Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/n5DqP75tsMEBb-3uJsrSRVICya8.roa
File: n5DqP75tsMEBb-3uJsrSRVICya8.roa (raw, json)
Hash identifier: SjbHxC+iJlJmYp37uHi/Qh+CnvZc6QtTE3bY0ex0sj8=
Subject key identifier: 9F:90:EA:3F:BE:6D:B0:C1:01:6F:ED:EE:26:CA:D2:45:52:02:C9:AF
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0184588ACDDF5348C9D395F755F691C6D6FE
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/n5DqP75tsMEBb-3uJsrSRVICya8.roa
Signing time: Tue 08 Nov 2022 18:40:02 +0000
ROA not before: Tue 08 Nov 2022 18:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202673
IP address blocks: 194.15.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:58:8a:cd:df:53:48:c9:d3:95:f7:55:f6:91:c6:d6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Nov 8 18:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f90ea3fbe6db0c1016fedee26cad2455202c9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ae:30:69:29:fa:28:19:83:d9:7e:52:b2:5e:
00:79:cd:9f:f4:7c:7c:aa:76:70:fa:64:a2:ff:d6:
6c:77:32:b9:fb:54:b7:79:95:d6:39:aa:40:fc:57:
68:bf:5e:12:c6:ea:50:67:75:58:26:5e:3b:b1:d4:
e9:55:fd:1e:cb:61:9c:49:49:53:cc:5b:b7:a6:64:
ea:70:c6:5c:ec:68:20:6b:10:ad:61:09:42:d7:26:
00:64:ca:84:16:97:02:bf:45:4f:c0:90:34:44:a2:
bc:d1:15:23:7d:db:32:25:91:fd:9c:7d:db:d7:24:
a0:bd:e3:35:b7:07:92:d6:03:e1:03:bb:ef:6c:33:
23:3f:71:63:90:25:f0:38:92:1d:af:26:20:4c:51:
2f:66:13:93:20:5f:28:2a:fd:74:ca:b8:eb:68:94:
29:d6:d9:52:39:19:48:6b:5d:32:e6:47:62:a0:57:
01:cb:b0:3a:1f:47:4d:70:52:b2:55:fc:6c:17:ec:
b6:6f:63:47:62:2f:d9:20:d1:d5:46:c8:1f:be:f8:
76:62:7f:05:d2:3c:3f:1f:20:56:7c:78:38:67:f0:
67:db:11:67:c2:0f:83:2f:0a:6b:09:21:fe:f4:21:
a0:4a:75:32:a7:f1:8e:52:4d:dd:2c:a8:0f:bf:e1:
ac:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:90:EA:3F:BE:6D:B0:C1:01:6F:ED:EE:26:CA:D2:45:52:02:C9:AF
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/n5DqP75tsMEBb-3uJsrSRVICya8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.154.0/24
Signature Algorithm: sha256WithRSAEncryption
21:06:1f:13:87:3c:40:bc:ae:77:c0:3a:86:93:64:0a:7c:cb:
5b:6b:1f:b6:63:96:32:fd:2d:a3:b5:4d:2f:79:6f:37:aa:36:
26:28:a5:13:df:d0:46:3a:61:b6:6e:7f:e0:47:41:e5:79:5c:
09:b6:ca:c0:24:24:4e:f6:e7:39:20:dd:11:f2:59:60:dc:97:
1b:d0:18:16:9b:0a:c0:63:7e:d8:0b:15:94:19:87:ac:06:2a:
dd:9e:45:40:0f:e5:de:3d:e3:23:0c:c0:26:22:68:21:43:c6:
d9:32:8d:05:7c:59:57:21:60:50:d2:3f:5c:a4:06:e7:f9:0a:
39:46:8f:60:1f:25:14:80:ea:2f:5b:0b:d4:40:37:b2:f5:19:
b8:a7:15:90:5a:ab:5c:ed:ed:0f:be:aa:61:60:eb:c4:1a:8e:
d2:7b:44:ad:03:0f:00:ec:53:c0:18:eb:2f:a7:35:8e:b9:8c:
49:5f:3c:51:d9:f9:56:7c:19:87:db:be:50:4a:89:fc:fc:04:
1f:cd:16:4a:e5:11:ea:28:70:6d:aa:94:c1:f1:0b:57:c0:9e:
74:e0:f9:0f:bd:34:9a:4a:22:9b:10:51:f0:96:b1:dc:6d:f9:
43:1f:99:9a:41:2e:21:eb:eb:c3:a3:62:6a:87:b2:2e:35:91:
c7:c6:bb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:13 2023 by rpki-client on console-fra.rpki-client.org