Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/5_d2mP1R8uuKd98PbxjaGyGQO68.roa
File: 5_d2mP1R8uuKd98PbxjaGyGQO68.roa (raw, json)
Hash identifier: S12gqj6jAaZEVvx8KUPZSDKlLLT0cCkV+bUJd0JS0zw=
Subject key identifier: E7:F7:76:98:FD:51:F2:EB:8A:77:DF:0F:6F:18:DA:1B:21:90:3B:AF
Certificate issuer: /CN=cda81fe95261904e941237ea4c7cec8f768b046d
Certificate serial: 016897
Authority key identifier: CD:A8:1F:E9:52:61:90:4E:94:12:37:EA:4C:7C:EC:8F:76:8B:04:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zagf6VJhkE6UEjfqTHzsj3aLBG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/5_d2mP1R8uuKd98PbxjaGyGQO68.roa
Signing time: Fri 11 Mar 2022 23:56:22 +0000
ROA not before: Fri 11 Mar 2022 23:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 193.111.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92311 (0x16897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda81fe95261904e941237ea4c7cec8f768b046d
Validity
Not Before: Mar 11 23:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7f77698fd51f2eb8a77df0f6f18da1b21903baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:57:15:5f:2a:c8:a4:c8:4d:21:c5:66:4f:
28:e9:d2:a3:31:18:d3:f3:6a:3e:4e:cb:59:51:ea:
b6:3c:02:bd:49:fb:91:50:2c:16:3e:b4:d5:c6:49:
08:e4:2f:99:4b:97:d1:ec:91:5b:ba:22:07:cd:e4:
1c:4f:6f:bc:3a:24:cd:10:b6:9c:4a:de:8b:31:08:
98:c7:ca:43:b1:8c:98:5a:95:a0:5d:74:cb:c7:59:
27:1b:b5:a6:72:6c:fb:65:36:fa:5d:ee:67:5c:aa:
7a:4c:b2:43:ff:52:e3:8b:a6:4a:00:7f:83:e1:c5:
2c:ff:59:b8:d9:6f:16:47:cc:90:15:08:59:21:90:
07:f7:a3:e5:21:92:10:b1:e5:9f:e2:77:ef:ff:c5:
ed:23:93:7b:20:5e:37:dc:0e:ff:5a:7d:bd:c5:8d:
dc:7f:5c:f7:72:84:f8:96:35:e8:db:3e:97:8d:75:
64:22:a1:74:72:14:88:78:d3:e3:82:87:53:03:26:
1d:55:89:51:ed:93:55:da:49:67:28:ab:f6:85:fb:
85:df:9d:b0:32:2b:23:07:e2:9b:d3:06:67:a4:bc:
2b:b4:73:ba:f0:eb:70:85:b2:20:75:23:c4:e3:9f:
2d:17:a8:96:c6:1e:19:8d:8e:27:af:ee:2b:7b:58:
40:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F7:76:98:FD:51:F2:EB:8A:77:DF:0F:6F:18:DA:1B:21:90:3B:AF
X509v3 Authority Key Identifier:
keyid:CD:A8:1F:E9:52:61:90:4E:94:12:37:EA:4C:7C:EC:8F:76:8B:04:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zagf6VJhkE6UEjfqTHzsj3aLBG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/5_d2mP1R8uuKd98PbxjaGyGQO68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/641aec-da38-4df3-8e71-f7fe3e473b12/1/zagf6VJhkE6UEjfqTHzsj3aLBG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.40.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:9c:35:fb:86:22:9b:f9:82:ae:d8:30:7c:53:f8:80:32:
ae:23:73:26:4e:b9:0c:44:9e:16:b1:76:bc:3f:97:4b:67:a8:
a1:32:5c:f5:35:0a:c4:1e:4a:7d:7c:74:71:bb:5a:2c:f0:30:
85:c7:70:84:2f:57:ed:8a:6b:a2:4e:8d:ed:bf:7d:99:0f:82:
72:39:e5:4f:5d:9d:76:9c:03:38:37:1a:2b:e3:99:e3:d2:75:
43:e9:aa:e9:91:eb:8f:88:ff:62:56:52:58:ba:98:b3:53:3d:
b7:f6:4b:9a:cf:ca:02:ea:ff:d6:d9:6c:c0:d3:41:8b:89:42:
19:5c:5e:22:8c:20:ff:88:6a:21:f7:b0:e8:ca:90:c8:3e:e4:
4a:22:80:6e:ef:bf:fe:23:87:41:de:2d:53:f0:a8:35:c1:d4:
0f:38:ff:0a:32:b4:95:28:08:80:64:84:7f:3f:0c:88:e6:5b:
a1:20:f1:55:55:2d:6c:55:4e:69:cc:43:8c:9c:b2:b7:3a:e6:
a2:9f:0b:ce:01:74:0f:84:f6:06:65:79:0d:1f:8e:19:20:e2:
bf:f8:ff:48:bb:d1:0f:b1:56:e3:50:37:02:79:f2:39:54:6e:
83:05:b5:d0:ad:5f:60:14:6a:0f:67:d2:cb:39:b1:1e:ea:3c:
b8:5e:89:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:49 2023 by rpki-client on console-ams.rpki-client.org