Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/5i43SsbDpMe9uRXhyuR67xMwZYQ.roa
File: 5i43SsbDpMe9uRXhyuR67xMwZYQ.roa (raw, json)
Hash identifier: 7vZycoud2oElm4y/PblUT0RZH/6eobxedG+8KZXdicI=
Subject key identifier: E6:2E:37:4A:C6:C3:A4:C7:BD:B9:15:E1:CA:E4:7A:EF:13:30:65:84
Certificate issuer: /CN=8c32a6e57ec81cc5cb43bb503749b360f2b05c3b
Certificate serial: 04E89A9F
Authority key identifier: 8C:32:A6:E5:7E:C8:1C:C5:CB:43:BB:50:37:49:B3:60:F2:B0:5C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/5i43SsbDpMe9uRXhyuR67xMwZYQ.roa
Signing time: Sat 01 Jan 2022 02:57:26 +0000
ROA not before: Sat 01 Jan 2022 02:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59877
IP address blocks: 185.61.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82352799 (0x4e89a9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c32a6e57ec81cc5cb43bb503749b360f2b05c3b
Validity
Not Before: Jan 1 02:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e62e374ac6c3a4c7bdb915e1cae47aef13306584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ad:b6:0c:c5:8a:7a:94:c6:07:d7:5d:d4:4e:
a0:3c:dd:01:cf:ad:0a:b2:1d:5b:65:b5:60:3c:23:
c4:11:c0:42:e9:b3:52:5f:61:3c:df:3b:0a:74:69:
68:d1:c5:84:93:4b:3d:c1:bd:37:42:f7:cb:a1:13:
0e:75:90:60:72:75:d5:6d:67:2d:8c:4e:e7:c8:eb:
d9:f5:b5:38:71:3d:55:85:00:6c:7b:74:32:a1:01:
24:ad:90:0e:e9:35:8e:c8:7f:c5:9e:46:db:37:ce:
39:d7:0c:db:51:88:33:7a:2c:e0:70:3d:11:b7:24:
4a:1b:4f:97:3c:a8:dd:4c:e9:88:7a:92:27:d0:d3:
e7:5a:75:88:75:8f:f5:c5:43:fb:dd:e0:12:40:17:
13:c4:2c:73:56:45:d6:f3:c1:aa:37:f0:a9:f3:f8:
8d:ad:f1:33:09:d5:d9:04:5d:0f:02:fd:40:e6:e1:
f5:1b:97:05:b2:81:f7:fd:30:5e:57:53:f1:1d:9e:
39:70:e6:e2:5f:f9:06:b1:a8:d4:03:be:00:0e:24:
de:78:72:22:75:00:f5:4c:95:9b:93:ac:ab:a2:a9:
58:62:c7:fe:8c:8a:bd:be:78:4c:3c:b6:d4:eb:15:
38:50:1b:ac:22:23:9e:59:bb:e5:57:6b:7d:af:68:
cb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2E:37:4A:C6:C3:A4:C7:BD:B9:15:E1:CA:E4:7A:EF:13:30:65:84
X509v3 Authority Key Identifier:
keyid:8C:32:A6:E5:7E:C8:1C:C5:CB:43:BB:50:37:49:B3:60:F2:B0:5C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/5i43SsbDpMe9uRXhyuR67xMwZYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6e0cfa-205e-4d66-ae3a-c743d7c0bb22/1/jDKm5X7IHMXLQ7tQN0mzYPKwXDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.176.0/22
Signature Algorithm: sha256WithRSAEncryption
99:8b:8a:cb:16:23:e5:59:26:30:0c:d0:0e:56:e0:e0:b7:31:
d0:eb:18:b6:e1:8e:97:21:06:23:b5:e7:42:94:50:fb:4a:95:
cc:fe:08:fd:11:80:87:cc:df:8f:b7:f9:bd:9d:51:51:61:c3:
b9:5b:72:ad:6b:dd:87:6b:ba:3d:1d:41:e5:e1:a0:88:2b:8f:
b0:a3:16:07:9c:9a:a3:0e:03:07:3e:b8:14:28:13:51:71:57:
6a:98:55:2e:aa:21:27:09:ae:91:b1:f0:46:4d:a6:e8:12:7e:
67:b4:8a:ba:08:9f:cc:2e:e9:cd:e3:8d:77:b3:36:41:cf:17:
16:06:61:f0:2c:6b:61:c8:04:4b:87:17:64:3a:d8:fc:61:db:
39:91:f9:55:9e:cb:a2:93:12:16:e0:a5:e3:e2:d0:26:3e:73:
ce:b1:6a:ac:d0:a4:9b:6a:a3:6c:b4:6a:0f:2e:e9:7b:d0:15:
40:8b:cd:d0:ba:2e:e5:e5:d9:16:98:7f:a4:5c:3b:b5:91:20:
ba:ca:45:ea:09:c5:2b:3e:21:cd:3b:73:93:cc:9e:4f:bd:d7:
13:bc:36:00:8a:a3:93:fa:98:b1:e6:32:a8:92:3a:39:cb:06:
e8:74:2e:ae:90:65:9e:42:7b:ae:ef:af:2f:47:71:43:41:d8:
6e:53:13:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org