Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Roc4d1HK6StMfxq9DSRD8FwYaKI.roa
File: Roc4d1HK6StMfxq9DSRD8FwYaKI.roa (raw, json)
Hash identifier: AjRC8O8YBFRUJtBYhp7CTbFeDzHi974z8D/sXGFauow=
Subject key identifier: 46:87:38:77:51:CA:E9:2B:4C:7F:1A:BD:0D:24:43:F0:5C:18:68:A2
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 08624DA7
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Roc4d1HK6StMfxq9DSRD8FwYaKI.roa
Signing time: Fri 03 Jun 2022 07:18:21 +0000
ROA not before: Fri 03 Jun 2022 07:18:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 5.134.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140660135 (0x8624da7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jun 3 07:18:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4687387751cae92b4c7f1abd0d2443f05c1868a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:a0:48:1d:9b:e2:0b:2a:ab:13:65:3d:60:
ba:d7:6a:39:e1:7c:74:ca:10:9c:6b:0c:38:c5:46:
2a:e8:5f:ea:76:06:8a:02:13:3d:c7:67:64:d6:c2:
0b:4e:d0:0b:2a:15:1d:70:9c:7c:9e:b4:d4:4e:f2:
18:fe:a6:c1:48:2b:58:86:44:1b:0e:c0:fc:f5:4d:
df:3f:75:4e:02:5c:ed:a6:4c:3a:90:52:1f:b1:7b:
11:7d:e1:0a:bc:6b:b0:b9:85:cf:f0:cd:e6:52:3a:
2a:53:de:5f:90:ba:56:3e:1b:14:e1:4b:7b:9a:55:
f3:64:d6:89:61:25:55:3f:fc:85:98:9f:6e:a4:64:
ed:82:df:0e:fc:cf:1e:03:b4:ab:b0:b9:80:be:cc:
51:2f:0b:84:d0:2e:80:9c:2d:20:e2:74:cc:ed:ea:
40:89:0b:ee:5c:d1:90:0f:16:f4:fb:d4:86:b9:43:
20:40:f5:61:6c:0b:b5:49:08:c3:d8:d7:48:25:23:
d6:74:0b:c7:8d:74:9b:59:71:24:9d:e4:15:31:92:
d4:0e:33:5d:a5:03:1d:80:de:bf:35:40:02:40:39:
d8:15:32:55:de:b5:14:9e:c1:a1:4e:88:8b:34:a7:
39:4c:c6:92:9c:7b:27:79:69:28:27:66:66:6e:71:
6b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:87:38:77:51:CA:E9:2B:4C:7F:1A:BD:0D:24:43:F0:5C:18:68:A2
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/Roc4d1HK6StMfxq9DSRD8FwYaKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:50:58:62:e3:d2:d2:82:7d:4d:b1:23:02:68:9b:b6:95:68:
25:41:1f:f6:b5:95:f3:df:e9:52:ca:0d:00:43:5c:8b:98:9c:
fa:2c:be:1f:0e:a6:3d:fe:62:f2:bd:b8:5b:39:c6:9e:73:71:
24:ee:f9:cf:3a:e6:0e:7b:bc:d4:d9:56:aa:fc:80:06:e4:ce:
2e:0b:04:b2:be:78:0a:3d:93:86:e8:d5:57:78:ab:f1:7a:22:
43:aa:b2:69:87:fa:e7:d1:08:38:c7:ce:43:0c:b2:97:bb:33:
52:8b:eb:7e:a2:f8:1c:eb:4f:04:c5:bf:f6:fa:3e:51:9c:d8:
e6:04:c0:59:8c:82:48:95:1e:b6:f6:95:0a:05:f2:c5:29:53:
e7:a2:4d:ab:7d:5e:11:7e:57:12:46:16:c2:41:98:fa:61:7a:
8f:ed:ad:17:9b:81:6f:60:5b:74:c5:c9:22:6d:22:8d:d2:89:
3d:f6:1c:c8:d3:bb:fe:6a:92:9b:26:75:7c:24:8a:45:90:9f:
04:0c:88:a6:c9:5c:0c:91:e5:61:c0:9f:ec:0d:20:82:35:19:
f3:17:a2:ab:15:0f:7b:29:34:e0:ec:1f:14:22:b7:4b:aa:27:
fa:8b:77:14:95:e1:55:dd:48:6c:a5:c5:77:52:40:e1:0c:cb:
fb:aa:2e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org