Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/SrydQrkjeqvOocgkkMpIrCRcFGM.roa
File: SrydQrkjeqvOocgkkMpIrCRcFGM.roa (raw, json)
Hash identifier: yMUOj4XgRoWAYmv/6vNSPtywUAak11BNaVluHEZdwFo=
Subject key identifier: 4A:BC:9D:42:B9:23:7A:AB:CE:A1:C8:24:90:CA:48:AC:24:5C:14:63
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 01841F540677CED912592908D9845F499FBE
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/SrydQrkjeqvOocgkkMpIrCRcFGM.roa
Signing time: Fri 28 Oct 2022 16:01:51 +0000
ROA not before: Fri 28 Oct 2022 16:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 192.94.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1f:54:06:77:ce:d9:12:59:29:08:d9:84:5f:49:9f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Oct 28 16:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4abc9d42b9237aabcea1c82490ca48ac245c1463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d9:de:d2:07:fd:44:8a:42:86:1e:81:9f:5a:
23:f8:ae:05:45:64:33:89:f7:85:75:5f:99:29:63:
aa:9f:20:fa:4f:e0:f2:a3:d8:97:b1:3f:76:5a:f4:
a7:68:ba:ed:f8:4e:2d:77:17:44:0c:a9:8a:b7:77:
b5:4f:13:76:8d:f6:58:e0:82:e0:ab:ec:5f:98:59:
43:6a:eb:d9:cf:a5:5f:a1:a2:b8:b6:9d:cf:56:17:
49:2b:27:75:17:5c:b9:f6:0e:17:d6:68:97:85:bc:
b0:bc:38:09:11:cb:d6:8d:e2:61:00:e7:b0:be:cf:
9b:67:23:95:2b:bf:a2:db:a7:a1:a5:3c:d7:63:37:
d7:e8:9e:dd:bb:d0:0e:ae:e4:04:18:69:7e:af:07:
c8:ec:51:98:21:9a:67:61:d8:fd:05:f8:47:48:c1:
7d:d1:20:28:67:73:c5:ff:6f:2b:45:a2:a5:5b:80:
18:0f:78:17:8c:59:20:61:09:3b:d7:15:f4:a3:d5:
f8:43:55:54:4c:22:c9:c4:d3:ec:e0:7b:94:c2:26:
27:dd:d3:11:d7:7a:26:9d:64:b6:86:72:15:94:0b:
73:83:61:fb:15:27:f7:d3:9e:54:6b:3f:33:c9:b8:
b7:2f:90:c3:78:d4:0d:a0:f1:1a:77:81:79:a6:bc:
42:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BC:9D:42:B9:23:7A:AB:CE:A1:C8:24:90:CA:48:AC:24:5C:14:63
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/SrydQrkjeqvOocgkkMpIrCRcFGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a6:ee:d4:9e:05:09:56:a5:85:a6:eb:c6:33:b5:de:57:1f:
44:ce:37:85:ae:ff:bc:f7:3c:a7:2b:b1:d9:25:13:9f:64:c5:
2e:bf:f1:84:b6:df:23:47:03:a4:8d:88:87:13:73:b0:b8:b3:
bb:17:d7:33:7f:a6:64:c5:36:23:18:6c:a6:fc:51:f9:30:2c:
71:08:6a:ef:21:17:cf:85:56:21:16:8e:59:34:0f:c7:84:9d:
f7:06:e0:9d:6a:75:75:0d:b7:48:88:87:5d:1f:08:c2:bc:80:
43:93:6d:a0:44:f6:79:76:ef:23:c1:a0:b7:21:aa:83:74:08:
3a:50:04:dd:46:28:2b:0c:27:38:60:66:c6:6e:9b:46:78:28:
f1:8b:a5:6b:2a:5e:c3:26:c3:10:22:b5:ed:00:3e:d3:79:48:
91:fc:9d:a9:1c:fe:93:0c:fd:af:18:1f:4a:d9:6f:91:54:26:
83:15:39:3a:9a:60:ac:9f:39:a3:e1:32:33:45:be:eb:2f:6a:
69:a3:76:51:85:79:a3:1a:00:02:a6:65:6d:b2:ab:d3:d2:d6:
20:c9:4e:c9:3d:ca:8a:d5:b0:14:b3:a4:a6:88:39:69:07:57:
18:63:0e:15:90:1b:c9:ef:7c:07:ee:e4:f3:ad:41:09:d9:8a:
6c:54:74:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org