Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/_PNsaZ3kWoe_U916YOoET-ku_5E.roa
File: _PNsaZ3kWoe_U916YOoET-ku_5E.roa (raw, json)
Hash identifier: sJrn9jj6KdwRjzRYRKzh759iwjQO6zBS8uXrkP3W0EE=
Subject key identifier: FC:F3:6C:69:9D:E4:5A:87:BF:53:DD:7A:60:EA:04:4F:E9:2E:FF:91
Certificate issuer: /CN=5b95a94adad3a2896c72074d667c1b62075958cb
Certificate serial: 6BA5D1
Authority key identifier: 5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/_PNsaZ3kWoe_U916YOoET-ku_5E.roa
Signing time: Sat 01 Jan 2022 00:52:30 +0000
ROA not before: Sat 01 Jan 2022 00:52:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.238.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7054801 (0x6ba5d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b95a94adad3a2896c72074d667c1b62075958cb
Validity
Not Before: Jan 1 00:52:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcf36c699de45a87bf53dd7a60ea044fe92eff91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:d2:0c:0a:4f:24:6e:f2:8b:10:a3:bc:58:
70:4c:85:a8:30:73:e7:1c:88:35:13:8a:ac:4e:c7:
0f:fa:8a:c7:20:0d:10:63:fd:6f:f8:b1:71:84:bc:
95:84:5a:9f:02:4d:a7:6d:4b:35:45:3f:dd:f0:2b:
c7:a1:f1:9f:8a:23:34:78:ab:bf:8a:68:65:07:6b:
24:74:c5:09:1e:e3:c8:41:31:6d:f3:36:9c:d5:1e:
04:6f:ac:16:a7:79:49:18:7b:f7:b0:8e:59:5d:dd:
88:02:5e:f5:b3:3f:d2:c5:90:1c:18:09:45:36:c6:
35:34:68:98:ac:10:3b:5a:86:eb:a8:be:0d:66:0e:
a6:7d:44:3b:ff:ad:b7:ba:c5:6d:d7:9e:9a:65:97:
84:63:1b:32:f4:38:ee:b9:a0:0d:fd:07:32:04:b5:
a2:9c:7b:71:fe:bd:3a:15:3e:99:f8:39:37:68:df:
1d:50:9f:bf:55:ef:cc:3c:11:10:54:9d:80:5a:b8:
af:45:a9:1e:43:2d:89:8a:5b:bc:13:b9:36:69:42:
c4:a3:7b:0d:89:e1:05:b0:26:a1:cd:9e:76:2e:97:
06:ce:2e:11:90:8e:f0:20:c5:1c:a8:6f:70:35:5b:
65:f8:06:7f:46:09:92:53:db:bc:0b:fe:a5:a4:fe:
41:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F3:6C:69:9D:E4:5A:87:BF:53:DD:7A:60:EA:04:4F:E9:2E:FF:91
X509v3 Authority Key Identifier:
keyid:5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/_PNsaZ3kWoe_U916YOoET-ku_5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/W5WpStrToolscgdNZnwbYgdZWMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.226.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:97:a0:c3:f4:64:58:09:ed:92:fe:55:28:0f:49:db:32:a3:
cd:0b:a5:4d:33:01:f0:b8:47:8f:fd:09:9d:d9:7e:1d:ca:df:
aa:99:24:b2:5b:28:b6:6b:d2:ac:9f:ba:40:7f:80:19:b6:55:
d5:3c:3b:89:bf:15:55:b1:9a:85:93:5a:14:30:5f:06:99:42:
a1:db:9c:6f:20:88:0f:ff:28:0f:71:70:9a:ce:2b:c9:46:12:
71:39:ad:f8:95:76:d6:dc:ab:8c:11:d9:e8:c1:9c:b3:ce:3e:
25:19:cf:aa:d9:81:3b:1f:25:d2:fe:d8:0c:38:3c:05:0b:f8:
cf:32:7a:f6:67:ee:33:83:0d:d8:7b:4f:f5:e3:57:a5:db:6d:
03:47:20:e0:a0:c2:46:1c:35:32:64:fb:1f:30:ba:b3:ce:a7:
ee:9c:0d:8b:ea:60:ae:c3:2b:34:c8:c1:cf:1f:df:7a:a5:d2:
14:45:8f:42:80:2c:5a:39:32:83:a0:80:b5:13:96:92:c9:83:
ea:d5:50:90:3d:81:26:fd:c9:e9:88:68:2b:5f:0e:c6:a0:f6:
8e:6a:ee:99:51:98:2d:dd:75:95:76:a3:94:85:8c:e5:9b:77:
48:b7:1b:e9:b8:aa:c4:78:b4:34:0a:3f:8c:c5:0e:64:cb:bd:
11:65:bb:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:08 2023 by rpki-client on console-fra.rpki-client.org