Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/84pppv2vvSTDSoIsgK8Q5O_HGyQ.roa
File: 84pppv2vvSTDSoIsgK8Q5O_HGyQ.roa (raw, json)
Hash identifier: pXT83tBGIW5hy2lYXnHOAYV2Pn6M0g0PoeN/IDR1IXE=
Subject key identifier: F3:8A:69:A6:FD:AF:BD:24:C3:4A:82:2C:80:AF:10:E4:EF:C7:1B:24
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A5296DD
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/84pppv2vvSTDSoIsgK8Q5O_HGyQ.roa
Signing time: Sat 01 Jan 2022 14:56:27 +0000
ROA not before: Sat 01 Jan 2022 14:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59797
IP address blocks: 5.160.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978491101 (0x3a5296dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f38a69a6fdafbd24c34a822c80af10e4efc71b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:56:e4:5c:a9:09:d0:4e:ed:04:8d:43:95:
b7:ac:40:e7:2c:6b:72:aa:5e:26:15:80:21:69:50:
bc:ed:ba:71:3f:aa:0c:e5:38:2b:2d:a1:43:4d:2a:
2c:59:be:76:31:9a:79:5f:ce:cc:59:4e:42:30:96:
5b:74:d5:c1:ec:24:b2:8d:95:05:11:d6:04:ab:b1:
f2:cf:8e:41:01:89:be:5d:42:44:4a:bf:15:b2:b4:
48:45:b5:6f:65:86:30:50:9c:78:38:cc:5c:5e:d1:
0f:ba:f7:19:6e:03:f5:56:84:b5:8d:27:1a:cc:07:
56:9f:e9:82:56:cf:5a:ec:9b:c7:f8:99:fd:20:2d:
97:eb:38:94:42:7e:65:15:d6:4c:ba:10:16:b1:86:
0c:b7:fb:aa:e9:5d:56:04:a6:62:34:eb:c3:1e:07:
eb:04:e4:68:35:d0:15:74:e6:7f:51:d2:25:87:f6:
50:d8:8d:5e:9e:05:71:65:d5:01:45:cd:88:4e:22:
d8:bc:2c:3c:2a:37:61:b5:50:f2:f7:71:50:76:85:
db:77:91:be:83:ed:c5:c8:b1:71:27:72:35:82:5a:
ad:f1:23:b0:e7:fe:26:cc:34:84:2b:5e:67:57:e1:
e8:de:7c:8f:4f:f8:b4:16:b5:92:ce:8b:b5:6c:7b:
c1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8A:69:A6:FD:AF:BD:24:C3:4A:82:2C:80:AF:10:E4:EF:C7:1B:24
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/84pppv2vvSTDSoIsgK8Q5O_HGyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.194.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:25:36:14:d5:fa:f6:dc:7d:8b:c2:d2:cc:2b:3f:f7:72:9b:
5e:4f:c4:85:48:ba:97:c4:03:d0:d4:53:d3:9e:f0:ab:c7:e4:
28:de:4a:a4:02:e7:c6:46:c5:10:5e:9e:28:89:00:ac:37:2e:
85:e8:32:06:d4:a9:5d:fc:c1:8e:b0:a8:7d:86:b3:d8:ed:b3:
af:da:00:99:be:89:84:d3:e7:01:54:fe:b9:6c:75:ff:45:e9:
3c:95:9a:39:a5:05:8f:44:a0:d7:cf:2f:53:a9:42:26:f3:24:
bc:72:32:46:bd:70:7b:57:67:b7:b3:29:b4:70:58:ed:51:e7:
71:51:8b:83:1d:32:34:1f:4f:0d:a6:12:2d:65:eb:e8:f4:48:
80:e1:87:55:6f:a9:64:21:a1:7b:5a:72:63:d9:52:60:51:05:
51:1a:77:f8:58:3e:c0:90:8c:16:5e:7a:5d:5c:4b:14:36:f5:
4a:0d:46:92:29:d2:67:ad:fd:f4:dd:30:c7:4a:d1:8f:54:36:
0b:9b:4e:1e:88:fd:c6:cd:67:55:5f:4c:69:0d:3f:e4:a6:e5:
2c:0f:5f:bd:16:f8:16:48:6e:77:d9:95:ea:55:cd:e0:36:d3:
e8:f7:01:37:c6:2f:d3:92:cf:7b:c7:d3:c5:59:9d:99:54:16:
2c:34:ed:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:19 2023 by rpki-client on console-fra.rpki-client.org