Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/33541a-f9ac-475a-b297-88a0e450a17b/1/JjO5X2ziPRvLUDw05y92cZ8lNuk.roa
File: JjO5X2ziPRvLUDw05y92cZ8lNuk.roa (raw, json)
Hash identifier: 4EL5nKvKNuCdz0P+2fiRT3FnMV7gS1mt4Tw8CBDY3Z0=
Subject key identifier: 26:33:B9:5F:6C:E2:3D:1B:CB:50:3C:34:E7:2F:76:71:9F:25:36:E9
Certificate issuer: /CN=3763c7106a5f2640162e7980583eab5bd8008c45
Certificate serial: 02432F3C
Authority key identifier: 37:63:C7:10:6A:5F:26:40:16:2E:79:80:58:3E:AB:5B:D8:00:8C:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PHEGpfJkAWLnmAWD6rW9gAjEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/33541a-f9ac-475a-b297-88a0e450a17b/1/JjO5X2ziPRvLUDw05y92cZ8lNuk.roa
Signing time: Sat 01 Jan 2022 11:02:49 +0000
ROA not before: Sat 01 Jan 2022 11:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.5.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37957436 (0x2432f3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763c7106a5f2640162e7980583eab5bd8008c45
Validity
Not Before: Jan 1 11:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2633b95f6ce23d1bcb503c34e72f76719f2536e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0f:32:6f:4f:89:7e:2c:68:fd:a1:09:ed:38:
a7:ba:d7:c9:0e:fe:f9:ef:ac:b5:56:78:f5:dd:e3:
d7:b6:54:a4:b8:ea:5e:2b:cd:d4:d6:d1:a8:b6:1c:
c3:b6:c4:3b:f7:3e:d7:6f:85:d0:e1:d1:bc:eb:b7:
fa:b7:11:d9:c6:31:cd:72:4c:b4:e0:1e:01:4e:51:
9a:20:5a:5c:4e:0e:0d:8c:94:63:3b:38:c5:37:29:
79:30:bd:7b:50:18:83:00:bb:f8:6f:9d:e3:7b:2b:
c5:11:85:ca:7a:bd:80:33:5e:d6:a7:b0:00:b5:9c:
b8:23:c5:d6:15:d7:f4:69:94:75:0d:fa:d0:d7:6c:
f6:9e:16:f2:68:d3:c0:ff:18:47:23:15:7e:c6:21:
fb:00:bc:ec:e1:ca:31:dc:bb:3f:e1:08:86:f1:00:
50:3b:d6:b2:fd:54:3a:b9:e7:3e:b2:0e:41:c3:f4:
7e:89:9d:c0:97:6e:6c:3d:3f:9e:74:a8:20:d0:84:
89:db:1e:51:41:b5:de:5b:8b:04:9c:d7:e9:77:c2:
7c:38:e0:c5:32:32:55:29:0a:1f:f2:61:0a:b5:f8:
4c:b3:20:05:d3:7b:ce:37:bf:69:70:37:c7:fe:56:
02:0c:94:2b:79:7a:a4:ea:6e:fb:ff:ef:c0:fd:45:
14:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:33:B9:5F:6C:E2:3D:1B:CB:50:3C:34:E7:2F:76:71:9F:25:36:E9
X509v3 Authority Key Identifier:
keyid:37:63:C7:10:6A:5F:26:40:16:2E:79:80:58:3E:AB:5B:D8:00:8C:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PHEGpfJkAWLnmAWD6rW9gAjEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/33541a-f9ac-475a-b297-88a0e450a17b/1/JjO5X2ziPRvLUDw05y92cZ8lNuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/33541a-f9ac-475a-b297-88a0e450a17b/1/N2PHEGpfJkAWLnmAWD6rW9gAjEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d5:4a:7f:c7:88:44:93:40:f5:79:87:f1:15:3e:b0:38:a0:
a0:5b:71:9c:13:00:13:58:8f:fd:84:6f:e8:26:93:3c:2c:34:
d3:93:3f:ed:aa:48:4b:1d:2e:10:5d:32:65:44:f6:6f:8f:88:
39:05:a2:fe:de:97:d5:6b:03:71:a1:ab:03:a3:7f:5a:a1:14:
de:32:39:17:54:88:f3:1e:92:37:8b:48:4d:ea:e6:71:ed:7c:
b9:8b:ac:ab:09:0b:42:a1:41:f9:2a:02:7a:e2:7f:36:7a:47:
1e:b4:2b:c7:39:0c:e3:45:50:74:d8:4c:7b:e3:ea:9d:7f:87:
42:bc:8c:99:94:d4:79:2e:ab:9a:80:5c:c0:5c:c0:8a:f8:66:
29:37:4b:62:50:c4:90:ae:75:4f:98:e3:03:f0:ec:9a:20:7e:
a3:39:6b:a9:60:55:04:67:4f:d1:59:ee:60:38:0d:2a:18:e8:
c8:db:81:c7:35:5a:0c:51:51:d2:58:94:c7:b6:cf:24:6e:1e:
ca:ba:fb:29:5a:7a:ea:6e:b3:60:ed:f0:93:56:d4:bf:d3:fc:
05:02:a6:ae:f5:6e:95:79:42:06:2b:14:35:d2:81:b8:3c:91:
a4:65:60:e3:85:45:1e:6a:00:8b:88:8e:8f:c0:b9:60:7c:fb:
c3:e8:03:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org