Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/53Yi8yftfV-wg5q_n4ZpH5sRfBU.roa
File: 53Yi8yftfV-wg5q_n4ZpH5sRfBU.roa (raw, json)
Hash identifier: rJRaAuicFSTvPGUZ7UV9nPWP5h6UBjd02lPk4FTd9iQ=
Subject key identifier: E7:76:22:F3:27:ED:7D:5F:B0:83:9A:BF:9F:86:69:1F:9B:11:7C:15
Certificate issuer: /CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Certificate serial: 089EE990
Authority key identifier: DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/53Yi8yftfV-wg5q_n4ZpH5sRfBU.roa
Signing time: Wed 09 Feb 2022 19:06:40 +0000
ROA not before: Wed 09 Feb 2022 19:06:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 185.103.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144632208 (0x89ee990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd524a05d477b82fbca93e7a504aa31a3ad6863
Validity
Not Before: Feb 9 19:06:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e77622f327ed7d5fb0839abf9f86691f9b117c15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6a:81:f3:cf:b6:8b:1c:e0:f9:b6:5e:fe:0c:
52:e2:6e:47:a8:d7:8f:49:26:d8:04:94:d8:7a:99:
99:fc:09:43:17:ab:e2:5f:58:bb:dd:56:4d:fd:fb:
fc:13:e8:36:d4:1c:cb:67:05:30:39:bf:7a:ec:d6:
e0:51:41:af:9a:3c:fe:21:78:56:37:7c:bb:ee:fd:
54:b6:3b:f5:d5:72:0f:8a:42:df:5b:43:48:da:25:
62:12:cb:b2:4b:60:81:10:bb:bf:94:15:44:49:cc:
24:ef:55:a6:18:81:d7:40:84:69:52:c4:d2:a4:ae:
d0:0c:f3:9b:9a:9e:5a:26:8a:00:c4:ec:d8:de:45:
db:bf:9e:0a:10:9c:f7:a0:38:51:ec:e9:2e:5f:19:
9b:d8:53:c0:e6:8b:c8:d8:12:f3:89:8b:ab:56:65:
cd:92:c1:20:84:02:b1:52:03:9f:8d:3b:37:c3:c6:
b0:58:1e:62:2d:7d:6b:f5:6b:ea:06:84:47:bd:2f:
12:3f:93:09:80:11:63:4e:8f:cb:3a:48:4d:38:96:
e8:ee:0e:36:fe:ef:a2:3f:66:1b:b3:c5:ab:7d:6f:
53:d1:be:28:70:fa:fe:42:10:24:d7:61:a9:cb:31:
dc:c4:12:c3:43:d6:b1:96:d8:ab:47:b5:70:7a:46:
74:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:76:22:F3:27:ED:7D:5F:B0:83:9A:BF:9F:86:69:1F:9B:11:7C:15
X509v3 Authority Key Identifier:
keyid:DF:D5:24:A0:5D:47:7B:82:FB:CA:93:E7:A5:04:AA:31:A3:AD:68:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39UkoF1He4L7ypPnpQSqMaOtaGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/53Yi8yftfV-wg5q_n4ZpH5sRfBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/20c187-00fd-459e-aae4-467f4f7f5ded/1/39UkoF1He4L7ypPnpQSqMaOtaGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.199.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ff:db:90:cc:7f:bd:09:31:d0:22:52:18:f6:8e:d3:a0:23:
4d:5a:a5:23:9e:e3:5d:66:38:fd:ea:4a:7d:f5:5e:8e:12:57:
e7:8f:fe:af:4a:10:e5:7d:f7:f8:4e:98:39:fa:56:40:06:8c:
b0:87:ff:f5:02:e7:d1:99:4f:f6:d1:ff:cc:cd:f2:22:a9:9e:
f2:a5:21:80:9f:10:d9:6a:be:9b:89:e2:48:30:1f:ac:64:65:
02:bf:bc:0b:7d:5e:58:b4:7a:c6:fb:a1:47:84:f3:ba:25:b8:
f4:25:7b:44:e4:43:c7:57:b1:21:e0:7f:7a:07:02:c0:da:27:
ab:63:6e:e2:a0:c2:5d:4c:93:9b:06:eb:30:44:51:2b:96:5e:
e3:40:e6:4a:6b:d0:b3:08:be:7b:98:0f:41:e4:0e:fe:e5:d3:
81:b5:9a:62:de:86:58:e4:f0:8c:c6:6f:bc:4d:2e:5c:b0:39:
c9:c1:3a:e9:4a:6f:52:bc:6f:cf:46:b7:08:82:fc:da:09:9c:
af:0a:56:fa:a0:b9:a2:f6:7e:1d:d6:c7:06:e4:10:77:02:69:
c7:0e:60:bd:20:d3:75:b6:92:17:41:a6:fa:a4:b4:fc:bd:58:
d1:7b:33:12:0b:3d:ee:40:52:cf:2f:d9:b7:d4:63:0a:62:a7:
4d:94:59:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:43 2023 by rpki-client on console-fra.rpki-client.org