Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e05ab2-23b8-4af2-b488-d3d03797259d/1/_5ADc1cgg75USstM6Zd8us-lwV0.roa
File: _5ADc1cgg75USstM6Zd8us-lwV0.roa (raw, json)
Hash identifier: lfV6kkijwLz0775AGrcEjXVRiiU5qR2lf+S8LtnviII=
Subject key identifier: FF:90:03:73:57:20:83:BE:54:4A:CB:4C:E9:97:7C:BA:CF:A5:C1:5D
Certificate issuer: /CN=bc69e6902d4e1c41246f4a121b4a5bdecf86e388
Certificate serial: 025DB6
Authority key identifier: BC:69:E6:90:2D:4E:1C:41:24:6F:4A:12:1B:4A:5B:DE:CF:86:E3:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGnmkC1OHEEkb0oSG0pb3s-G44g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e05ab2-23b8-4af2-b488-d3d03797259d/1/_5ADc1cgg75USstM6Zd8us-lwV0.roa
Signing time: Mon 10 Jan 2022 20:07:06 +0000
ROA not before: Mon 10 Jan 2022 20:07:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201746
IP address blocks: 193.5.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155062 (0x25db6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc69e6902d4e1c41246f4a121b4a5bdecf86e388
Validity
Not Before: Jan 10 20:07:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff900373572083be544acb4ce9977cbacfa5c15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:87:81:20:8f:8d:fb:61:36:43:ce:1d:8d:6b:
2c:c0:47:3d:55:5d:91:f8:51:5b:94:94:18:8c:37:
c3:6d:c3:dc:fe:bb:40:1e:bd:b9:e2:b4:94:d7:fc:
0d:84:41:62:11:1d:d5:f7:26:21:e0:e0:7e:41:6a:
d8:6b:4c:fb:cf:82:07:09:6e:b2:52:ab:29:ed:45:
ac:8f:96:48:0b:90:11:a9:57:25:21:1d:cc:0b:79:
9d:df:e7:a0:00:82:5c:0c:a1:00:e9:1f:f3:40:7c:
b1:e6:0f:6f:74:de:75:75:4a:84:be:53:8e:c6:87:
34:b0:5f:28:cb:99:ba:3f:f2:44:90:17:7a:b7:6f:
71:59:ff:b3:76:c2:67:00:05:55:22:d9:40:3b:a6:
fd:9a:01:76:d4:df:ad:02:c0:64:d6:11:a8:13:f2:
fc:02:da:5f:5e:19:dc:26:71:05:a6:6f:d7:cf:81:
ec:d5:df:38:25:cf:f7:c5:31:5a:09:80:87:20:f7:
a4:e8:d1:43:c8:02:54:1f:d3:85:1c:dd:30:d1:1a:
bc:d5:a0:30:e6:b3:70:8b:1e:10:0c:90:47:81:11:
cb:5d:4b:97:3c:7e:e7:e4:2f:21:bf:11:ca:a1:ed:
94:34:b2:cb:0e:c4:11:90:b5:9e:2f:a4:c6:9b:b1:
06:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:90:03:73:57:20:83:BE:54:4A:CB:4C:E9:97:7C:BA:CF:A5:C1:5D
X509v3 Authority Key Identifier:
keyid:BC:69:E6:90:2D:4E:1C:41:24:6F:4A:12:1B:4A:5B:DE:CF:86:E3:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGnmkC1OHEEkb0oSG0pb3s-G44g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e05ab2-23b8-4af2-b488-d3d03797259d/1/_5ADc1cgg75USstM6Zd8us-lwV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e05ab2-23b8-4af2-b488-d3d03797259d/1/vGnmkC1OHEEkb0oSG0pb3s-G44g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.150.0/24
Signature Algorithm: sha256WithRSAEncryption
42:3b:81:ac:ca:d3:48:9a:1c:00:a7:88:ba:c0:23:87:24:80:
60:12:bc:a7:22:70:20:00:ef:b0:05:e0:14:94:ab:ec:6c:ad:
fe:38:af:8d:b5:8a:1b:cd:72:4c:d4:b6:5d:a4:8e:a2:73:3c:
09:87:18:1b:6c:61:17:6f:d9:79:52:2c:07:d5:93:ce:5e:11:
ea:ce:2b:3e:99:73:60:fd:8f:af:8d:03:8f:3d:15:54:42:5c:
a4:76:eb:0f:fc:dc:d9:8c:8b:5f:ab:78:47:0e:df:63:c1:7e:
a7:53:33:e9:34:cd:15:c1:b7:5b:99:5a:c9:9e:85:9a:cf:7c:
53:3a:13:92:29:ac:6f:e0:8f:02:9c:6c:9e:10:73:a3:c8:e2:
b2:43:6e:2d:08:ba:30:2a:d4:c7:f8:bf:c0:9c:65:5c:11:2c:
f8:22:ef:ad:60:3d:f7:78:dc:45:d3:9f:dc:74:09:26:d1:f7:
bc:aa:10:f8:e7:b1:59:36:bc:ea:62:d4:b3:5f:0a:5c:ca:64:
b2:7a:af:bd:b4:8c:bb:83:e0:a5:2c:99:76:75:e1:a9:f5:be:
96:1e:da:b9:43:02:0b:64:0d:70:5a:d5:dc:8c:ff:84:92:ba:
7a:2a:73:33:e9:1c:38:2a:6a:23:23:83:f9:6d:af:35:60:a5:
25:62:0d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-fra.rpki-client.org