Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/5V_3U7PI5_j7-DYW8FR9NVROm4k.roa
File: 5V_3U7PI5_j7-DYW8FR9NVROm4k.roa (raw, json)
Hash identifier: ecgTbhFppqAH7hij516oeri4RDUnnOTaAK9XOHlP/qE=
Subject key identifier: E5:5F:F7:53:B3:C8:E7:F8:FB:F8:36:16:F0:54:7D:35:54:4E:9B:89
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 0181DD7F1AC24D8F0BE212A212C286124257
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/5V_3U7PI5_j7-DYW8FR9NVROm4k.roa
Signing time: Fri 08 Jul 2022 11:08:23 +0000
ROA not before: Fri 08 Jul 2022 11:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 193.108.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:7f:1a:c2:4d:8f:0b:e2:12:a2:12:c2:86:12:42:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jul 8 11:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e55ff753b3c8e7f8fbf83616f0547d35544e9b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:56:cb:07:d5:19:bc:ef:c8:51:a1:0b:99:b8:
d8:b8:a0:4e:f4:fa:fd:1d:f1:80:ba:9c:9f:2a:af:
67:36:ab:eb:d3:3b:d3:b1:2e:17:f9:c7:29:47:03:
52:d2:52:27:57:e0:95:ef:91:31:a4:70:2e:23:fa:
1d:7c:1a:f2:4e:51:66:be:16:53:50:a2:17:90:23:
76:80:00:00:52:90:84:cd:5d:bd:c9:55:42:2f:43:
9d:d6:3d:82:89:d7:d2:ee:22:1b:b0:d3:da:ea:af:
95:9e:f3:21:5f:36:e8:d7:af:97:89:dc:b6:96:23:
3e:50:9a:43:55:d1:03:6a:d3:6a:41:07:02:c6:08:
b0:78:82:01:67:7f:8c:c4:aa:43:20:b3:1c:66:b8:
31:77:e1:d7:19:60:02:ca:c6:95:0f:db:ba:63:96:
db:e8:7c:71:62:dd:74:f7:67:b0:86:4b:5d:1c:d8:
b6:43:09:ac:5e:fd:e4:69:0e:8d:cc:c1:11:35:1a:
bc:e3:a3:86:1b:46:e3:4d:69:24:0a:81:59:04:41:
b4:9e:d7:c8:da:f5:ff:d2:61:a1:24:e3:ab:29:a7:
2f:19:ae:71:6c:bf:c5:61:27:b5:10:4d:a5:d1:46:
6c:a1:7b:14:c2:cc:27:32:93:9f:2e:45:64:e4:10:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5F:F7:53:B3:C8:E7:F8:FB:F8:36:16:F0:54:7D:35:54:4E:9B:89
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/5V_3U7PI5_j7-DYW8FR9NVROm4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.57.0/24
Signature Algorithm: sha256WithRSAEncryption
90:99:4a:ac:70:d9:8c:7c:c9:e4:60:a3:11:96:cf:00:e4:39:
7a:34:ee:29:fa:b3:26:a6:bd:97:09:35:78:92:39:fd:aa:86:
7e:45:8b:f1:61:ff:9a:ce:36:a7:7e:14:df:9b:15:15:77:89:
89:3a:d8:8c:66:e0:56:af:4a:c5:10:61:62:f0:7d:12:1c:61:
a5:f8:35:a1:c3:c4:88:02:40:ab:10:28:0d:fd:a9:87:a3:01:
af:76:c4:28:9d:36:b4:bb:ef:49:5d:ec:9f:13:f4:93:83:32:
64:02:24:2a:e1:f4:4d:a4:53:ca:1c:c0:a8:07:cd:9e:e9:b3:
f2:4b:39:ef:26:89:1d:36:5e:0f:77:50:9c:5c:82:d5:7e:37:
d8:b3:ef:02:53:59:8b:40:63:f3:71:59:52:ce:1b:fd:29:2f:
66:f0:b5:0b:2e:ce:a5:f8:35:6d:2c:56:59:83:b9:53:e5:63:
e6:29:76:88:06:07:e2:e4:9a:de:08:c6:36:9d:05:10:b2:20:
e0:ba:74:5c:2a:e4:9f:5e:e1:07:12:70:54:26:65:97:51:10:
5c:35:41:87:c5:d6:7e:24:d6:75:ec:8e:ed:22:83:ce:29:af:
38:16:80:49:be:b1:d7:ba:50:26:5d:f8:28:40:7f:00:20:46:
ac:5f:4b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org