Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/5af6bF95GiyuE8bQqld2kAejgdE.roa
File: 5af6bF95GiyuE8bQqld2kAejgdE.roa (raw, json)
Hash identifier: O33QwzZZK6pKdKUprGj7MXS3GgqoqO5U9NKy6/l0taQ=
Subject key identifier: E5:A7:FA:6C:5F:79:1A:2C:AE:13:C6:D0:AA:57:76:90:07:A3:81:D1
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 0183561E9D79999E3EE5D5DF651327E20033
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/5af6bF95GiyuE8bQqld2kAejgdE.roa
Signing time: Mon 19 Sep 2022 14:19:50 +0000
ROA not before: Mon 19 Sep 2022 14:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 194.1.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:1e:9d:79:99:9e:3e:e5:d5:df:65:13:27:e2:00:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Sep 19 14:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5a7fa6c5f791a2cae13c6d0aa57769007a381d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:44:54:3c:04:f9:28:f4:85:fc:24:e7:93:
34:ae:9b:3a:01:53:7b:68:14:1f:88:0c:ec:33:6d:
5c:63:fe:6d:49:ee:c1:fa:af:4a:8b:47:c7:23:ea:
8f:e7:80:ec:6d:4b:e7:06:fc:99:1e:42:e9:22:a3:
cd:8a:7e:9a:aa:cc:31:5e:ae:a3:e4:7a:00:38:30:
77:93:56:c0:75:cc:26:7f:c4:57:69:59:e7:4d:dd:
56:58:79:40:a2:a3:66:77:21:38:f4:ed:94:65:ff:
16:66:c3:3d:6b:52:72:78:c4:f4:e3:1a:6e:c3:f6:
cd:1c:94:4c:6b:02:43:ed:31:8e:fb:89:49:e6:e4:
c9:75:4b:92:b1:69:58:f4:29:18:f9:68:a6:47:74:
87:30:96:72:59:41:5d:c3:8b:f9:24:7a:d1:c4:49:
1b:1c:39:c1:37:f0:ae:c3:4a:4c:71:48:3a:84:11:
2d:42:1a:a2:a5:b3:72:b8:57:ee:62:83:1c:96:a1:
a8:5b:24:3f:92:b1:d0:6d:d7:05:60:94:7d:a1:40:
d4:f2:41:45:f1:80:aa:eb:c6:f8:cc:a9:56:16:0d:
af:72:fd:77:b6:8f:e2:fd:fa:cd:5b:9e:84:8e:04:
8b:02:e7:ed:4e:cd:4f:70:c0:e4:05:ed:5d:62:de:
f1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A7:FA:6C:5F:79:1A:2C:AE:13:C6:D0:AA:57:76:90:07:A3:81:D1
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/5af6bF95GiyuE8bQqld2kAejgdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.136.0/22
Signature Algorithm: sha256WithRSAEncryption
76:4c:0b:31:35:88:a3:1b:63:63:26:1c:ad:ff:3a:8b:d6:9d:
2b:f5:c5:cb:7d:61:77:9a:6f:b8:6d:68:63:19:d7:a2:21:be:
d4:06:25:aa:71:10:a2:ba:cc:e6:2a:c5:25:9d:dd:db:1f:af:
a1:29:23:af:89:71:6a:bd:55:d9:c6:73:8c:82:41:1d:e5:fd:
08:c9:f8:0e:9d:6b:d9:48:db:47:c3:62:b3:1f:74:5f:bb:15:
b4:90:f7:60:3f:99:da:d6:02:02:cc:e2:15:04:3e:92:05:05:
ce:8a:5f:68:0b:49:0a:41:87:db:cf:32:22:df:ba:0b:ef:8f:
3e:ac:46:ce:1a:df:89:d1:ad:99:d5:27:c6:a8:77:64:1a:2e:
e0:ba:7d:71:b1:4e:93:6a:8e:20:6b:c6:8f:aa:8b:7d:57:b1:
de:87:b3:3c:79:5d:9d:3d:14:27:6b:ff:cd:21:a8:a6:f1:b1:
72:84:6b:6d:17:2d:07:c5:05:6b:f9:80:72:9c:72:59:4f:ae:
43:ee:c9:28:b0:f4:1b:c4:3d:99:b5:ca:3c:54:8e:07:56:db:
c5:bf:ee:9b:4c:4b:5f:fb:dc:a5:ea:46:3f:c9:7a:19:ff:f3:
c0:1c:71:c7:70:4d:77:c7:6c:98:e0:ae:23:81:1c:aa:ec:65:
7d:f9:f0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org