Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/hleEm5SY4zC0lvNCQZ82oVwbiG4.roa
File: hleEm5SY4zC0lvNCQZ82oVwbiG4.roa (raw, json)
Hash identifier: 2GK9IvyOJk1mInF/nIQTrDHfkagPlgkIoAtq2xmcuS8=
Subject key identifier: 86:57:84:9B:94:98:E3:30:B4:96:F3:42:41:9F:36:A1:5C:1B:88:6E
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 05C0ACA8
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/hleEm5SY4zC0lvNCQZ82oVwbiG4.roa
Signing time: Sat 01 Jan 2022 15:02:40 +0000
ROA not before: Sat 01 Jan 2022 15:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.150.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96513192 (0x5c0aca8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Jan 1 15:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8657849b9498e330b496f342419f36a15c1b886e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:33:bf:75:ad:b0:fc:9f:ec:48:8d:f2:c7:7b:
94:a9:76:7d:59:0a:9e:0c:ca:aa:fe:c1:1c:9a:e0:
84:93:f0:cf:d6:7d:13:8f:f6:5b:9f:03:c0:97:fc:
f3:a8:65:1e:95:20:d7:16:1b:15:a1:87:04:56:88:
a7:e2:be:fe:82:96:d9:b2:18:84:13:3e:e6:5d:6d:
93:85:d2:a0:59:8a:07:e0:e3:23:dc:f8:e5:f2:54:
ed:74:8b:24:68:7d:ff:08:c3:75:e5:44:fb:3c:7e:
f9:54:20:0f:5a:02:39:12:48:2f:d1:f4:14:e5:b4:
eb:a9:5f:bc:4e:d8:41:bc:5a:41:2e:a3:c6:41:ca:
4a:fe:97:07:29:62:55:3e:e3:60:9a:ff:f8:7e:08:
d4:89:6e:c8:bb:5f:a8:41:89:39:a2:ce:88:0e:46:
65:88:3a:09:fc:32:7c:c6:a6:d6:5a:47:e9:fc:78:
73:68:9b:ed:08:29:06:fc:77:46:08:be:76:70:e6:
20:f3:7b:78:1b:4f:ad:bb:33:f5:58:90:ea:9f:45:
33:f3:e5:5b:37:b7:ec:c7:80:fc:48:70:ac:31:8a:
d6:cb:40:de:d7:b0:f3:e4:10:f2:a6:7f:24:3a:d1:
59:f1:9e:a3:d4:06:7b:ed:6f:b3:39:0c:bc:03:37:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:57:84:9B:94:98:E3:30:B4:96:F3:42:41:9F:36:A1:5C:1B:88:6E
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/hleEm5SY4zC0lvNCQZ82oVwbiG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:5d:be:06:25:42:99:49:c9:c0:ab:3d:fc:54:1b:96:c5:b0:
a3:b9:6f:29:7f:26:c1:2c:25:33:2d:f3:dd:d9:0b:9a:48:b2:
8c:6c:e7:cf:ae:47:b4:aa:8a:bb:be:f7:88:0c:bc:cb:81:a8:
a7:e4:60:1b:a3:f0:45:18:4e:5e:55:a6:e2:2f:da:65:26:9a:
b2:a8:c5:6e:7f:58:a8:1e:17:6b:ea:92:6b:ac:88:91:25:05:
7c:5f:e1:47:6c:2f:9e:32:02:21:dc:30:00:06:bb:a9:35:72:
42:08:76:80:8c:32:37:6b:0e:e4:fd:a0:05:78:cb:f9:97:d3:
56:d7:60:dc:39:89:e8:52:1d:4d:2b:04:9c:e3:63:96:2b:c1:
94:7d:09:7d:f1:ec:33:42:e1:5b:96:1c:a1:d8:d6:7f:91:e7:
40:93:3b:96:5e:e1:6a:b4:c3:44:d8:ad:d6:10:6c:b8:9d:fb:
78:53:f5:fc:cf:df:a0:15:b0:60:87:06:af:05:18:02:b8:5e:
17:92:fa:4e:86:97:99:27:e7:3b:1c:e7:b0:c4:0c:c2:60:36:
eb:10:32:68:b9:40:fc:9c:77:7f:88:3a:96:ef:94:d2:0d:46:
54:25:4f:bf:6c:29:ee:a0:e0:c1:09:26:be:13:50:a4:89:48:
3f:3f:35:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org