Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/R5mAXA527TUsh4xamRHWSeFp8Tg.roa
File: R5mAXA527TUsh4xamRHWSeFp8Tg.roa (raw, json)
Hash identifier: Y9Xw2LcqLwR+bev+2wylsogepfPACXIyVnNumhqQiH0=
Subject key identifier: 47:99:80:5C:0E:76:ED:35:2C:87:8C:5A:99:11:D6:49:E1:69:F1:38
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 01842D6C1EB75A34712919EE5C63F40020AA
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/R5mAXA527TUsh4xamRHWSeFp8Tg.roa
Signing time: Mon 31 Oct 2022 09:42:51 +0000
ROA not before: Mon 31 Oct 2022 09:42:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 193.34.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:6c:1e:b7:5a:34:71:29:19:ee:5c:63:f4:00:20:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Oct 31 09:42:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4799805c0e76ed352c878c5a9911d649e169f138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:be:47:8c:67:48:50:48:0a:2f:67:8d:a3:1e:
00:e0:70:b3:67:70:26:f2:a0:e4:b3:00:de:98:fe:
ea:84:54:f3:52:ad:07:bd:76:4e:9c:dc:91:bf:45:
d4:bf:b5:4c:12:f0:fb:01:6e:e7:32:c3:8a:05:f7:
44:00:d7:28:ef:ee:ce:c6:96:2b:bb:8b:83:13:db:
c2:34:40:70:a6:f7:87:d4:d1:85:7d:c9:79:02:19:
30:cb:5d:d3:68:b5:41:da:43:8c:09:41:fd:97:60:
29:23:a7:1a:65:76:2e:6a:f9:77:1b:1c:18:0b:34:
d8:bc:9b:e1:28:5c:c1:c6:ac:2b:7a:e6:ca:75:45:
5c:61:28:f1:dd:e2:f6:ff:dd:e4:17:9a:d0:82:8a:
f6:9e:e2:03:dc:eb:37:7b:a8:c6:89:5a:f7:75:dc:
d2:85:b4:8c:3a:1c:57:c2:5f:91:6b:8a:8a:a2:0e:
3a:c8:29:b5:5c:6c:41:58:60:7b:48:8f:56:e4:61:
11:89:8a:b3:31:de:ab:72:da:8f:12:2a:bf:6e:89:
11:2f:d1:e8:d8:56:69:10:2c:68:4a:a0:b8:26:d0:
49:e2:1a:20:c7:cb:64:11:1b:92:a4:3c:ad:75:30:
d8:a5:5b:f7:a9:57:a8:3a:59:49:59:74:e1:d2:1f:
37:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:99:80:5C:0E:76:ED:35:2C:87:8C:5A:99:11:D6:49:E1:69:F1:38
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/R5mAXA527TUsh4xamRHWSeFp8Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.48.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:5a:cc:19:34:23:47:7a:fc:38:8b:89:7b:b1:67:e9:28:96:
0a:34:8a:8a:64:52:c0:89:d3:e1:f2:a4:da:d8:51:c8:bf:08:
fe:ed:6c:9a:8a:04:53:20:61:c4:0d:24:d4:34:a0:55:59:2a:
4a:b3:af:91:47:44:3b:d9:6b:8e:0d:a5:71:fc:a7:52:79:97:
86:dd:62:85:3c:53:d7:29:0b:e2:86:f6:04:73:73:d1:aa:b5:
f9:9e:38:82:8b:57:e0:bf:73:06:77:eb:d9:b5:aa:d6:e9:08:
39:cc:a1:c1:c6:85:82:a6:2d:e0:18:f2:92:38:f7:5c:61:7c:
9d:37:8e:96:22:9d:72:07:70:c4:28:e7:e1:db:d7:b4:7a:60:
1a:7d:e6:fb:ac:3f:ff:24:40:c4:ef:0d:01:ce:22:07:90:3f:
ff:d9:49:62:b8:bc:49:2f:34:a1:22:ac:a2:db:b3:a4:7f:13:
27:d7:77:54:b1:58:ac:e2:e4:88:e6:f7:8e:9f:60:40:c7:0e:
7e:9b:68:26:85:7b:97:d8:5b:b9:f9:de:f0:27:e6:ee:34:b8:
19:21:8a:bb:ec:c1:b5:7d:cb:7a:52:04:08:8e:49:05:37:75:
b8:37:e7:c7:bd:55:df:97:85:50:a3:80:f8:99:dc:d2:e6:7b:
58:b8:82:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org