Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/jDWRbG0c5GRTY1XSJZx_ercvvzo.roa
File: jDWRbG0c5GRTY1XSJZx_ercvvzo.roa (raw, json)
Hash identifier: UK7KEpE88Rc7Z0CaUWwkkgSFgz8GG/riHr/sJ8P9bYQ=
Subject key identifier: 8C:35:91:6C:6D:1C:E4:64:53:63:55:D2:25:9C:7F:7A:B7:2F:BF:3A
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 1C7239C4
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/jDWRbG0c5GRTY1XSJZx_ercvvzo.roa
Signing time: Sat 01 Jan 2022 15:03:43 +0000
ROA not before: Sat 01 Jan 2022 15:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51338
IP address blocks: 82.193.81.0/25 maxlen: 32
82.193.81.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477247940 (0x1c7239c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jan 1 15:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c35916c6d1ce464536355d2259c7f7ab72fbf3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f8:25:58:37:0c:09:03:f2:52:5b:5f:50:9e:
db:6a:d4:d2:e9:8b:26:0b:26:d4:2f:ed:1a:84:e2:
74:8e:3f:83:1a:d7:b2:7f:28:f0:47:f7:42:dc:84:
7f:af:5c:e4:87:99:55:ac:27:74:d8:89:94:a2:ee:
2d:c3:60:1e:0e:de:c4:3e:67:bd:de:48:a6:21:c6:
d0:19:71:bb:23:e8:b1:e4:81:44:70:7c:ea:42:75:
79:55:e7:2b:77:ba:3e:04:dd:bf:cc:9f:84:31:2c:
11:99:5d:ad:3c:00:3f:66:14:61:43:5e:83:1a:a2:
87:63:0d:44:76:25:d3:25:0f:95:28:85:94:b5:46:
5e:3f:50:43:09:1b:b1:b8:eb:51:c0:9d:51:ed:9b:
63:36:66:85:a9:6e:3f:90:0c:7e:5e:3b:88:ba:86:
2a:79:2a:f5:e4:e3:d9:01:89:40:75:ea:4f:84:89:
bb:53:c4:31:84:31:e9:ce:1a:41:2d:0b:f9:05:12:
19:ff:09:eb:a3:c6:28:07:a8:c6:3c:4a:e7:d1:fa:
33:de:6a:9d:de:7c:e8:01:ef:5d:98:50:ad:1d:af:
54:76:ab:aa:90:59:64:c0:61:fa:24:91:73:d1:c1:
2f:c0:da:29:6c:99:ae:e8:81:12:80:b7:4c:9f:b2:
8e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:35:91:6C:6D:1C:E4:64:53:63:55:D2:25:9C:7F:7A:B7:2F:BF:3A
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/jDWRbG0c5GRTY1XSJZx_ercvvzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:6e:e1:29:4e:b6:90:5d:df:7f:7d:30:7c:4f:a8:d1:40:f7:
8d:22:19:e6:ef:3b:0d:ca:92:d8:2e:e5:d9:08:9f:07:9c:88:
be:c2:c9:e1:b1:42:bb:8f:c1:d6:ac:dd:5c:b1:a8:fd:54:e5:
98:88:76:d5:5d:f1:24:98:ae:be:64:ad:7e:91:e0:0a:7c:94:
db:81:4c:5f:a9:7f:1e:a2:06:de:44:4b:37:df:b9:cb:fd:bc:
2a:e1:2e:f1:a6:78:6b:50:17:0f:40:d9:e7:4e:53:44:e7:61:
91:51:62:d4:1c:4c:c8:9a:3a:21:4a:3a:12:c8:00:f0:bb:71:
a1:05:92:d6:2d:10:5b:b2:be:7e:9d:7b:04:a4:2a:f6:1d:07:
58:0e:cf:6b:de:bc:7f:e2:70:57:46:ee:55:8b:26:fe:d6:65:
5c:cf:a3:db:b0:21:86:97:ec:bd:10:8a:a2:3a:91:73:d5:63:
4b:7d:57:99:10:e7:56:80:b0:c4:8e:1a:69:3d:bd:8f:54:c0:
16:37:b3:43:94:fb:c4:2b:40:04:d3:b0:ae:ce:07:bf:2b:95:
aa:14:11:8d:8e:88:e1:7d:37:2e:9b:ae:e4:bd:bf:e4:70:1a:
e2:26:ad:64:e0:30:29:23:38:95:ad:e7:76:0c:cf:32:e9:78:
21:27:ed:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:47 2023 by rpki-client on console-ams.rpki-client.org