Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/5fZPgeoa6Yjk8ttFbeE-7D1I5B4.roa
File: 5fZPgeoa6Yjk8ttFbeE-7D1I5B4.roa (raw, json)
Hash identifier: p/L06qMaWqAT2PMLoTBOzqPDURp7ln+g2iqMqhVC0O0=
Subject key identifier: E5:F6:4F:81:EA:1A:E9:88:E4:F2:DB:45:6D:E1:3E:EC:3D:48:E4:1E
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 02C4E9C4
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/5fZPgeoa6Yjk8ttFbeE-7D1I5B4.roa
Signing time: Sat 01 Jan 2022 11:58:05 +0000
ROA not before: Sat 01 Jan 2022 11:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209652
IP address blocks: 194.31.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46459332 (0x2c4e9c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Jan 1 11:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5f64f81ea1ae988e4f2db456de13eec3d48e41e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:da:2f:99:ea:ab:a3:fd:46:c1:97:0f:e0:73:
24:57:1f:57:7e:7f:88:36:cd:22:58:61:e5:cf:0b:
48:ff:8a:79:41:75:6d:b3:69:22:de:e3:d3:5f:b1:
a7:a9:99:c7:76:1c:e0:3c:59:cd:2b:a7:6f:f9:99:
53:5a:9d:43:50:cf:c3:51:d0:df:27:b6:f8:ac:93:
8b:45:cc:ef:8e:37:e5:4f:23:81:40:77:eb:9f:8f:
b1:60:bb:eb:31:c1:b5:87:e6:76:cd:16:3e:61:06:
e1:b2:9a:d3:0b:a6:24:04:f9:e2:f3:cb:29:f5:b7:
56:7a:7f:8e:cd:70:76:18:2e:d2:f2:1d:19:8b:73:
ab:45:25:c2:dc:52:6f:2b:c6:d2:91:fe:21:af:6c:
8c:d1:90:d6:6d:a3:7b:c1:10:11:e3:05:ba:a0:7f:
c7:bb:5f:a1:24:40:43:4c:6d:13:f2:cd:23:79:22:
8a:f2:f4:91:0f:9c:c8:f5:f2:e3:9f:aa:d6:51:dc:
7b:d5:8b:3c:89:8e:ac:40:a9:b8:2d:f7:6a:7c:e5:
8e:a6:8b:9b:26:d1:82:75:08:d8:c3:8b:04:a0:7f:
98:11:bc:8a:41:e6:dd:fc:85:af:e0:ad:8c:1e:6d:
f7:e8:c5:db:21:bb:81:f9:6f:75:76:fd:d5:dd:40:
65:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F6:4F:81:EA:1A:E9:88:E4:F2:DB:45:6D:E1:3E:EC:3D:48:E4:1E
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/5fZPgeoa6Yjk8ttFbeE-7D1I5B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.156.0/22
Signature Algorithm: sha256WithRSAEncryption
42:08:f1:35:1d:88:e7:ff:85:28:fd:ed:9d:12:95:d3:71:46:
af:00:8c:8b:12:13:b4:7c:1e:e1:70:e5:bb:87:ee:a7:56:b7:
ff:f9:d2:44:14:b3:91:24:d0:cb:11:65:f1:1f:fa:61:13:a2:
46:4e:bc:16:79:17:4f:32:a4:bf:91:df:f0:9b:b3:a7:7f:a3:
d4:62:d2:a2:f4:0a:26:27:01:30:a9:57:dc:9e:e9:3f:60:f4:
72:e8:98:1e:f8:87:fd:43:c7:f4:c6:7f:17:0b:3c:bf:d6:80:
b7:83:3c:fe:ca:60:bd:de:ab:86:38:b0:6e:41:08:63:21:7d:
96:ae:b1:b3:fc:21:1f:24:64:66:58:d5:e9:f7:74:5c:ad:0c:
5f:53:68:2a:19:5d:6f:c3:35:9e:43:97:94:c5:15:13:9f:73:
9d:71:a9:d1:f9:d8:f6:9c:47:6c:2d:c6:dc:b2:87:48:e4:de:
1f:5c:aa:4b:9e:a0:d9:a6:19:93:6d:8a:bf:5b:18:89:ed:43:
54:15:a3:83:58:ef:13:dd:1c:ba:ce:78:9d:ad:5e:ce:96:89:
92:47:0d:22:a7:6f:23:a4:3d:e3:eb:8e:6e:a3:59:b7:b1:49:
7d:77:bd:c5:c6:dc:ff:12:9f:12:98:ef:f5:14:0d:02:d0:88:
0a:31:a6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-ams.rpki-client.org