Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lsO3YG1rJw393FTQQwK8qxfNOts.roa
File: lsO3YG1rJw393FTQQwK8qxfNOts.roa (raw, json)
Hash identifier: jv3EmCBzsQl9M1iWk/Ccb2AxQHEf5fFRvpKt0pX2NJ8=
Subject key identifier: 96:C3:B7:60:6D:6B:27:0D:FD:DC:54:D0:43:02:BC:AB:17:CD:3A:DB
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4876254A
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lsO3YG1rJw393FTQQwK8qxfNOts.roa
Signing time: Sat 01 Jan 2022 03:00:36 +0000
ROA not before: Sat 01 Jan 2022 03:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200391
IP address blocks: 5.188.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215702346 (0x4876254a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96c3b7606d6b270dfddc54d04302bcab17cd3adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:80:8e:41:d7:da:93:ad:3c:3a:09:51:a4:
70:e8:d5:64:5c:56:8c:55:18:2f:16:ec:35:52:ed:
eb:83:fc:00:59:d1:63:fc:6f:3d:45:7c:a6:07:12:
99:fd:79:33:f8:78:7d:bf:f8:18:c1:4d:31:b8:28:
1a:de:aa:34:d2:44:29:2c:73:97:f2:9d:0f:f1:ac:
14:dc:f2:39:04:23:74:3c:6a:c1:48:0f:b2:f0:0a:
69:61:c4:a9:57:51:e7:ad:68:82:fd:62:4f:b7:7c:
53:6b:a7:2e:0e:69:e9:f7:9b:49:e7:93:3f:95:e0:
da:f7:35:e0:ef:88:bb:4d:54:58:c6:86:3e:5a:c8:
c6:52:6b:b8:03:3d:9f:3a:ef:3f:9c:8e:a4:ca:01:
2e:00:c3:c9:80:29:96:5d:bd:5f:e8:3b:27:00:cc:
3e:6b:9f:27:89:57:ae:9b:8a:56:cc:5b:2f:f3:14:
e8:3e:50:89:30:ac:03:5c:9b:a6:fb:78:07:7f:3e:
28:a2:38:5f:15:6e:20:e5:e9:9a:be:8f:29:2b:e9:
f5:da:fc:d0:01:06:43:82:05:fb:5d:8c:ba:32:ab:
16:16:26:09:e3:98:08:61:73:8e:4b:37:db:3a:bd:
8e:8f:2c:46:c5:e0:a2:d8:d4:57:b0:51:d0:24:1e:
40:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C3:B7:60:6D:6B:27:0D:FD:DC:54:D0:43:02:BC:AB:17:CD:3A:DB
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lsO3YG1rJw393FTQQwK8qxfNOts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.206.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:e9:80:ea:9b:2d:c2:14:8b:f2:19:6e:66:b6:ec:4e:70:0f:
68:83:03:56:73:a6:3e:52:b2:7d:d3:9e:05:42:3e:4c:0d:19:
54:70:0f:b7:48:a1:06:12:8c:c6:0c:b4:c4:8c:13:70:ed:18:
09:fc:b8:ce:de:54:e5:d5:29:1d:cd:4b:33:b6:20:a3:ce:c3:
be:e5:0c:8b:e2:8a:09:24:88:0d:cf:ff:06:6b:11:ae:bc:33:
7e:af:6a:cd:e5:bb:b5:4d:78:2a:5b:f4:72:4d:72:87:07:0c:
98:f4:b4:33:aa:50:e7:a5:30:03:e6:ac:31:32:0b:e7:19:74:
90:7c:41:45:a9:07:61:d3:6b:83:c4:a0:94:f3:ee:7c:ba:79:
b7:0e:21:4f:a6:35:58:d4:29:50:9e:13:44:f2:9c:5a:0e:2c:
8f:58:9c:90:fd:15:06:71:8c:27:b0:f4:53:30:cc:70:69:36:
d7:46:ba:73:e7:75:08:d6:7d:1d:c8:aa:f4:0f:5f:4a:b7:43:
82:bd:76:82:0d:ed:b7:49:af:f6:56:32:65:15:2c:0d:0a:d8:
ff:54:10:91:53:19:54:06:a4:e9:b5:87:7b:03:da:6f:43:bc:
9b:c3:69:be:3d:e7:2d:d0:52:d4:fa:40:18:30:6c:bf:5a:3a:
6c:b7:26:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:44 2023 by rpki-client on console-ams.rpki-client.org