Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/chUqy3c6WWjyXdNRPV3aejjJIoI.roa
File: chUqy3c6WWjyXdNRPV3aejjJIoI.roa (raw, json)
Hash identifier: PFDoiiWPZxPFY6i7IuzqU4GzZlCvTutjZSsf9pTFE2Y=
Subject key identifier: 72:15:2A:CB:77:3A:59:68:F2:5D:D3:51:3D:5D:DA:7A:38:C9:22:82
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 0183FA2D8A3D15136B9E2398444A593A9D03
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/chUqy3c6WWjyXdNRPV3aejjJIoI.roa
Signing time: Fri 21 Oct 2022 10:53:51 +0000
ROA not before: Fri 21 Oct 2022 10:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400509
IP address blocks: 185.2.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:2d:8a:3d:15:13:6b:9e:23:98:44:4a:59:3a:9d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Oct 21 10:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72152acb773a5968f25dd3513d5dda7a38c92282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:15:71:cf:67:7a:5a:19:ae:9d:75:c3:30:
36:8e:a2:aa:32:92:16:cf:e8:16:23:5e:e0:5a:a9:
91:14:cd:b8:21:43:36:52:af:6e:e8:dd:5b:4b:d2:
5d:70:cb:5d:4e:56:79:98:4c:93:48:4e:5c:6d:42:
cf:7f:2a:e1:ba:6b:5d:14:42:e8:2d:51:13:dd:f7:
8c:8a:67:82:b0:45:0b:1b:0f:a7:ee:28:a7:6c:01:
77:ee:83:73:6a:4e:71:d4:1e:e2:c3:58:c6:06:0c:
04:04:aa:4c:a6:5c:8c:69:5f:34:82:45:1f:46:a8:
88:93:01:b2:fb:a8:d2:74:05:24:54:61:ab:db:4f:
86:39:3d:3e:f4:66:6e:5d:c8:86:7a:66:a3:ab:b0:
af:fe:ac:77:44:18:8a:ea:63:e0:3f:67:3a:fa:e0:
42:8e:6c:4e:59:77:34:23:72:aa:9a:57:d3:b5:06:
55:3b:59:90:37:9b:15:d6:9d:0d:72:cb:5f:e6:75:
08:0f:57:2e:5e:4c:89:57:1c:11:1e:ba:9c:75:4d:
9a:cb:2e:14:83:59:0a:df:33:ca:76:9a:ba:17:07:
c6:48:2c:88:f6:a0:0c:02:5c:8b:61:44:bc:ca:be:
4c:07:7e:fb:5b:33:00:77:96:bf:73:99:3f:c6:f1:
39:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:15:2A:CB:77:3A:59:68:F2:5D:D3:51:3D:5D:DA:7A:38:C9:22:82
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/chUqy3c6WWjyXdNRPV3aejjJIoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.49.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cb:cb:8f:96:8c:4b:ae:55:ef:ce:d6:da:ca:98:70:98:aa:
63:85:28:38:0c:00:9a:b8:94:fa:6f:e4:01:da:8b:1e:6a:53:
a2:e3:21:e4:6b:68:6f:41:a7:95:4c:da:6d:6e:0f:b3:60:88:
d9:cc:a7:b5:a7:bb:35:83:32:e1:31:f1:1d:af:39:c6:8c:f4:
7e:51:ca:58:c4:33:14:84:77:6b:e2:9d:8a:7d:1c:db:f9:1c:
f0:25:9c:16:ce:63:6a:00:ba:d2:c0:12:5a:1b:a8:5f:25:81:
ea:cd:7e:c9:f7:84:63:8c:36:84:35:79:14:a2:19:a0:4d:ed:
e3:13:a6:84:43:08:5f:ed:eb:bf:6d:14:5f:36:c8:02:b3:7e:
5e:9e:a2:8e:f2:3a:d6:05:cc:49:da:d9:62:bf:1a:d7:11:c1:
ba:ab:fb:6e:f0:09:6d:0c:44:37:a5:39:44:80:04:6a:8b:ff:
c2:de:7f:bd:7a:45:cb:7e:bd:c2:ef:16:97:70:a8:50:4d:0e:
00:0f:1b:99:ee:48:63:b6:06:f4:52:fc:a0:94:43:f0:a0:22:
86:64:9d:0e:bb:8f:ec:43:55:d7:35:f3:5b:44:92:d6:bd:ce:
c8:08:ce:88:54:0e:3d:0c:22:8d:ef:17:fa:e2:9e:93:7d:a5:
76:02:af:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-fra.rpki-client.org