Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uk0y_Fe48HQm2mBpF_v8wSfx_4.roa
File: 5Uk0y_Fe48HQm2mBpF_v8wSfx_4.roa (raw, json)
Hash identifier: nYQ9tB5TBJAORdQmZluK97NBciWyJWScjk3QcbE9ljY=
Subject key identifier: E5:49:34:CB:F1:5E:E3:C1:D0:9B:69:81:A4:5F:EF:F3:04:9F:C7:FE
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CCCC503
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uk0y_Fe48HQm2mBpF_v8wSfx_4.roa
Signing time: Thu 07 Apr 2022 10:10:02 +0000
ROA not before: Thu 07 Apr 2022 10:10:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 195.252.168.0/22 maxlen: 24
195.180.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214746371 (0xcccc503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 7 10:10:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e54934cbf15ee3c1d09b6981a45feff3049fc7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:1d:91:99:73:b7:c2:e1:59:a7:e7:c6:91:
d5:7d:f2:9f:8b:b6:2d:0d:70:0f:b2:ad:96:f5:10:
67:90:b6:1f:9c:ef:13:12:a2:06:f3:e2:eb:0a:5e:
1e:d4:ce:23:08:dd:c8:50:91:f6:71:e8:a1:02:17:
7c:01:af:65:9b:be:75:4b:1b:d7:fd:5c:af:b5:6c:
22:93:08:ce:be:b7:a5:25:dd:e8:ef:68:b8:55:09:
6b:b3:04:eb:4f:38:69:5b:fc:f5:e8:6c:75:75:80:
35:e7:e0:5f:2e:ba:2e:c1:75:54:c6:67:21:ec:2a:
c0:84:16:62:ce:7b:3f:9a:2c:a3:fb:fb:26:61:25:
2e:5e:7f:9b:c8:08:57:e0:6f:c9:4d:f9:83:c4:3d:
80:4d:ec:a2:b7:a2:66:1e:39:ee:23:24:db:6a:80:
7f:28:2b:4b:1f:20:03:33:5e:62:2a:6b:3d:57:6b:
08:77:f6:a7:36:36:32:b8:1d:cc:65:c7:f0:d7:3c:
23:f0:49:31:f9:64:a7:98:ce:ac:d0:65:1c:35:4d:
e8:4b:ce:50:a8:0e:5c:66:af:8f:f4:a6:8a:ee:98:
54:b3:ca:1c:bd:59:35:63:15:ec:5c:39:21:45:97:
ec:dd:aa:c8:f4:85:86:22:fd:c8:a4:92:09:b3:29:
3c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:49:34:CB:F1:5E:E3:C1:D0:9B:69:81:A4:5F:EF:F3:04:9F:C7:FE
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uk0y_Fe48HQm2mBpF_v8wSfx_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.184.0/22
195.252.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:35:16:56:88:ba:d1:56:de:5a:c4:c3:01:7d:df:9e:aa:83:
29:2f:2c:52:92:45:c0:b1:f9:be:f9:17:cb:67:05:65:54:fe:
86:34:8f:30:a2:5a:03:d8:6c:85:09:e3:a0:c7:2a:95:c3:5e:
89:f2:f8:14:1a:65:aa:d7:de:40:18:e0:a6:fa:2b:ab:f9:12:
5b:79:c1:f2:56:39:8e:aa:e7:59:06:b6:53:40:90:17:31:ec:
46:c3:28:72:1e:1f:0c:94:c0:62:a7:7b:75:26:ea:9a:8e:0e:
3c:d0:75:18:9a:1d:47:dc:4c:e5:80:e3:e7:d3:29:21:b9:f5:
36:a4:e4:1d:ea:3b:18:f9:8d:bc:15:0b:26:94:2a:d2:93:0c:
8a:a9:e8:93:71:94:b2:0f:f0:4b:a3:3e:bb:3c:cb:3c:52:cd:
63:55:01:b5:78:94:23:b0:c3:12:35:ae:57:e7:43:a5:ef:36:
ed:ca:a8:98:a7:6e:39:ea:96:09:c8:2c:b2:c2:40:91:4f:07:
95:6e:46:40:20:24:7e:88:0d:d6:97:76:0c:4a:55:83:1f:ed:
56:c4:32:42:54:e0:72:a6:c7:91:84:74:35:d1:f3:29:a2:aa:
e6:c6:5d:bc:8c:06:a3:fd:f4:b0:78:a1:5e:d4:73:fe:68:4b:
85:41:7d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org