Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/PR_c3RetE3wPwMTn6w1LNPyIlIc.roa
File: PR_c3RetE3wPwMTn6w1LNPyIlIc.roa (raw, json)
Hash identifier: Ni3cSSBGfgTfRLCHGc5mdWMq2eJqTctV9PDJaf/GHUc=
Subject key identifier: 3D:1F:DC:DD:17:AD:13:7C:0F:C0:C4:E7:EB:0D:4B:34:FC:88:94:87
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4878B89A
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/PR_c3RetE3wPwMTn6w1LNPyIlIc.roa
Signing time: Sat 01 Jan 2022 03:00:38 +0000
ROA not before: Sat 01 Jan 2022 03:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202425
IP address blocks: 5.8.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215871130 (0x4878b89a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d1fdcdd17ad137c0fc0c4e7eb0d4b34fc889487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d2:d4:d8:c4:1e:68:7e:92:8e:89:6a:ba:8d:
62:90:38:ee:33:01:f1:2b:74:26:68:a6:70:f8:6a:
98:ca:0b:99:91:84:09:74:0c:4e:e5:04:48:8c:c8:
88:52:37:69:27:cd:fa:fc:a2:6b:d0:c2:4b:b7:a7:
73:82:c2:17:fd:48:86:f1:6c:a4:a5:3d:a4:5d:0a:
cd:92:b9:07:fc:1d:40:f6:eb:6f:24:5c:94:cf:fb:
7d:d0:76:14:9b:44:2f:25:0b:b4:e1:fa:05:91:4f:
c7:ef:73:aa:85:9d:04:7d:47:fe:88:4f:c4:ad:b6:
5b:24:a2:3a:39:78:5c:62:39:0b:2a:9b:61:af:15:
f7:8d:03:18:fd:60:f3:1f:8f:ce:16:1c:14:f8:c3:
94:13:a5:64:6a:9a:4e:5d:be:5e:4a:1a:c5:b1:97:
2d:2c:90:2f:4b:02:60:10:36:b4:ee:86:43:73:59:
e0:7b:90:fd:82:e2:ba:ae:3e:85:55:c8:59:7b:74:
b6:4f:83:46:9d:55:74:02:f6:b9:de:ac:03:e0:d3:
7b:7a:9e:a7:be:3a:3d:1f:fc:19:b4:68:6e:86:41:
0c:34:7c:83:73:85:e6:6d:b7:15:a0:80:cf:0c:79:
fc:5f:95:08:d7:94:72:eb:54:09:74:42:6a:54:10:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:1F:DC:DD:17:AD:13:7C:0F:C0:C4:E7:EB:0D:4B:34:FC:88:94:87
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/PR_c3RetE3wPwMTn6w1LNPyIlIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.18.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2d:bb:cd:56:93:e6:4f:bc:bf:1c:2d:54:f9:dd:fc:f9:fb:
21:51:0f:67:ed:60:ab:6c:61:7e:00:89:17:8d:3d:81:38:75:
5f:43:f5:75:f3:17:4e:7b:73:64:0b:dc:5d:83:d9:bb:ad:0a:
21:05:dc:5c:99:80:b7:e0:3a:ac:3a:93:56:26:de:1b:a2:8f:
15:20:37:d2:30:c3:7c:b2:6e:90:7f:34:3c:ee:b3:58:32:41:
20:a6:55:d0:36:fd:c2:4d:2a:12:d4:fe:b7:fd:b8:05:53:f1:
40:ee:42:9f:be:13:a0:b0:a3:68:fc:5c:03:d4:72:c1:5a:5a:
19:4d:95:4a:31:47:ad:ba:33:02:7d:49:2b:73:89:82:68:9b:
6f:98:c2:7f:53:3c:0c:c0:71:ec:41:9b:56:2d:8d:46:43:e8:
c8:e9:69:69:e0:3b:40:d6:e1:9c:c4:c2:4f:64:16:b3:fb:a5:
68:f8:a3:68:ea:4b:a0:6f:6c:ad:8f:a4:46:1c:69:5b:cc:55:
68:83:d6:79:1a:da:32:5b:c8:68:07:09:f2:87:ab:ce:6b:22:
0d:00:df:73:e2:b6:55:5e:ae:a2:9c:aa:55:43:bb:93:eb:36:
1b:42:e8:aa:1b:91:32:29:74:ba:7c:5b:21:9f:c9:0b:ff:6f:
52:26:e6:ec
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIESHi4mjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YWFhOGEwYTVmZGZkNjk4ZTEwNGJlMzZhMmFlZWM4MTNhZWNhMDcxMB4XDTIyMDEw
MTAzMDAzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2QxZmRjZGQxN2Fk
MTM3YzBmYzBjNGU3ZWIwZDRiMzRmYzg4OTQ4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJPS1NjEHmh+ko6JarqNYpA47jMB8St0JmimcPhqmMoLmZGE
CXQMTuUESIzIiFI3aSfN+vyia9DCS7enc4LCF/1IhvFspKU9pF0KzZK5B/wdQPbr
byRclM/7fdB2FJtELyULtOH6BZFPx+9zqoWdBH1H/ohPxK22WySiOjl4XGI5Cyqb
Ya8V940DGP1g8x+PzhYcFPjDlBOlZGqaTl2+XkoaxbGXLSyQL0sCYBA2tO6GQ3NZ
4HuQ/YLiuq4+hVXIWXt0tk+DRp1VdAL2ud6sA+DTe3qep746PR/8GbRoboZBDDR8
g3OF5m23FaCAzwx5/F+VCNeUcutUCXRCalQQqmsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ9H9zdF60TfA/AxOfrDUs0/IiUhzAfBgNVHSMEGDAWgBTqqooKX9/WmOEE
vjairuyBOuygcTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZxcUtDbF9mMXBqaEJMNDJvcTdzZ1Ryc29IRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWMvMjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8x
L1BSX2MzUmV0RTN3UHdNVG42dzFMTlB5SWxJYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMv
MjkzMmRmLWE0YmQtNGFmNS1hNGQ0LTg5ZDA5MjQwYzQzYi8xLzZxcUtDbF9mMXBq
aEJMNDJvcTdzZ1Ryc29IRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAUIEjANBgkqhkiG9w0BAQsFAAOC
AQEARS27zVaT5k+8vxwtVPnd/Pn7IVEPZ+1gq2xhfgCJF409gTh1X0P1dfMXTntz
ZAvcXYPZu60KIQXcXJmAt+A6rDqTVibeG6KPFSA30jDDfLJukH80PO6zWDJBIKZV
0Db9wk0qEtT+t/24BVPxQO5Cn74ToLCjaPxcA9RywVpaGU2VSjFHrbozAn1JK3OJ
gmibb5jCf1M8DMBx7EGbVi2NRkPoyOlpaeA7QNbhnMTCT2QWs/ulaPijaOpLoG9s
rY+kRhxpW8xVaIPWeRraMlvIaAcJ8oerzmsiDQDfc+K2VV6uopyqVUO7k+s2G0Lo
qhuRMil0unxbIZ/JC/9vUibm7A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org