Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/6b78a5-4c5c-4383-87fd-0cf74be303ff/1/5-5DNS_3Rqly0lm48EXS0lXOc2Y.roa
File: 5-5DNS_3Rqly0lm48EXS0lXOc2Y.roa (raw, json)
Hash identifier: MDRrpamN/6aQ5m+XUwBaj4EtKPFtpWbGebXhXj3+L0o=
Subject key identifier: E7:EE:43:35:2F:F7:46:A9:72:D2:59:B8:F0:45:D2:D2:55:CE:73:66
Certificate issuer: /CN=e19db0c5b2d9610ef586e97fba1fca875006f3da
Certificate serial: 023CB368
Authority key identifier: E1:9D:B0:C5:B2:D9:61:0E:F5:86:E9:7F:BA:1F:CA:87:50:06:F3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Z2wxbLZYQ71hul_uh_Kh1AG89o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/6b78a5-4c5c-4383-87fd-0cf74be303ff/1/5-5DNS_3Rqly0lm48EXS0lXOc2Y.roa
Signing time: Sat 01 Jan 2022 09:56:10 +0000
ROA not before: Sat 01 Jan 2022 09:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 193.22.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37532520 (0x23cb368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e19db0c5b2d9610ef586e97fba1fca875006f3da
Validity
Not Before: Jan 1 09:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7ee43352ff746a972d259b8f045d2d255ce7366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:18:ad:39:0b:43:33:4c:36:56:74:eb:a9:5b:
40:47:51:1b:01:a0:86:6a:5f:9e:32:1d:ca:48:97:
ff:69:03:ac:a3:3f:3d:68:21:e9:45:18:18:ee:62:
af:7e:13:f8:3d:bb:df:5c:65:48:73:30:20:d6:d0:
de:e6:05:83:aa:52:84:78:e2:a2:a0:29:82:aa:03:
e0:c7:6d:70:67:eb:88:3c:3c:ec:af:1b:a1:4d:9c:
d9:fa:3f:89:83:9d:4e:66:5a:b2:8c:40:bb:b5:ae:
99:e5:cd:dc:b9:be:87:0d:66:8f:dd:d6:a9:70:44:
fe:3a:fc:3c:47:dc:e9:cb:0c:82:12:6b:7e:63:33:
ac:bf:ca:d5:9c:bf:27:83:69:01:c7:a6:7c:d2:f0:
73:31:ec:c8:f1:0f:ac:be:cf:79:45:12:12:a8:52:
17:a9:d8:17:f9:bc:e3:aa:5e:12:8a:60:f4:11:b7:
dd:35:db:d4:50:a4:d5:0f:ba:38:c7:0f:29:b1:c3:
c9:a7:10:51:55:69:3a:5a:ff:28:b0:27:88:51:f1:
5e:62:84:f4:04:c3:99:ba:47:76:fd:51:97:b0:04:
29:07:8e:d1:3e:62:1c:79:01:9a:ad:73:2b:69:34:
7e:e8:c5:22:ce:5f:34:0f:9d:91:76:21:4f:e2:66:
6e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EE:43:35:2F:F7:46:A9:72:D2:59:B8:F0:45:D2:D2:55:CE:73:66
X509v3 Authority Key Identifier:
keyid:E1:9D:B0:C5:B2:D9:61:0E:F5:86:E9:7F:BA:1F:CA:87:50:06:F3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Z2wxbLZYQ71hul_uh_Kh1AG89o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6b78a5-4c5c-4383-87fd-0cf74be303ff/1/5-5DNS_3Rqly0lm48EXS0lXOc2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/6b78a5-4c5c-4383-87fd-0cf74be303ff/1/4Z2wxbLZYQ71hul_uh_Kh1AG89o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.14.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:70:62:f5:1b:4b:a0:e5:63:0a:ac:ae:e2:c7:e4:fc:e7:88:
df:38:97:03:5d:d4:4d:5f:21:58:af:fb:a3:6e:45:b4:23:ef:
33:51:25:a2:ae:fe:a1:d9:fc:07:7f:f9:a2:d5:0f:e5:26:d7:
c8:82:2b:57:32:95:da:ec:be:ba:98:70:fa:af:ca:b4:80:5f:
ef:72:b1:0d:b0:85:98:43:ee:58:16:d5:1c:55:cc:be:77:e1:
80:04:ff:df:ff:88:f7:2a:ef:21:ea:8e:10:ef:2f:ad:6d:7d:
e2:90:63:bb:95:e9:92:4a:c1:92:9c:79:4c:e0:cb:cf:8f:84:
75:fc:af:01:f1:35:04:2c:be:ed:50:38:c5:51:92:9f:f4:cf:
33:5f:3e:0b:30:9c:9e:a5:63:0d:a4:95:2c:f4:92:5f:75:94:
2c:4e:9c:37:6b:61:28:b6:48:49:e6:ae:ae:50:68:e8:ca:45:
bc:5e:91:54:13:b0:46:98:d9:2b:a8:ac:e2:22:79:2b:3a:b3:
bb:46:ce:26:38:3c:87:fe:a5:e1:5f:1a:3a:21:29:93:93:de:
3f:75:82:b3:6f:1a:7b:e2:3e:3b:9e:bb:d5:cd:a1:e9:ef:8f:
3c:60:62:c0:0f:0c:ff:09:85:d7:db:5e:8e:bf:3a:a3:be:be:
7e:a5:02:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:13 2023 by rpki-client on console-ams.rpki-client.org