Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/1eSikR2HXPUKwEWohAach5nEJZA.roa
File: 1eSikR2HXPUKwEWohAach5nEJZA.roa (raw, json)
Hash identifier: P0fKwZIrmR4qLTPVXIcoBczXFmZ1qTR65ARHf8boKW0=
Subject key identifier: D5:E4:A2:91:1D:87:5C:F5:0A:C0:45:A8:84:06:9C:87:99:C4:25:90
Certificate issuer: /CN=4e7545eee66daa39443ff9f88f522447f7863783
Certificate serial: 0259356B
Authority key identifier: 4E:75:45:EE:E6:6D:AA:39:44:3F:F9:F8:8F:52:24:47:F7:86:37:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnVF7uZtqjlEP_n4j1IkR_eGN4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/1eSikR2HXPUKwEWohAach5nEJZA.roa
Signing time: Sat 01 Jan 2022 01:58:02 +0000
ROA not before: Sat 01 Jan 2022 01:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58059
IP address blocks: 193.3.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39400811 (0x259356b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7545eee66daa39443ff9f88f522447f7863783
Validity
Not Before: Jan 1 01:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5e4a2911d875cf50ac045a884069c8799c42590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:87:c9:09:b5:6a:02:7c:1d:cc:56:60:52:f8:
2c:1e:b5:bb:fa:ac:67:62:f4:06:1f:21:e3:3b:38:
f2:7a:85:3e:98:e3:1a:32:fe:34:b2:73:34:f3:20:
cc:e8:de:29:fd:2b:9a:de:a1:72:a6:0f:2f:07:78:
cf:7b:f8:3d:2b:79:d9:05:fd:32:f5:0c:16:a2:d1:
5b:f8:af:f8:0c:9b:b5:da:94:1d:d6:67:ae:5d:01:
29:b4:c1:3d:1d:e3:c6:b5:28:2c:a3:a7:7c:50:f8:
25:03:88:cf:ba:9e:54:d9:0e:68:3f:66:c8:07:61:
cc:1e:b8:20:97:a3:45:6b:d6:65:d4:8c:0a:12:6e:
6b:87:c6:7e:32:0c:34:ec:91:29:fe:ce:a3:4c:01:
c8:16:12:a2:0d:ca:b8:47:6f:9c:bc:31:ea:d4:b1:
9e:6e:10:86:40:9a:b6:71:14:91:cc:18:28:08:59:
e9:eb:53:ef:d0:b6:e5:84:73:6c:e2:84:58:be:1c:
8f:d9:90:61:f6:6c:d2:d3:4c:35:9a:f6:a4:db:9d:
90:5f:9e:ef:62:da:93:24:4f:87:78:15:73:89:f6:
72:29:cb:04:8d:4a:10:25:fe:ae:75:b0:01:f5:3e:
58:b9:c3:55:1a:e1:f8:0d:76:18:d0:8e:a4:4d:61:
2a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E4:A2:91:1D:87:5C:F5:0A:C0:45:A8:84:06:9C:87:99:C4:25:90
X509v3 Authority Key Identifier:
keyid:4E:75:45:EE:E6:6D:AA:39:44:3F:F9:F8:8F:52:24:47:F7:86:37:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnVF7uZtqjlEP_n4j1IkR_eGN4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/1eSikR2HXPUKwEWohAach5nEJZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a53644-9da6-4d29-b9b6-e78cfa79eff1/1/TnVF7uZtqjlEP_n4j1IkR_eGN4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.35.0/24
Signature Algorithm: sha256WithRSAEncryption
