Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/S_5d1m5WJmqUlOXIosLAyocjaUc.roa
File: S_5d1m5WJmqUlOXIosLAyocjaUc.roa (raw, json)
Hash identifier: cq94Cj6y1IP2L5o4KLyuaiieFXK23CHzAA3K1kqoj60=
Subject key identifier: 4B:FE:5D:D6:6E:56:26:6A:94:94:E5:C8:A2:C2:C0:CA:87:23:69:47
Certificate issuer: /CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Certificate serial: 0299AA
Authority key identifier: E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/S_5d1m5WJmqUlOXIosLAyocjaUc.roa
Signing time: Thu 07 Apr 2022 21:50:38 +0000
ROA not before: Thu 07 Apr 2022 21:50:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212608
IP address blocks: 193.163.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170410 (0x299aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e48345aa0cd7026d621c50084f9d9dbb5b9cc2f0
Validity
Not Before: Apr 7 21:50:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bfe5dd66e56266a9494e5c8a2c2c0ca87236947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ac:fb:65:92:45:d8:68:7a:fd:1c:43:5e:07:
c1:fd:cb:c7:1b:fe:05:b9:5d:c8:26:06:d7:14:f3:
61:3a:e7:fd:71:80:84:4b:96:9b:7c:ba:00:d5:69:
26:96:cf:84:12:f1:32:1b:35:51:09:53:fe:8e:1c:
fe:cd:20:cf:e3:54:33:2b:36:e2:28:8a:a7:be:73:
7c:71:89:15:ee:ae:44:cf:f0:de:bc:15:32:85:45:
0a:52:1b:e7:53:a4:e8:89:52:d7:0c:fc:b0:73:ef:
cd:eb:79:9a:20:48:76:35:b7:1f:d4:c4:f7:7b:02:
2f:31:71:0b:9d:61:51:94:7a:e4:6a:37:d6:f0:77:
61:77:76:b4:d1:4b:56:7c:8c:dc:ab:12:68:ba:35:
64:5f:0e:45:ff:23:2b:42:27:1f:6a:84:6c:78:12:
be:70:47:5a:85:88:c8:5e:f0:e0:57:81:00:f8:b0:
49:dd:9f:bf:1b:3b:ae:04:4f:20:a3:7b:d2:64:ab:
1a:2e:07:7a:ce:68:5c:b4:04:a0:d9:73:5f:c0:ec:
52:ec:a3:73:6a:ac:0b:b1:39:38:93:85:2c:a2:62:
d7:60:1d:41:b3:f8:84:fc:c2:a0:16:ac:d5:2d:7e:
62:4d:e9:d8:63:d4:80:96:e1:a7:b3:1b:27:74:0a:
b1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FE:5D:D6:6E:56:26:6A:94:94:E5:C8:A2:C2:C0:CA:87:23:69:47
X509v3 Authority Key Identifier:
keyid:E4:83:45:AA:0C:D7:02:6D:62:1C:50:08:4F:9D:9D:BB:5B:9C:C2:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5INFqgzXAm1iHFAIT52du1ucwvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/S_5d1m5WJmqUlOXIosLAyocjaUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/174f32-1ad1-44f8-8a7f-5fdb9563113c/1/5INFqgzXAm1iHFAIT52du1ucwvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:83:84:3f:a1:9e:38:03:25:da:be:03:c4:e8:41:54:03:7b:
83:6e:14:32:4a:5f:04:1b:96:c1:49:03:8b:bc:15:20:fe:7b:
8a:71:d2:95:e1:cc:2d:16:46:dc:1f:3d:70:74:b6:b5:95:59:
b9:10:7e:9b:68:54:11:07:04:af:c0:af:f0:f5:b3:bd:66:e6:
06:c0:98:b0:9b:4d:0a:5d:40:be:bb:61:14:9f:3e:37:19:17:
b9:94:d4:a5:b2:13:db:f4:03:e8:70:49:4e:98:ff:8d:ef:2d:
a5:d0:85:87:da:d9:27:3c:0b:6f:f7:dd:5a:9c:02:a6:b3:24:
a4:1f:c8:1e:c6:06:b4:3f:6f:9a:bd:8f:0b:b5:ed:0b:e7:7d:
0d:cc:b5:86:ba:59:53:26:08:e3:cd:af:0e:00:df:32:42:1b:
16:a9:10:76:37:3d:25:51:99:91:de:4e:d3:c2:fa:d1:63:09:
6c:e4:52:a2:58:c4:e6:82:a9:22:74:d7:33:b2:46:92:87:8b:
74:44:37:4e:fb:93:59:93:6c:f7:23:1a:06:0c:bc:d3:c5:89:
e7:97:80:0f:e4:cc:dc:d6:fb:57:4b:33:95:e9:ca:01:a0:a6:
ef:ec:84:77:5b:c2:3a:23:cd:69:39:c2:93:d5:d5:f4:23:4f:
e8:fe:e6:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org