-bc2f-5746007cb2a3/1/Sb1NKMUsLxLkah774RMkG-AMpY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.174.0/23
193.56.194.0/23
Signature Algorithm: sha256WithRSAEncryption
13:72:41:f6:6d:f3:eb:0b:cb:06:e7:a2:64:44:74:73:0d:f2:
78:3d:48:53:d6:0f:c1:0a:a2:9c:59:c0:fd:0c:9f:3c:9a:50:
1b:90:ed:03:53:bc:50:1d:15:a0:7c:7d:e0:fe:d5:55:cb:2c:
9a:2b:fa:6d:d4:6b:86:d6:5b:06:48:1a:51:96:e6:c4:4a:40:
ce:d0:73:15:3f:64:10:96:e0:4e:a0:41:d4:da:ab:ca:a1:30:
68:f4:5b:46:cd:a4:4e:c1:55:73:07:d9:d6:9d:9b:76:80:f8:
71:f9:10:4a:f7:ff:36:e4:b8:5b:1f:ba:b3:03:41:be:0a:1c:
b1:d8:93:13:2d:63:40:2f:83:96:60:2b:1a:79:d8:07:97:0e:
75:26:b5:72:7f:3e:82:e6:72:49:69:33:29:b1:62:7d:e7:b3:
68:84:89:e0:29:c0:84:77:35:cf:3b:7a:b0:95:5c:68:a0:23:
ea:dd:85:ea:e0:95:ae:90:8b:a2:62:2f:48:58:f0:28:fd:2b:
a9:41:45:45:ca:f9:d2:33:87:fd:0e:66:5e:2c:4b:0c:70:d4:
2c:21:f1:f9:d5:21:10:bd:5f:cf:d5:ca:ae:c8:2d:8a:e8:cf:
22:5b:0c:a7:af:63:df:ec:da:81:fc:d8:ba:ac:65:c2:41:25:
b1:ba:0d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:35 2024 by rpki-client on console-fra.rpki-client.org