Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/5iglTGledMUM9L1UuCzQ83c-bc0.roa
File: 5iglTGledMUM9L1UuCzQ83c-bc0.roa (raw, json)
Hash identifier: KqPNmjEwaTcv77Ug8XXdQm1qD7Ulr6JX2jX8q2PPjsY=
Subject key identifier: E6:28:25:4C:69:5E:74:C5:0C:F4:BD:54:B8:2C:D0:F3:77:3E:6D:CD
Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b
Certificate serial: 0203B162
Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/5iglTGledMUM9L1UuCzQ83c-bc0.roa
Signing time: Sat 01 Jan 2022 05:02:58 +0000
ROA not before: Sat 01 Jan 2022 05:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206813
IP address blocks: 87.253.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33796450 (0x203b162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764928a97be955377013d382c62940e950dd212b
Validity
Not Before: Jan 1 05:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e628254c695e74c50cf4bd54b82cd0f3773e6dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:62:a9:e6:0b:22:a1:38:a9:d0:ef:23:1b:1c:
98:fd:5a:05:2c:af:24:d6:22:d3:d2:c9:0c:4c:1c:
20:8f:f3:ea:36:93:be:e3:f2:5e:40:20:77:16:58:
ea:23:e4:1e:a1:b6:8d:69:86:12:10:af:73:73:9a:
de:4c:1d:87:9a:82:c4:82:5e:07:a3:93:a0:52:7e:
0f:ff:f3:1f:dc:e9:d5:56:4f:4a:b1:e0:49:ae:47:
a1:ab:09:d0:34:15:34:b7:92:08:97:fc:1d:ab:1d:
90:24:38:b3:db:38:39:99:65:ab:79:ba:58:53:e8:
58:96:9a:2a:66:d2:21:66:d6:fb:6c:ba:04:aa:05:
1f:f2:08:c9:ea:65:42:23:b3:26:a4:b1:3d:50:0d:
48:94:85:5b:c2:a6:4b:bf:92:53:5d:2e:a2:0f:7d:
b2:20:26:8a:cb:39:f6:6a:9f:74:91:06:e7:ab:c7:
67:cd:06:51:34:87:d2:42:46:9f:03:b5:ce:28:00:
be:18:81:ce:ca:7f:c4:27:e0:f8:67:80:19:5b:30:
8b:08:13:b1:b1:d3:27:f3:d6:df:6c:00:75:02:3e:
cf:b5:c5:45:27:0b:b9:5d:f6:95:cd:d4:11:79:94:
a5:ba:75:ad:b6:31:05:08:02:3c:66:e8:29:16:fd:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:28:25:4C:69:5E:74:C5:0C:F4:BD:54:B8:2C:D0:F3:77:3E:6D:CD
X509v3 Authority Key Identifier:
keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/5iglTGledMUM9L1UuCzQ83c-bc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.253.188.0/24
Signature Algorithm: sha256WithRSAEncryption
16:83:f8:44:7a:df:d8:9e:2a:e6:ac:9c:53:ad:bf:d1:bd:8b:
12:88:92:f2:98:24:7e:f3:79:93:74:5f:69:52:d7:30:75:64:
1e:c4:b6:83:0d:5e:1e:2a:12:68:27:3f:df:2a:b8:b3:4c:58:
c6:b1:29:d4:35:7e:ed:1e:af:97:bc:e8:81:c1:fa:50:0e:f5:
1e:be:99:bd:48:a1:a1:8e:97:b3:23:1d:ab:58:37:fc:97:1f:
32:18:71:5d:b5:ec:62:ed:5b:b3:f9:0b:90:de:ab:1f:05:f8:
7c:5d:fb:4b:3b:96:a5:07:3f:33:9a:e8:48:e4:4f:e8:2f:6f:
ed:a9:38:8f:7c:c8:7b:de:c9:e1:5a:07:db:81:4b:f4:f1:97:
74:c8:75:e5:67:02:25:1c:6b:da:69:c1:c7:38:03:31:28:ca:
92:49:35:a4:21:7c:cf:45:6d:ca:1a:8f:66:e9:3b:04:be:5a:
71:e8:ef:6b:05:cd:1e:c6:d6:b8:e1:3d:b8:15:af:98:cc:dd:
6c:9a:13:b1:a0:7e:fc:5c:d5:e7:5e:0c:a8:ce:51:c4:b7:3b:
a1:78:69:c8:21:b7:26:c0:0f:9b:7c:20:6b:f8:5e:2b:e9:28:
e3:96:66:25:02:b9:66:c2:97:43:67:81:5e:cc:a4:37:bc:8d:
c1:35:6f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:39 2024 by rpki-client on console-ams.rpki-client.org