Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/5bxf3CYsUCTwi9JR3X_HreM819Q.roa
File: 5bxf3CYsUCTwi9JR3X_HreM819Q.roa (raw, json)
Hash identifier: zAinUyFiA3b5NJoP13DzfR4FOONYm1LbBXfENWqP+rc=
Subject key identifier: E5:BC:5F:DC:26:2C:50:24:F0:8B:D2:51:DD:7F:C7:AD:E3:3C:D7:D4
Certificate issuer: /CN=5bcaab7aa1ac7143f8bc823c734b1673a09bb880
Certificate serial: 03CC13E3
Authority key identifier: 5B:CA:AB:7A:A1:AC:71:43:F8:BC:82:3C:73:4B:16:73:A0:9B:B8:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W8qreqGscUP4vII8c0sWc6CbuIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/5bxf3CYsUCTwi9JR3X_HreM819Q.roa
Signing time: Sat 01 Jan 2022 07:59:25 +0000
ROA not before: Sat 01 Jan 2022 07:59:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16263
IP address blocks: 193.111.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63706083 (0x3cc13e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bcaab7aa1ac7143f8bc823c734b1673a09bb880
Validity
Not Before: Jan 1 07:59:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5bc5fdc262c5024f08bd251dd7fc7ade33cd7d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b3:29:e2:df:c6:7d:d3:4a:c2:da:91:5e:ff:
bd:b7:10:0f:86:59:2d:28:6b:cc:82:8b:52:70:53:
f3:4d:fc:21:43:92:68:4c:c6:2e:9a:13:6a:e3:60:
d4:38:71:70:1f:48:53:b5:ef:00:12:45:07:15:8d:
ed:45:87:a3:1f:47:90:97:a2:22:38:03:ef:5c:84:
0b:84:75:6b:9b:9b:34:21:7a:03:89:ba:ce:81:75:
68:d2:bd:8a:65:7f:5f:09:4f:68:16:26:f4:d8:ad:
08:ff:54:fe:17:27:60:b1:f7:07:3f:1d:b4:1b:02:
a2:fa:93:05:a9:a5:5d:49:f5:01:7c:f2:78:2e:62:
89:e1:d7:63:cc:9e:07:1f:c0:f7:f2:b9:0b:7b:1e:
d1:05:0b:03:99:b6:ce:ba:58:2d:56:65:14:c5:11:
0c:bb:bf:1b:86:da:39:69:01:71:52:c2:40:66:e4:
e1:ba:7e:41:c1:72:6c:3e:18:c1:88:29:7c:1f:80:
90:ec:52:29:30:ef:61:d1:aa:6c:47:29:a8:b0:07:
21:44:4b:43:80:a8:3c:ca:01:b5:d9:c4:17:c0:14:
ef:77:2a:95:23:8e:cd:03:0c:7f:c8:c2:a1:0f:af:
33:c2:67:50:a3:94:0c:0d:09:4d:2b:f6:03:69:2a:
51:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BC:5F:DC:26:2C:50:24:F0:8B:D2:51:DD:7F:C7:AD:E3:3C:D7:D4
X509v3 Authority Key Identifier:
keyid:5B:CA:AB:7A:A1:AC:71:43:F8:BC:82:3C:73:4B:16:73:A0:9B:B8:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W8qreqGscUP4vII8c0sWc6CbuIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/5bxf3CYsUCTwi9JR3X_HreM819Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/98d41e-234e-45e7-82eb-3d1e0ee4b651/1/W8qreqGscUP4vII8c0sWc6CbuIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.144.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:00:48:b4:97:c1:ce:98:72:78:15:a5:f6:3f:6d:d9:e1:18:
5c:d4:fe:7f:68:f9:e0:78:af:84:79:7a:45:b0:ea:3b:9f:6b:
d7:a7:1b:02:83:4f:e9:a8:cf:88:af:aa:5a:f8:8b:bc:63:e1:
1e:49:d4:e9:9c:38:bc:aa:09:88:a4:7b:28:ab:81:e2:a2:e3:
03:fd:4b:2f:4b:bd:16:52:3a:2a:e0:ac:70:65:5b:0e:f2:bd:
65:2c:06:ba:4a:e1:94:3a:4d:e8:52:6d:7f:28:1c:5e:eb:c2:
2a:62:c5:3a:9c:61:31:40:e5:7e:a6:02:dc:ca:4b:c7:fe:5d:
c8:e3:c8:fc:2d:5b:cc:8d:5a:5f:d7:a4:45:49:b5:40:5c:c3:
bc:94:36:4d:f9:c0:d0:f1:2e:71:3b:99:6e:58:ed:08:04:1d:
6b:77:1b:02:02:f3:f0:a9:0a:fc:d4:33:5e:82:6a:c5:0f:ad:
a5:8f:40:5c:c2:46:95:b9:0d:5d:f1:ef:14:cc:15:fa:a5:e2:
0e:49:18:c2:c2:5c:98:0e:37:8b:7c:0d:64:8b:2f:57:42:4a:
14:b3:47:a9:0e:57:0a:9d:d8:e9:c1:ac:4e:a5:22:c7:4e:05:
34:dd:1e:1b:30:fc:90:ab:6a:16:0f:cf:f5:7d:1d:7b:18:68:
d3:43:c9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:22 2024 by rpki-client on console-ams.rpki-client.org