Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/5w1QCJB3RZhFvacqQ9g-2bSz7b4.roa
File: 5w1QCJB3RZhFvacqQ9g-2bSz7b4.roa (raw, json)
Hash identifier: DdjkLpi7KBoxNMSxtWId97JRAI9b5WBvS1bRrPw7pD8=
Subject key identifier: E7:0D:50:08:90:77:45:98:45:BD:A7:2A:43:D8:3E:D9:B4:B3:ED:BE
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 0F56B07B
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/5w1QCJB3RZhFvacqQ9g-2bSz7b4.roa
Signing time: Sat 01 Jan 2022 07:55:23 +0000
ROA not before: Sat 01 Jan 2022 07:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6799
IP address blocks: 195.43.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257339515 (0xf56b07b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Jan 1 07:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e70d50089077459845bda72a43d83ed9b4b3edbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:43:14:0b:b5:b4:d9:4c:80:b3:90:e8:4b:cf:
07:27:eb:8b:ff:a2:25:79:55:b8:2f:f6:d6:20:2e:
d4:41:4d:55:51:9f:d8:97:a3:b8:1f:10:df:85:75:
7e:f7:e4:85:a9:5c:d8:9a:44:f9:05:aa:2e:4e:2a:
d4:ed:36:68:d1:da:21:13:7b:f4:a8:bb:53:32:1d:
c7:44:62:43:b5:c7:4e:da:b2:60:03:00:da:4b:58:
b7:41:27:ac:f5:24:7f:12:34:19:bb:28:91:25:25:
fb:96:ce:4d:2d:fd:7c:4d:31:68:f8:6c:f8:aa:33:
7a:32:18:ff:41:65:90:ff:d9:62:55:d1:8a:10:a1:
1c:dc:27:00:e0:4f:19:77:78:b5:ef:7c:7b:75:2f:
3d:cc:6c:18:66:ce:05:b4:03:77:af:a7:40:0b:d4:
9f:82:a6:72:36:16:70:a8:87:0b:15:cb:e6:8b:fb:
53:c5:c4:c1:00:03:87:62:0b:2f:ed:ac:0e:96:5f:
2f:21:1b:d6:dd:72:0f:d2:20:f7:df:f8:0c:f0:15:
e1:2d:36:62:4e:f7:5d:6c:a8:77:23:fa:e5:0a:bb:
aa:b7:4e:73:bb:dd:f2:12:46:71:ae:6c:e8:1d:11:
b3:50:62:52:ba:38:84:b2:cc:9e:18:30:b6:c6:10:
fa:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0D:50:08:90:77:45:98:45:BD:A7:2A:43:D8:3E:D9:B4:B3:ED:BE
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/5w1QCJB3RZhFvacqQ9g-2bSz7b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.132.0/24
Signature Algorithm: sha256WithRSAEncryption
47:3e:95:7d:68:82:39:1a:ce:b7:a7:c9:c3:41:a3:25:d6:77:
64:df:b4:c4:39:16:ca:fc:e7:3f:9f:29:69:65:c2:6a:e7:f5:
c6:d7:c1:af:d7:cc:f8:dc:be:ea:6d:0d:d9:dd:bd:9e:70:10:
03:5c:94:f5:97:de:f6:9f:cb:e4:75:a0:0a:31:70:9e:23:70:
a4:a5:c8:79:2a:c9:3d:f5:1c:98:1b:88:88:ed:5d:b2:6e:f5:
03:11:ec:4b:0b:d9:de:2b:ad:1f:39:76:90:9b:43:b0:15:1a:
a6:aa:30:da:64:ba:3a:3e:e4:81:4c:72:48:1e:c1:1c:c7:7c:
2d:8f:41:f9:21:3e:4e:36:89:42:7e:de:52:90:77:f5:e2:37:
bc:00:85:39:d3:d6:29:b1:96:f3:77:ed:bb:f1:3c:7c:95:1d:
30:17:9a:0e:12:64:b6:bf:f4:39:2b:ec:d7:e2:c4:8e:15:92:
ae:b2:29:37:0b:f7:29:00:08:38:a5:82:f6:ff:61:0b:8e:86:
d8:16:4b:82:ff:5f:3a:ad:35:2a:a1:72:cd:26:1f:36:aa:03:
7b:60:07:6f:79:10:77:34:0e:3f:f6:92:2d:9a:15:f8:33:6f:
17:73:0a:95:fa:17:29:ac:a0:af:b2:24:28:ec:41:55:7d:e6:
27:56:e0:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:06 2023 by rpki-client on console-fra.rpki-client.org