Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa
File: 5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa (raw, json)
Hash identifier: HV4ohgBCfFS4F5ngAcRyefR7xbBJOBU+/GNam54sFgE=
Subject key identifier: E4:4D:77:BF:27:F5:5B:68:6A:64:D6:21:29:B7:A4:1B:A1:70:E0:EA
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 046ED92D
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa
Signing time: Wed 01 Jun 2022 12:35:21 +0000
ROA not before: Wed 01 Jun 2022 12:35:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140224
IP address blocks: 193.227.121.0/24 maxlen: 24
45.153.8.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74373421 (0x46ed92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jun 1 12:35:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e44d77bf27f55b686a64d62129b7a41ba170e0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1a:06:b7:9a:2c:b2:01:54:fd:54:75:ba:c7:
c7:1f:d0:aa:ed:e0:fd:6c:3b:15:2c:2d:90:20:46:
5e:b2:fd:4f:25:cf:c2:10:04:9d:14:55:21:c1:d1:
84:31:27:ec:47:22:69:dc:46:db:b5:2f:ab:ce:49:
51:10:7b:53:1e:fd:72:bf:2d:54:cf:7c:dc:d1:f1:
a1:7b:0a:3a:b5:b5:6f:52:26:c1:3c:6d:31:6c:8e:
53:a6:99:ed:d4:0c:56:46:d1:55:fe:f8:8c:43:b1:
48:e6:50:83:1a:24:19:7a:11:ef:e4:c2:22:7d:45:
43:60:42:a3:26:36:09:85:9c:c6:14:98:54:49:d8:
f8:01:4b:3d:cb:06:bb:f2:f1:97:26:d4:33:15:1e:
28:0c:50:8e:13:7b:a6:27:47:05:ee:62:63:34:e1:
c2:2f:58:60:65:74:67:3d:57:12:71:d6:f1:02:5f:
df:e9:cb:f5:39:e7:f9:98:34:be:8f:5a:71:f6:b8:
c6:6e:c8:2e:0a:32:24:a6:b8:e8:a3:fa:0c:42:6f:
59:3e:61:4a:34:dc:ac:a4:78:c0:83:53:2a:79:3b:
65:9b:94:b5:3a:bf:a6:d0:eb:c8:93:3b:f2:c1:dc:
f7:70:3e:aa:02:04:b0:11:db:48:74:87:2c:96:36:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4D:77:BF:27:F5:5B:68:6A:64:D6:21:29:B7:A4:1B:A1:70:E0:EA
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.8.0/23
193.227.121.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:8b:e8:26:e2:46:fa:d2:97:ee:05:7c:92:81:e2:eb:25:4d:
2d:1a:77:9f:fa:0b:4b:a2:13:99:d3:db:4e:95:1d:3e:5d:96:
65:df:fb:9f:e3:c3:ab:43:92:89:d2:bd:12:95:9b:73:b9:b8:
13:2f:c5:87:15:43:a0:45:d3:e0:13:c0:72:ed:08:3f:0f:1b:
16:18:c4:58:a8:b7:b5:d6:a7:95:27:9a:6b:86:28:d1:dc:9b:
bf:f0:51:40:62:66:3f:50:37:58:3a:80:ca:d1:dc:9b:5a:31:
6b:78:ef:f1:cd:a5:72:28:cf:66:42:11:b7:af:16:6b:39:39:
ea:d5:18:a0:67:52:ad:f8:bd:f1:7b:93:03:40:3a:8b:0f:f4:
53:db:9b:87:0a:bb:ce:cf:61:45:77:d6:3c:8f:94:27:e2:6c:
d3:43:e2:8a:5f:bb:ae:81:cb:cb:83:0b:b2:43:6f:6c:f8:9e:
dd:10:f8:4c:2a:4e:ac:2e:18:c2:d9:6f:bd:48:38:a5:7d:22:
45:0c:c0:12:02:10:1d:0b:07:24:e5:f3:e5:db:ca:d7:e7:d3:
9d:87:69:89:f0:52:63:d3:ed:1a:49:3b:86:00:01:eb:56:c8:
df:a6:fe:b3:48:f1:07:7b:85:b3:d3:5e:06:8f:3f:33:80:ed:
11:d7:e0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org