56:af:d5:c8:fe:b3:1f:4e:81:27:c1:fc:ff:ed:4a:ed:f4:32:
c7:3b:bb:91:63:6c:fe:68:4d:05:e6:57:a2:35:d0:6d:8d:84:
51:2a:53:83:af:72:d9:42:e3:5f:e1:2d:69:f9:fb:8d:18:35:
ae:9e:93:0e:21:c6:cd:d0:40:c0:10:3a:31:5b:18:ba:a8:4f:
f9:0b:52:56:d2:bd:6a:58:f9:85:6c:55:f6:e3:60:cb:0e:09:
e1:20:1c:c4:1a:d0:19:30:34:e8:65:b7:71:c3:07:b9:98:e1:
10:d3:11:c5:10:30:78:45:2b:e2:c9:d0:3a:12:05:18:c0:5b:
00:fd:f0:26:b3:9a:ee:03:ce:ea:7a:76:70:a9:60:d2:c2:89:
9f:02:15:58:20:73:05:b3:86:0d:2a:f7:51:bc:a2:92:1d:a9:
c1:31:1d:e5:42:c2:d6:af:7a:6d:6b:97:28:60:a1:eb:11:30:
c5:f0:94:c6:5b:83:55:d3:b8:47:b9:f9:b1:0f:2c:7e:c3:94:
d4:b8:10:f2:db:3d:e1:24:97:ab:79:8e:0c:c9:76:d5:76:a1:
c0:ef:c8:63:53:4d:a7:11:0f:30:83:1d:cb:72:64:2e:bd:9b:
fc:29:81:35:f0:e5:21:c8:cb:9e:a4:b3:87:37:4d:07:24:11:
ce:e5:4c:c8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAlk1azANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZTc1NDVlZWU2NmRhYTM5NDQzZmY5Zjg4ZjUyMjQ0N2Y3ODYzNzgzMB4XDTIyMDEw
MTAxNTgwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDVlNGEyOTExZDg3
NWNmNTBhYzA0NWE4ODQwNjljODc5OWM0MjU5MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKiHyQm1agJ8HcxWYFL4LB61u/qsZ2L0Bh8h4zs48nqFPpjj
GjL+NLJzNPMgzOjeKf0rmt6hcqYPLwd4z3v4PSt52QX9MvUMFqLRW/iv+AybtdqU
HdZnrl0BKbTBPR3jxrUoLKOnfFD4JQOIz7qeVNkOaD9myAdhzB64IJejRWvWZdSM
ChJua4fGfjIMNOyRKf7Oo0wByBYSog3KuEdvnLwx6tSxnm4QhkCatnEUkcwYKAhZ
6etT79C25YRzbOKEWL4cj9mQYfZs0tNMNZr2pNudkF+e72LakyRPh3gVc4n2cinL
BI1KECX+rnWwAfU+WLnDVRrh+A12GNCOpE1hKuECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTV5KKRHYdc9QrARaiEBpyHmcQlkDAfBgNVHSMEGDAWgBROdUXu5m2qOUQ/
+fiPUiRH94Y3gzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RuVkY3dVp0cWpsRVBfbjRqMUlrUl9lR040TS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTUvYTUzNjQ0LTlkYTYtNGQyOS1iOWI2LWU3OGNmYTc5ZWZmMS8x
LzFlU2lrUjJIWFBVS3dFV29oQWFjaDVuRUpaQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUv
YTUzNjQ0LTlkYTYtNGQyOS1iOWI2LWU3OGNmYTc5ZWZmMS8xL1RuVkY3dVp0cWps
RVBfbjRqMUlrUl9lR040TS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEDIzANBgkqhkiG9w0BAQsFAAOC
AQEAVq/VyP6zH06BJ8H8/+1K7fQyxzu7kWNs/mhNBeZXojXQbY2EUSpTg69y2ULj
X+Etafn7jRg1rp6TDiHGzdBAwBA6MVsYuqhP+QtSVtK9alj5hWxV9uNgyw4J4SAc
xBrQGTA06GW3ccMHuZjhENMRxRAweEUr4snQOhIFGMBbAP3wJrOa7gPO6np2cKlg
0sKJnwIVWCBzBbOGDSr3Ubyikh2pwTEd5ULC1q96bWuXKGCh6xEwxfCUxluDVdO4
R7n5sQ8sfsOU1LgQ8ts94SSXq3mODMl21XahwO/IY1NNpxEPMIMdy3JkLr2b/CmB
NfDlIcjLnqSzhzdNByQRzuVMyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-fra.rpki-client.org