Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/STZcbC3uiP_zYs2Ibqn1BmYwykc.roa
File: STZcbC3uiP_zYs2Ibqn1BmYwykc.roa (raw, json)
Hash identifier: qUa6LZjNcCDnEyAjSX8hxYgMdX0WByt727ejQkpsSqY=
Subject key identifier: 49:36:5C:6C:2D:EE:88:FF:F3:62:CD:88:6E:A9:F5:06:66:30:CA:47
Certificate issuer: /CN=5b95a94adad3a2896c72074d667c1b62075958cb
Certificate serial: 01AC17AB
Authority key identifier: 5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/STZcbC3uiP_zYs2Ibqn1BmYwykc.roa
Signing time: Sun 22 May 2022 14:00:28 +0000
ROA not before: Sun 22 May 2022 14:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34933
IP address blocks: 193.238.226.0/24 maxlen: 24
193.238.225.0/24 maxlen: 24
193.238.224.0/24 maxlen: 24
193.238.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28055467 (0x1ac17ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b95a94adad3a2896c72074d667c1b62075958cb
Validity
Not Before: May 22 14:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49365c6c2dee88fff362cd886ea9f5066630ca47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ee:57:e0:cd:6a:74:17:e3:a9:2a:6c:7f:35:
2a:52:1b:bf:28:ec:de:b3:6d:e6:c6:df:df:28:a8:
16:b0:34:47:c7:44:4a:83:dc:09:74:d9:56:d8:22:
ba:1c:8a:c0:d6:16:05:b2:6d:85:a0:ae:b9:7a:d8:
28:60:8a:82:92:46:43:15:64:14:1e:83:f3:41:13:
3a:90:30:2a:d0:06:16:df:53:21:c6:61:8b:df:63:
1f:8b:96:c1:c3:2a:c5:c2:54:e0:5b:e7:99:8e:bf:
6f:36:c9:08:cc:37:f8:e2:36:7b:b9:f8:87:e1:3a:
af:5d:23:a5:b1:e7:c7:91:fc:23:93:ab:7d:e9:d2:
f5:23:b2:00:ee:f4:02:54:cb:1e:54:ca:5b:9b:02:
25:e9:b8:20:ed:2d:08:c4:69:3b:95:ce:6e:0a:6f:
34:58:f1:a6:10:7f:28:5e:73:cb:bd:97:e8:da:76:
02:c5:5a:7b:94:59:d3:3f:3b:f8:46:59:07:a2:92:
11:c5:12:4f:43:97:60:5b:3d:3e:9c:7e:a7:65:45:
36:79:fc:1a:1c:f7:8b:8b:86:45:b0:32:1a:92:23:
69:ea:fd:0b:a9:06:04:36:8a:40:88:9c:08:a2:65:
66:35:95:46:d9:b9:94:c7:c0:4d:08:a1:f9:ac:8c:
ae:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:36:5C:6C:2D:EE:88:FF:F3:62:CD:88:6E:A9:F5:06:66:30:CA:47
X509v3 Authority Key Identifier:
keyid:5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/STZcbC3uiP_zYs2Ibqn1BmYwykc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/W5WpStrToolscgdNZnwbYgdZWMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.224.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:8a:69:74:40:3e:05:e2:b7:b8:36:d8:e4:aa:cb:bd:7b:08:
a9:ff:a6:81:98:70:d6:53:0a:c4:d6:e8:2f:f9:4d:c4:01:a2:
46:66:c0:8e:10:3d:0d:42:5c:8a:f9:d1:07:2f:a1:7f:b7:cd:
31:7e:9e:19:3a:76:e1:32:21:5e:f9:28:af:67:75:f0:6b:d2:
0f:d6:77:51:b6:98:b8:09:b4:12:70:c5:3c:a9:f5:cd:3a:e7:
4e:cd:fc:d9:fe:34:e7:92:5d:ee:80:9f:03:9d:93:3d:36:9c:
08:5e:76:c8:01:f0:49:7a:a2:43:08:3b:85:a4:46:95:f3:68:
da:a0:64:55:4e:ca:71:ac:13:74:0b:34:16:ee:8c:09:7a:9c:
83:13:8e:ee:2c:c6:0f:07:6e:75:fd:9d:a2:84:04:d3:e4:c6:
18:1a:05:be:06:be:f4:df:91:1d:64:e8:30:76:cd:47:8e:ce:
10:b2:33:09:22:a4:85:f6:c5:68:ae:18:33:e5:2e:0c:39:a9:
00:36:8f:79:3a:a9:8c:b2:fd:e2:b0:5c:ad:a6:06:8e:7c:3b:
82:54:df:45:90:44:36:2c:22:68:54:69:be:d5:da:46:5d:0f:
08:34:47:63:cd:52:db:36:c2:3a:33:76:28:67:77:e2:89:8d:
b8:69:2d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:08 2023 by rpki-client on console-fra.rpki-client.org