Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/825a73-a098-4de2-b6ed-f6b9f7a31d81/1/5bzq4zOuA9YxFE2VVUFa78s6ucQ.roa
File: 5bzq4zOuA9YxFE2VVUFa78s6ucQ.roa (raw, json)
Hash identifier: RvwRd7ZJJHT0ypMx1e8ZadJHkct0uHv7y7H9b4Ns0Fw=
Subject key identifier: E5:BC:EA:E3:33:AE:03:D6:31:14:4D:95:55:41:5A:EF:CB:3A:B9:C4
Certificate issuer: /CN=13d35c057bdd5e8eca91a5752c7023bcc326ac2e
Certificate serial: E435D9
Authority key identifier: 13:D3:5C:05:7B:DD:5E:8E:CA:91:A5:75:2C:70:23:BC:C3:26:AC:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9NcBXvdXo7KkaV1LHAjvMMmrC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/825a73-a098-4de2-b6ed-f6b9f7a31d81/1/5bzq4zOuA9YxFE2VVUFa78s6ucQ.roa
Signing time: Sat 01 Jan 2022 12:54:47 +0000
ROA not before: Sat 01 Jan 2022 12:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213005
IP address blocks: 194.26.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14955993 (0xe435d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d35c057bdd5e8eca91a5752c7023bcc326ac2e
Validity
Not Before: Jan 1 12:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5bceae333ae03d631144d9555415aefcb3ab9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:29:81:19:04:f5:99:f1:37:06:05:67:a1:
e8:25:9f:52:aa:12:fd:0b:7b:1c:29:7b:3c:3a:85:
a3:69:4a:82:07:70:fd:e4:b8:17:6d:6f:92:57:a7:
e7:dd:10:fc:fd:e2:c3:4e:04:48:1e:34:b5:89:b8:
c5:d4:8e:2b:28:c2:ed:fa:81:8c:e4:56:9a:fa:16:
32:48:87:99:c3:16:d9:39:de:7a:e1:51:e5:bf:a0:
47:e6:f3:d5:fd:bb:23:96:0f:14:a0:8b:30:34:47:
cf:1e:db:32:b9:cb:0c:d2:53:0f:df:dd:5d:eb:7b:
fc:e8:1b:26:4d:33:66:82:94:00:d9:f9:d2:74:10:
5d:5b:9e:c4:6d:e9:5b:e6:54:7f:d6:1a:5c:34:a5:
78:de:66:9b:cb:6f:66:d3:18:17:e4:13:6a:2b:dc:
c3:1a:fd:d7:c5:3d:9d:7a:6a:96:91:7a:12:db:d2:
46:f2:ec:a2:3a:05:5a:22:ec:f0:65:a3:7d:e8:73:
4a:3f:f5:fd:21:56:f8:41:46:c5:6a:4f:06:56:35:
0f:52:16:d7:d9:7e:aa:a2:b7:47:f3:d0:18:47:07:
e2:d5:05:42:7e:49:e9:0e:79:74:dd:13:f1:ee:df:
fe:60:4e:0c:72:f4:2f:6a:40:ec:3d:65:f9:e6:bc:
a9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BC:EA:E3:33:AE:03:D6:31:14:4D:95:55:41:5A:EF:CB:3A:B9:C4
X509v3 Authority Key Identifier:
keyid:13:D3:5C:05:7B:DD:5E:8E:CA:91:A5:75:2C:70:23:BC:C3:26:AC:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9NcBXvdXo7KkaV1LHAjvMMmrC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/825a73-a098-4de2-b6ed-f6b9f7a31d81/1/5bzq4zOuA9YxFE2VVUFa78s6ucQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/825a73-a098-4de2-b6ed-f6b9f7a31d81/1/E9NcBXvdXo7KkaV1LHAjvMMmrC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.143.0/24
Signature Algorithm: sha256WithRSAEncryption
51:58:b6:bd:b9:6b:55:79:51:d7:a0:d2:00:21:e3:e0:90:0c:
71:27:e6:63:b4:71:1e:17:76:5a:3a:de:95:8b:44:fd:a8:c8:
08:07:aa:b6:77:5d:95:30:04:80:95:d1:46:27:81:17:3a:f5:
a9:a0:94:d0:3c:3f:b6:8a:56:62:0e:9e:cd:ae:a7:49:ef:7e:
96:36:86:3c:ab:4f:1d:e8:bc:4a:77:55:fc:9a:af:c2:2e:5f:
7a:13:e3:ba:d5:6f:9e:10:8b:b3:7c:49:16:4e:0d:b2:ef:bc:
cf:68:24:ba:8e:32:df:fd:a8:b3:a6:9e:92:d9:a1:59:67:ad:
e3:7c:88:f7:6b:0b:e8:09:00:d2:e5:e1:5b:00:7d:b9:ab:e7:
74:09:9c:8d:62:45:b0:56:4e:84:5b:3c:e5:d1:f2:3c:09:b5:
9f:59:a3:ce:fb:8b:25:32:b0:9a:eb:1e:a2:49:28:74:af:42:
3c:a1:c5:6b:c7:f7:33:d7:72:b5:fa:cd:62:8f:20:bd:01:46:
45:b1:ce:1b:91:30:7d:19:3e:fe:cb:de:bf:74:f5:33:82:29:
29:73:d5:3b:bd:62:5e:08:02:61:ec:4a:e3:76:58:ff:14:9a:
57:48:35:95:b5:3d:0e:6e:59:52:41:91:8e:1a:34:89:db:99:
2b:08:4b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:11 2023 by rpki-client on console-ams.rpki-client.org