Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uzaevph3HcSOjVhxHIyqZCSyXI.roa
File: 5Uzaevph3HcSOjVhxHIyqZCSyXI.roa (raw, json)
Hash identifier: If7ephF7fjXsuvjrn/UQuPHPOTOcndNJLHe2srmHsJA=
Subject key identifier: E5:4C:DA:7A:FA:61:DC:77:12:3A:35:61:C4:72:32:A9:90:92:C9:72
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CB84280
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uzaevph3HcSOjVhxHIyqZCSyXI.roa
Signing time: Fri 01 Apr 2022 08:53:10 +0000
ROA not before: Fri 01 Apr 2022 08:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53356
IP address blocks: 194.64.160.0/20 maxlen: 22
194.233.32.0/20 maxlen: 22
195.179.80.0/20 maxlen: 22
194.195.204.0/22 maxlen: 22
194.195.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213402240 (0xcb84280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 1 08:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e54cda7afa61dc77123a3561c47232a99092c972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f6:40:2f:f7:fc:75:59:dd:43:22:6b:f6:03:
3b:98:08:1a:dc:3b:0f:0e:c8:59:da:13:12:04:0e:
2c:93:93:68:b7:cd:ed:89:59:25:e3:8a:ca:be:12:
24:03:30:5a:15:ed:c9:64:1b:bf:74:09:c4:da:ae:
20:67:5d:33:a0:13:23:92:db:36:08:40:27:84:31:
ff:be:cd:ed:18:ed:04:f3:9f:2c:96:c7:84:ba:59:
1f:d0:3f:1e:02:33:84:aa:32:a4:62:35:6a:9a:3f:
11:07:92:bc:07:36:96:90:6c:65:0c:ae:2e:15:25:
a4:d6:25:0d:e7:3d:81:81:5a:c3:9d:5d:8b:4c:7f:
53:e2:bd:4d:01:f5:cb:7f:8a:be:4a:e3:0f:af:81:
4c:3b:b1:e4:d5:66:34:48:35:de:15:ca:9d:76:7b:
c8:07:0d:b9:58:90:8f:6b:d6:92:3c:a6:43:89:e1:
c4:7c:09:3e:2e:47:4e:54:0c:e5:54:56:8b:2b:95:
32:76:b7:d2:c6:e1:29:e8:58:fd:a0:ce:68:e4:69:
51:65:b1:43:76:2f:08:64:27:64:07:64:15:89:7d:
e3:02:b9:ee:a4:58:21:dd:a4:6e:6f:0a:ff:8d:cc:
98:74:ad:63:93:fc:5d:95:5f:89:83:ab:d9:c4:28:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4C:DA:7A:FA:61:DC:77:12:3A:35:61:C4:72:32:A9:90:92:C9:72
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/5Uzaevph3HcSOjVhxHIyqZCSyXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.160.0/20
194.195.200.0/21
194.233.32.0/20
195.179.80.0/20
Signature Algorithm: sha256WithRSAEncryption
20:c3:f6:48:5e:f1:80:63:52:4c:f1:ac:9b:ab:b0:1e:ba:f1:
88:ca:47:a1:25:ce:81:1e:6f:00:9d:71:a2:17:aa:1a:18:98:
fb:d4:9b:4c:2b:5c:37:eb:24:d6:32:d5:ec:80:7b:42:a3:5c:
9b:0b:2d:9d:da:cb:5d:5d:06:00:7c:4f:62:15:7e:61:78:6e:
90:d4:fa:0d:22:c8:4e:d4:f8:12:28:3c:cb:ff:52:f8:ed:b1:
54:5e:94:83:a4:da:4f:ab:7d:0d:b4:c5:50:8e:f8:a9:bd:a2:
38:7a:ac:f1:09:75:d6:2f:76:f7:53:c1:43:d4:aa:9a:a5:e7:
0f:b5:f7:ef:1b:dd:b5:44:f6:6e:4f:63:db:2a:c2:e0:31:b4:
5a:97:eb:0e:bf:47:14:d9:a5:d7:aa:f6:e3:d4:aa:47:fd:65:
65:74:8f:db:7d:db:18:91:6b:77:2c:dc:30:6e:ba:7c:80:f9:
5d:8a:8b:47:58:6e:81:c3:1d:97:f8:b0:2d:aa:8a:56:ff:ab:
a2:6c:64:f5:1e:df:60:a6:51:fd:3f:11:63:9d:64:55:07:14:
a8:0c:4e:7e:ce:98:79:a3:e6:95:34:b3:a0:60:dd:2a:f3:42:
94:45:a3:e7:41:56:6e:01:85:4c:db:69:fe:9c:f8:ea:c7:c1:
c2:7b:00:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org