Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/5zShPcDIERLoViEmOH53JiFJEGw.roa
File: 5zShPcDIERLoViEmOH53JiFJEGw.roa (raw, json)
Hash identifier: YdzwYliuSUTsQAlmuPmOixMmYTnDrusIgggXeLly1yA=
Subject key identifier: E7:34:A1:3D:C0:C8:11:12:E8:56:21:26:38:7E:77:26:21:49:10:6C
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 018322B976A99AE6D2111C2374D6B072086E
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/5zShPcDIERLoViEmOH53JiFJEGw.roa
Signing time: Fri 09 Sep 2022 14:48:43 +0000
ROA not before: Fri 09 Sep 2022 14:48:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.230.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:22:b9:76:a9:9a:e6:d2:11:1c:23:74:d6:b0:72:08:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Sep 9 14:48:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e734a13dc0c81112e8562126387e77262149106c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:7f:82:9d:5a:af:79:2b:08:8d:be:b1:73:
7f:bb:7e:b1:fc:c8:16:1b:fe:02:06:e2:de:a0:af:
be:98:00:27:71:3b:ea:ee:3d:94:94:85:25:b1:c7:
cb:d8:af:d4:fe:b9:97:77:3b:62:35:36:1e:57:1f:
97:92:6f:dc:e9:30:a4:fb:e9:41:3b:b4:06:5a:77:
3b:d5:d6:74:b4:3f:9e:23:ca:d4:2b:a8:c5:9f:b6:
6a:7e:05:4b:ab:46:e7:14:d2:28:c4:8f:6c:8d:2a:
20:74:ca:b9:d4:1b:76:6f:55:52:12:b6:24:08:d3:
16:33:69:6e:c1:66:9b:42:e8:50:fd:e6:29:1d:3e:
84:b6:96:c5:1b:27:56:80:81:38:ae:e4:ee:55:02:
bc:83:2b:31:09:af:fa:f9:5a:37:d7:5f:0a:84:7f:
36:84:c5:98:fc:b5:c7:79:9d:e2:54:a6:bc:52:e5:
d7:8e:29:27:68:b5:91:f5:a8:f1:61:82:bd:fa:b6:
17:6a:0e:49:f9:dd:23:59:6f:4e:a1:9b:7c:59:64:
2b:83:20:64:24:34:c2:1d:29:58:d5:9c:55:89:b9:
1f:a2:21:bb:fc:73:0e:40:88:6b:18:56:b4:44:b8:
ce:ca:ac:b5:35:be:8b:1d:b4:a0:00:54:8e:ed:c1:
f9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:34:A1:3D:C0:C8:11:12:E8:56:21:26:38:7E:77:26:21:49:10:6C
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/5zShPcDIERLoViEmOH53JiFJEGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.103.0/24
Signature Algorithm: sha256WithRSAEncryption
82:21:bc:48:d1:c7:7e:88:41:5f:97:cb:be:e5:3e:93:2c:a6:
7f:7c:43:b0:cc:8b:56:d3:46:84:28:74:37:00:9c:ad:c6:71:
4d:cc:77:a0:91:af:7e:b8:13:79:7d:a0:04:5c:7c:0e:98:21:
ee:9a:99:c0:4e:9a:c8:14:d7:ae:7a:bc:da:16:83:6d:af:a6:
32:6b:cc:28:81:a5:75:d6:87:f4:73:ad:d3:cc:4d:b2:1c:b4:
3e:d6:a4:d8:5c:82:3a:65:10:06:ff:ea:13:02:be:16:a6:05:
49:a5:9d:b2:c4:37:28:5e:84:48:af:4a:34:85:40:99:bf:90:
07:fe:a7:33:7f:27:b2:7c:4c:c2:bb:0e:ff:65:a1:72:b3:bb:
66:3d:e7:e6:ba:4e:d0:0b:db:9a:c8:b1:1f:60:5c:05:1c:d2:
58:55:7f:67:70:41:81:69:1f:a1:5a:d1:f2:fe:96:9b:38:1e:
03:f4:71:97:20:f8:70:1d:ab:49:f8:f4:85:69:58:11:b8:91:
09:e8:ba:33:09:72:ad:86:93:d5:e8:dc:d7:d1:22:14:3f:65:
a7:53:c1:7d:89:fc:1a:d8:a9:89:44:d8:41:cf:58:30:65:58:
bf:92:7f:5a:8f:2b:94:6e:69:34:3a:fd:50:5b:a9:a6:0a:2b:
63:3d:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:41 2023 by rpki-client on console-fra.rpki-client.org