Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/5-p-DYUccTapfyjWOAXe6SKD4Lg.roa
File: 5-p-DYUccTapfyjWOAXe6SKD4Lg.roa (raw, json)
Hash identifier: BZRWWXXwTTOcD9xVBBIG+vJYsHyR6UugyC1uQzbs4zQ=
Subject key identifier: E7:EA:7E:0D:85:1C:71:36:A9:7F:28:D6:38:05:DE:E9:22:83:E0:B8
Certificate issuer: /CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Certificate serial: 3EE53E8E
Authority key identifier: 1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/5-p-DYUccTapfyjWOAXe6SKD4Lg.roa
Signing time: Mon 02 May 2022 08:00:15 +0000
ROA not before: Mon 02 May 2022 08:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206977
IP address blocks: 192.150.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1055211150 (0x3ee53e8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f68138d4ec2ea51cacef09ff1058a370a5be190
Validity
Not Before: May 2 08:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7ea7e0d851c7136a97f28d63805dee92283e0b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:95:83:9e:8e:3a:ae:90:c0:f2:6f:f8:b0:23:
fe:97:14:29:6c:c0:ec:a3:58:16:75:9d:7c:c1:4f:
9c:50:1e:b2:b8:b0:e1:70:85:73:c2:0c:56:87:c8:
82:2d:8c:e9:84:f0:00:07:73:1b:0f:9e:ab:b2:6b:
ad:ed:b6:7d:ce:67:b0:7d:61:74:3e:6a:21:40:b0:
ea:04:fd:de:d3:98:c4:2b:2c:ab:3a:8f:e9:e5:db:
b7:6e:86:88:5e:0b:9b:9e:f2:df:62:dc:5c:0a:1c:
0a:b3:3e:a8:ff:00:61:d0:e0:ff:9b:fa:7f:62:97:
92:29:18:75:79:ec:39:3f:08:e3:b7:a5:ce:36:c7:
42:c7:a4:c5:7b:ee:9c:d4:8b:84:7f:90:6b:d9:31:
d2:52:ef:2f:f8:1f:07:b7:2b:2d:77:6e:c9:25:e6:
ed:e9:d6:61:25:17:b0:d7:5c:18:3a:67:b5:27:2c:
75:8e:f1:68:27:6b:d1:ab:f8:92:06:2f:90:a4:71:
74:e4:82:f9:74:27:28:1c:e1:cc:e7:25:a1:64:80:
8a:71:b6:90:ee:10:1a:54:5a:7b:b2:8f:3c:42:b9:
45:ec:f6:ab:cb:72:47:39:92:16:aa:6f:fb:97:24:
91:bd:2e:f5:ce:61:9b:27:f6:51:3b:aa:41:5c:f4:
d3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EA:7E:0D:85:1C:71:36:A9:7F:28:D6:38:05:DE:E9:22:83:E0:B8
X509v3 Authority Key Identifier:
keyid:1F:68:13:8D:4E:C2:EA:51:CA:CE:F0:9F:F1:05:8A:37:0A:5B:E1:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/5-p-DYUccTapfyjWOAXe6SKD4Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b9adf4-f910-4355-bfc8-608564839fd0/1/H2gTjU7C6lHKzvCf8QWKNwpb4ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.150.82.0/24
Signature Algorithm: sha256WithRSAEncryption
25:06:89:43:41:02:96:16:1f:21:34:df:59:5c:57:8b:da:05:
c5:69:a6:f2:25:c6:28:51:d0:ef:ba:01:d1:22:5f:3a:32:71:
6f:65:f4:ac:29:cb:7d:d3:00:ec:de:e9:2c:a8:54:7a:52:dc:
93:81:94:9e:04:f0:e4:b7:b5:d4:ca:47:54:0c:53:f1:c9:51:
19:1e:f7:25:9d:34:43:e6:cd:1d:1c:e1:30:36:63:98:2f:ed:
bc:15:d0:75:80:82:dc:18:c7:dd:99:38:4b:7f:88:b8:29:19:
c0:b8:0a:4b:5b:82:3f:1a:43:4e:f5:80:76:11:7e:47:9a:00:
71:bc:e3:f5:59:6b:5b:f2:cf:fc:18:61:58:76:04:34:0a:b0:
f4:a8:df:4a:30:c6:a2:ed:1e:60:a3:50:59:15:8d:1d:26:e9:
bd:5d:44:b0:aa:e4:2c:5f:da:90:86:24:37:6b:a2:dd:42:bf:
0c:b3:67:51:c0:ab:69:23:d4:cf:f2:c7:59:47:04:57:a0:dd:
68:96:aa:ec:a4:e1:48:34:60:ab:35:49:be:01:45:1d:92:92:
ca:16:91:01:43:27:8b:da:4d:e7:ef:50:23:b7:86:bb:cd:76:
b7:61:36:5a:24:80:03:93:8c:8d:6c:49:ca:ee:14:ec:e1:0c:
4f:a0:c5:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:44 2023 by rpki-client on console-ams.rpki-client.org