Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/B9QzSDvbLlGM6UvT87RoMse9flc.roa
File: B9QzSDvbLlGM6UvT87RoMse9flc.roa (raw, json)
Hash identifier: 5Mq9OFN4mpkVlqEF0rUA6+KHCU8OSDwQVC9H+1lxvBI=
Subject key identifier: 07:D4:33:48:3B:DB:2E:51:8C:E9:4B:D3:F3:B4:68:32:C7:BD:7E:57
Certificate issuer: /CN=93b322b59048e107b94a6db06557af5f0c9c290c
Certificate serial: 06B0FD61
Authority key identifier: 93:B3:22:B5:90:48:E1:07:B9:4A:6D:B0:65:57:AF:5F:0C:9C:29:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7MitZBI4Qe5Sm2wZVevXwycKQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/B9QzSDvbLlGM6UvT87RoMse9flc.roa
Signing time: Sat 01 Jan 2022 12:06:42 +0000
ROA not before: Sat 01 Jan 2022 12:06:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 193.5.26.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112262497 (0x6b0fd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b322b59048e107b94a6db06557af5f0c9c290c
Validity
Not Before: Jan 1 12:06:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07d433483bdb2e518ce94bd3f3b46832c7bd7e57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5e:08:20:77:96:f4:75:67:79:8c:1b:a8:b8:
36:92:07:44:f9:0d:7a:0f:46:a1:11:76:ad:63:5c:
34:4f:9d:f4:18:e6:6b:26:42:56:3f:14:40:c2:58:
c5:79:da:47:06:9e:fd:d0:6e:72:de:a8:9a:1b:47:
95:b5:d5:e8:40:a9:40:43:b8:a1:f7:68:e6:d8:c4:
fc:da:d1:07:93:81:4e:f6:38:e8:0a:9d:6e:56:bb:
a4:9d:43:b0:b9:68:8d:4f:72:53:8c:f4:cd:dc:27:
72:db:0f:64:89:df:9b:d3:41:84:89:35:f0:93:50:
43:93:11:ef:55:b2:0f:ef:fd:cb:d8:b9:be:a8:99:
90:0f:1d:58:fb:71:1c:3d:d5:17:76:b3:62:00:a4:
00:f7:9e:7f:32:0a:e4:a0:e4:3d:a9:3d:aa:14:03:
72:02:53:ea:3d:3d:80:4e:15:23:49:59:54:71:9f:
56:86:c8:e2:ea:87:f0:fa:43:38:6a:b7:a0:13:9a:
d5:f6:ba:db:27:f5:49:df:93:a6:6c:54:2f:62:da:
84:6f:19:73:17:21:81:75:ba:85:df:52:90:d3:d0:
00:f6:a2:69:37:5e:33:42:58:86:c7:d6:a0:4f:aa:
93:f7:99:90:4c:08:97:c6:cf:2b:e4:fd:d9:4f:b0:
a0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D4:33:48:3B:DB:2E:51:8C:E9:4B:D3:F3:B4:68:32:C7:BD:7E:57
X509v3 Authority Key Identifier:
keyid:93:B3:22:B5:90:48:E1:07:B9:4A:6D:B0:65:57:AF:5F:0C:9C:29:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7MitZBI4Qe5Sm2wZVevXwycKQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/B9QzSDvbLlGM6UvT87RoMse9flc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/k7MitZBI4Qe5Sm2wZVevXwycKQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.26.0/23
Signature Algorithm: sha256WithRSAEncryption
03:65:d0:00:30:63:7f:0c:58:96:71:86:e2:f4:f7:9a:b8:2c:
07:24:06:06:bf:cf:57:fd:4d:8c:18:c7:d9:bf:5e:07:9c:eb:
74:9e:32:22:83:fd:04:7b:a5:60:eb:bb:da:f9:83:ac:11:88:
66:d0:ff:af:bb:32:7b:02:20:d5:89:9a:5a:f9:42:e0:94:e3:
71:a9:fd:5f:6f:3e:24:df:e4:df:19:c4:f4:bc:52:22:cf:98:
b8:0f:86:95:c1:f6:0f:ba:e5:62:40:25:88:90:b4:83:89:c0:
9f:42:f8:e6:39:11:84:21:50:d0:15:2c:fd:a8:e0:f9:8f:80:
07:ab:2b:c0:b2:40:bf:75:5e:3e:8d:c8:46:03:a6:79:04:4a:
b8:87:d3:3e:67:f9:37:f0:1b:f4:37:ce:b7:bc:e1:d8:83:41:
d4:9c:f9:34:d1:80:4f:9a:c2:92:e4:e8:b0:b7:f2:f7:39:ae:
e6:4c:64:e4:9a:f1:e5:2e:35:21:62:64:18:2f:58:95:34:5d:
e6:1e:3e:51:fe:10:90:7b:ef:20:c9:c6:64:eb:bf:f2:c8:a4:
de:be:f2:59:ca:ba:21:1b:82:6f:9f:f8:74:5e:af:cc:92:df:
60:76:7f:09:7f:75:1c:9a:e0:fb:0a:21:e5:f9:94:b8:58:78:
12:24:dc:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org