Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XCrYZuVsMsPlpCdzk-FFS8KcObI.roa
File: XCrYZuVsMsPlpCdzk-FFS8KcObI.roa (raw, json)
Hash identifier: ITt66X1rmLhPqFa/9nwULSBe3pdmZqh3ONpLb23eJeE=
Subject key identifier: 5C:2A:D8:66:E5:6C:32:C3:E5:A4:27:73:93:E1:45:4B:C2:9C:39:B2
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4A0E22F2
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XCrYZuVsMsPlpCdzk-FFS8KcObI.roa
Signing time: Thu 09 Jun 2022 10:17:03 +0000
ROA not before: Thu 09 Jun 2022 10:17:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57246
IP address blocks: 5.188.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1242440434 (0x4a0e22f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jun 9 10:17:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c2ad866e56c32c3e5a4277393e1454bc29c39b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:14:c2:8f:2e:68:42:71:ea:c5:8f:8b:6f:85:
b6:60:ce:2a:f2:ab:c3:ec:03:85:70:e3:de:5d:6c:
a5:c4:ef:46:63:81:4d:93:1c:8e:45:49:f7:0a:86:
a1:f5:83:55:18:34:4a:a1:3f:15:3c:6a:42:77:f3:
8a:c9:4f:d8:ed:dd:d3:8e:64:f1:bc:c1:75:d7:0f:
f5:4e:6b:20:c5:c5:10:c1:ff:a7:b9:18:73:68:da:
50:d3:6e:b8:f9:3c:df:10:fa:19:6d:0a:8e:69:66:
92:1a:5b:a7:75:b7:55:1e:cd:13:48:d0:c5:3e:f1:
f4:4e:35:5a:59:86:21:93:37:af:29:18:c1:18:e2:
5f:f1:6f:68:d1:07:0c:3c:92:a0:1b:c6:62:c8:a6:
bb:04:dd:77:5c:7b:48:3a:00:c9:8a:ac:17:ad:9b:
4d:15:13:eb:e7:e0:45:03:c3:b7:f6:fb:8d:cc:08:
a2:75:5e:c9:97:fe:da:bc:9d:eb:9f:c5:b0:fb:83:
2a:96:00:fd:85:94:ba:01:12:06:7f:cc:4c:9d:8a:
9e:47:8b:00:d6:47:1d:5e:e3:9f:fe:c6:59:1b:5f:
72:b6:9c:6a:ca:07:d2:53:5f:45:9c:4f:ff:94:c9:
8d:82:7b:ce:04:4c:d3:3a:eb:c1:c1:a1:e8:5f:d0:
79:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2A:D8:66:E5:6C:32:C3:E5:A4:27:73:93:E1:45:4B:C2:9C:39:B2
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/XCrYZuVsMsPlpCdzk-FFS8KcObI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.207.0/24
Signature Algorithm: sha256WithRSAEncryption
47:46:30:e0:69:a9:06:3c:3f:2c:28:be:1f:df:5d:de:49:cd:
80:59:cb:95:0e:d0:61:a9:6b:7b:3c:f7:c1:01:4a:bf:62:39:
94:5f:2f:db:8a:b4:3c:a5:a5:60:98:ba:37:81:0d:06:55:1e:
d0:71:4b:bb:fa:33:58:d5:6f:db:fe:29:2f:0c:8c:6e:30:3b:
2f:df:8b:54:62:2d:a0:1f:20:fc:ea:f8:55:8e:58:ab:33:c9:
c1:3e:a8:4e:98:ae:fc:a8:85:a1:0d:6d:51:eb:7f:f0:3f:43:
8a:c6:30:ae:90:a2:83:3d:47:9b:ef:da:38:ed:38:95:94:02:
b6:a3:a6:9c:09:50:66:7d:40:8b:95:39:5f:94:bb:78:3f:9a:
f6:fb:37:b3:3f:e7:05:d0:a7:7f:83:9a:3c:cc:78:57:f4:59:
33:b3:04:3d:59:ba:63:89:0c:dc:11:46:78:34:02:58:7a:39:
bb:6f:c4:27:c4:9c:4e:44:39:82:84:3d:16:c7:fa:65:19:04:
47:44:58:f6:b4:ea:54:bf:4d:27:33:82:15:76:0d:a9:f5:b9:
61:eb:36:ec:9e:03:7c:c6:d2:42:bf:ed:22:06:ed:97:5c:2e:
88:86:57:80:60:18:9e:45:9f:a5:b8:93:34:fa:2a:a3:43:89:
bb:eb:74:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org