Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/tBVs1FYp5VPUqP3QWCr2DqBSQRY.roa
File: tBVs1FYp5VPUqP3QWCr2DqBSQRY.roa (raw, json)
Hash identifier: 2LHYtWT8RYepm/YtaHhdImo5C5whc6uYu3YcLgCTLiE=
Subject key identifier: B4:15:6C:D4:56:29:E5:53:D4:A8:FD:D0:58:2A:F6:0E:A0:52:41:16
Certificate issuer: /CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Certificate serial: 0184F149E601F7DF0A982DC46AB51F4818F9
Authority key identifier: 5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/tBVs1FYp5VPUqP3QWCr2DqBSQRY.roa
Signing time: Thu 08 Dec 2022 10:31:02 +0000
ROA not before: Thu 08 Dec 2022 10:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51983
IP address blocks: 194.88.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f1:49:e6:01:f7:df:0a:98:2d:c4:6a:b5:1f:48:18:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aedcb334d39e797817e2eb47703c018b4dc49d5
Validity
Not Before: Dec 8 10:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4156cd45629e553d4a8fdd0582af60ea0524116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:73:bb:19:47:6e:91:9b:5b:2b:aa:ff:e4:f0:
c8:89:1f:11:db:cc:3a:13:41:4d:3b:25:35:07:92:
b9:1d:b2:de:19:f0:ef:a2:bf:c6:28:a9:17:0c:59:
83:1c:69:42:ef:5c:f7:ea:5a:0c:7b:ab:c1:19:ae:
04:c0:f7:3c:e6:87:d1:e2:40:1d:37:7c:a7:88:54:
0a:f3:31:9b:a7:7c:1d:d4:8e:e6:f5:49:d1:98:65:
0e:cf:18:83:80:12:b8:0d:d4:24:98:a1:1f:38:89:
f8:b3:85:fc:85:54:0f:81:f4:40:27:06:32:c1:04:
51:42:73:0d:80:90:bc:16:3c:37:53:70:f1:93:2c:
26:e2:d5:52:51:a9:93:67:12:0a:b0:9b:20:ae:ac:
0a:27:05:4d:e0:61:c2:dc:81:e9:f2:5b:32:4e:ee:
bf:c9:50:68:f5:dc:4b:30:75:37:03:c6:ce:6c:1a:
08:59:1f:af:2b:1c:b3:54:bf:e4:11:b6:85:25:bc:
3b:ad:d6:b0:f7:33:7e:e6:c1:07:12:a7:6a:3f:4d:
cb:03:35:05:e5:0e:bb:7c:5d:b4:69:83:8c:86:2b:
d8:0f:c7:3a:45:3a:ea:51:98:2a:ed:b4:0d:68:12:
d2:65:c6:3a:93:39:77:2c:43:57:6b:04:7d:ad:57:
ed:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:15:6C:D4:56:29:E5:53:D4:A8:FD:D0:58:2A:F6:0E:A0:52:41:16
X509v3 Authority Key Identifier:
keyid:5A:ED:CB:33:4D:39:E7:97:81:7E:2E:B4:77:03:C0:18:B4:DC:49:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu3LM00555eBfi60dwPAGLTcSdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/tBVs1FYp5VPUqP3QWCr2DqBSQRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/b95ca0-853f-48ab-9b41-e0aee1bbf9e3/1/Wu3LM00555eBfi60dwPAGLTcSdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.6.0/23
Signature Algorithm: sha256WithRSAEncryption
90:83:e8:be:43:80:65:14:f4:ca:b5:bc:f6:68:75:8b:e4:55:
3d:ad:41:b5:0c:cf:30:fa:99:ab:10:e0:0e:c3:fc:d5:69:34:
af:03:d4:b1:24:1c:cf:bf:72:18:6f:7d:f0:e6:b2:2f:75:8b:
82:5c:48:01:ec:cf:62:2e:c5:d0:85:13:12:87:1c:18:85:1c:
e7:16:24:c5:c3:b9:d9:43:3b:2c:f4:6a:0b:7a:01:12:9f:80:
d6:02:4f:7c:b0:c3:19:fc:e1:47:af:cb:23:24:44:6b:66:26:
03:1f:7a:fc:5e:35:60:64:34:4d:6f:41:9a:86:3e:d3:d5:67:
44:c0:dc:1c:6b:ac:bc:79:a6:39:05:5d:0a:02:59:14:7c:47:
55:00:b7:3e:b6:eb:ca:9c:fa:8e:2f:e3:92:18:a9:ab:c9:13:
b6:82:a3:57:63:20:c7:6c:89:1d:6d:be:bd:33:23:e1:2f:aa:
e9:31:03:a9:3f:fd:7d:07:40:f2:92:d3:3b:11:68:07:d2:12:
e2:b8:90:33:91:a4:13:81:1b:ab:fb:ca:d0:55:f4:3b:19:a0:
c2:e8:4d:9f:1e:d2:a4:b0:bc:29:52:63:7f:21:7a:a8:a5:89:
8d:24:92:b0:d4:ef:1e:62:87:6c:63:78:60:7a:52:6a:2b:be:
1d:a6:a7:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-ams.rpki-client.org