Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ra5QSrjtqPgO3QjiOnhPWOznLNY.roa
File: ra5QSrjtqPgO3QjiOnhPWOznLNY.roa (raw, json)
Hash identifier: 1f/UyA8K+ULvfTD+8DxkHf90QkRj7U7gHsTb6RnauyA=
Subject key identifier: AD:AE:50:4A:B8:ED:A8:F8:0E:DD:08:E2:3A:78:4F:58:EC:E7:2C:D6
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 0183C79790A5C4DEEECD5CEF5F5D8FFDC3B4
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ra5QSrjtqPgO3QjiOnhPWOznLNY.roa
Signing time: Tue 11 Oct 2022 15:09:02 +0000
ROA not before: Tue 11 Oct 2022 15:09:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.108.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:97:90:a5:c4:de:ee:cd:5c:ef:5f:5d:8f:fd:c3:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Oct 11 15:09:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adae504ab8eda8f80edd08e23a784f58ece72cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:b0:66:67:b8:46:c1:62:25:83:75:68:8e:
ea:db:0e:c5:4e:f2:41:13:5d:e4:f8:1a:cb:03:19:
c6:38:51:79:d3:bd:12:70:38:bf:41:c2:cd:8d:e9:
f7:58:0f:ee:ea:35:eb:40:ad:31:8e:d2:05:f9:74:
b6:75:cb:29:2a:53:db:be:b4:df:07:04:f5:92:5c:
80:d6:a6:79:32:c4:0a:93:d1:e3:88:39:75:4d:89:
55:8d:d8:5b:11:06:bd:90:56:9c:b1:6b:be:80:8b:
c0:5c:59:4d:4a:59:9f:d9:bd:19:58:e1:1f:40:ed:
4c:c1:8d:63:a2:31:92:e2:66:b4:68:e4:e6:7c:74:
6e:4c:8e:6c:ea:59:28:13:b5:36:de:fb:02:a5:17:
61:25:91:0a:2e:5b:81:de:df:96:00:47:7e:c8:af:
3f:95:77:07:29:d6:4c:6d:d3:12:d6:2b:34:29:ae:
14:df:dc:a2:c8:7e:43:8a:9e:d8:82:19:00:45:c5:
07:83:b8:47:c7:ed:60:ab:00:7d:1f:c4:de:43:f7:
4e:28:ed:37:6f:ad:c2:10:5f:1f:fa:c5:55:b6:cc:
e5:9c:ba:b6:9d:17:f5:68:7e:81:f0:ba:94:46:af:
5d:96:e7:10:10:24:8d:6a:f8:d2:07:29:84:3f:31:
c0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AE:50:4A:B8:ED:A8:F8:0E:DD:08:E2:3A:78:4F:58:EC:E7:2C:D6
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ra5QSrjtqPgO3QjiOnhPWOznLNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:e3:00:f7:46:5c:98:3d:3a:a1:6a:5c:36:f0:24:33:e1:6b:
6e:32:75:03:11:7b:59:f2:cb:87:ea:0b:b5:93:98:0c:72:60:
68:44:0f:69:1b:a1:9c:ce:29:44:f7:ab:73:44:1e:ab:88:e8:
60:aa:21:f3:31:87:b8:c7:cf:aa:fb:4f:65:3a:6a:72:24:f4:
cd:42:fc:14:da:e8:84:35:ea:7b:8c:62:0b:08:14:b9:bf:63:
ee:4c:ca:40:19:3f:56:6d:eb:7c:f5:78:35:e4:13:e3:43:ad:
88:29:f0:42:a7:f7:80:6a:36:a0:ee:24:9e:de:d5:0d:75:75:
6c:68:5a:74:6f:82:1a:f6:91:9d:09:0d:02:5f:9d:4f:5e:29:
40:0d:9f:d2:1b:3c:f9:8b:44:06:0a:34:8f:f8:40:95:b7:6e:
82:9f:2b:07:01:16:ff:e2:5d:96:36:aa:ae:aa:3a:44:a5:53:
3b:ec:3e:c0:55:ee:3f:d0:2d:a6:60:33:60:dd:de:6d:42:3e:
9d:2e:8c:38:09:15:21:7d:ad:34:2a:88:32:8e:5a:6c:65:0d:
ec:17:c8:13:7f:5e:44:3c:f7:9c:46:17:91:bd:e6:5f:fb:49:
c1:97:9f:67:7a:e7:f9:0e:25:09:fd:55:1b:8e:f0:cd:51:66:
f4:a5:b6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org