Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/l5E_173xK-qeZlRf30s_Jd48a9w.roa
File: l5E_173xK-qeZlRf30s_Jd48a9w.roa (raw, json)
Hash identifier: jKhwnCPDRKGStXpNTjS+ll9RPk+woedVAsp6gsH4zLU=
Subject key identifier: 97:91:3F:D7:BD:F1:2B:EA:9E:66:54:5F:DF:4B:3F:25:DE:3C:6B:DC
Certificate issuer: /CN=057c6f47bc3099a4ec86bec29605269140ad7319
Certificate serial: 0109FD87
Authority key identifier: 05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/l5E_173xK-qeZlRf30s_Jd48a9w.roa
Signing time: Sat 01 Jan 2022 02:59:02 +0000
ROA not before: Sat 01 Jan 2022 02:59:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.99.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17431943 (0x109fd87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=057c6f47bc3099a4ec86bec29605269140ad7319
Validity
Not Before: Jan 1 02:59:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97913fd7bdf12bea9e66545fdf4b3f25de3c6bdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5b:da:ac:27:61:68:c0:f7:2f:01:dc:c8:c4:
1a:66:e9:ef:93:4d:98:45:23:28:91:32:26:a4:14:
26:19:1d:56:c6:77:90:55:b5:71:3d:61:d9:07:c9:
7a:a5:6a:ff:b9:2c:f3:ad:23:57:88:b9:13:ce:10:
55:a2:20:f9:26:bb:45:7d:80:55:c2:e7:dc:89:c8:
67:a4:84:a9:a5:a9:2d:e6:03:4d:9f:62:2a:60:36:
16:1d:cf:62:62:30:e9:84:9c:19:4d:f5:e2:97:ec:
4c:d3:04:2c:4d:7e:07:48:30:67:3e:dd:3e:a7:d4:
ec:e4:ab:10:f7:5a:34:a0:2b:1e:67:a8:1c:51:53:
91:8a:6d:bf:c1:e4:6b:9c:33:2a:42:c5:48:0d:fb:
5f:f7:44:f8:de:31:6f:1f:63:66:95:8b:cc:e0:00:
ca:d7:29:15:ed:e6:69:c1:d4:ec:2f:26:41:ec:11:
d9:5e:7c:df:58:e2:27:25:b4:15:ad:0a:fd:7c:81:
7f:7e:40:20:81:ae:6d:57:c5:a3:ab:59:d8:f7:d1:
54:be:80:bf:d8:ca:77:f9:b1:37:74:f4:21:8d:66:
a2:67:12:20:13:2c:c0:3d:fc:26:8d:a1:b8:58:95:
cf:5f:50:37:55:64:f4:a0:47:27:1c:a8:49:f0:11:
82:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:91:3F:D7:BD:F1:2B:EA:9E:66:54:5F:DF:4B:3F:25:DE:3C:6B:DC
X509v3 Authority Key Identifier:
keyid:05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/l5E_173xK-qeZlRf30s_Jd48a9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/BXxvR7wwmaTshr7ClgUmkUCtcxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.158.0/24
Signature Algorithm: sha256WithRSAEncryption
50:51:f9:93:b7:a4:56:e0:77:e0:55:93:95:0b:79:4f:40:c1:
d4:13:5d:15:cf:b4:e7:00:08:12:4a:b8:c9:d0:d1:f4:b7:e1:
5a:63:2a:ba:a0:f2:01:70:ab:0b:81:54:2a:8c:58:c2:65:fd:
bc:ce:51:4d:e7:7d:9f:fc:c9:83:80:77:1f:36:3b:a3:79:26:
c3:f6:59:ac:fb:68:1a:48:17:43:b0:45:5d:06:a3:23:55:1c:
35:03:09:73:99:31:34:c1:cf:03:3c:8e:3b:e7:d8:cb:73:3d:
8c:1b:66:fc:fd:46:17:f7:03:7a:b5:53:9b:18:f7:c7:e5:dd:
e7:a6:d7:75:4f:e6:17:63:e9:ef:77:25:40:c3:ec:52:ee:a6:
66:fd:f5:dc:d1:94:65:e1:33:8d:93:e1:51:62:5d:18:68:e9:
6c:cc:25:b7:12:e8:6d:6d:e6:a8:20:29:c4:f3:18:e2:31:be:
04:f5:11:40:b5:43:cc:9d:d8:12:fc:f2:12:8a:24:4e:ee:4b:
31:fa:1a:b4:a6:2b:02:00:f9:c5:ca:42:32:07:23:ee:c7:20:
50:4f:5a:5b:c7:50:42:c4:aa:8c:88:88:ac:75:93:9b:e0:9d:
d6:0b:11:85:00:05:7b:b9:08:d6:09:10:f6:a5:84:0b:29:26:
92:cb:c7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org