Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5y3jyvIUY75XUDmaotuPOcVfWq0.roa
File: 5y3jyvIUY75XUDmaotuPOcVfWq0.roa (raw, json)
Hash identifier: 4GJVthbG9//h2TMC7+Y9ofzbxpJwl3BtubjiW3efUOk=
Subject key identifier: E7:2D:E3:CA:F2:14:63:BE:57:50:39:9A:A2:DB:8F:39:C5:5F:5A:AD
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0870D637
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5y3jyvIUY75XUDmaotuPOcVfWq0.roa
Signing time: Fri 15 Apr 2022 18:00:12 +0000
ROA not before: Fri 15 Apr 2022 18:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 193.37.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141612599 (0x870d637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Apr 15 18:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e72de3caf21463be5750399aa2db8f39c55f5aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e8:62:af:9e:d2:ae:12:80:1f:15:c0:89:52:
ec:ed:d8:d1:50:43:7a:43:58:bc:6b:25:e9:85:e5:
c1:fd:6a:46:40:9b:cf:09:c0:2f:b3:f6:cb:08:da:
bc:f3:b9:4f:d5:75:97:53:f7:b7:12:63:f6:bc:80:
5b:b2:3d:05:a6:e1:35:da:cb:b3:75:d2:64:67:f2:
0d:17:33:9a:04:60:77:d2:1d:be:38:40:a7:0e:b6:
48:d3:c3:c2:e5:73:19:4e:a9:1b:fb:04:cf:15:88:
55:d5:78:42:35:91:96:00:9d:fa:1d:9d:bf:ca:5a:
b6:40:f4:85:99:7f:27:bb:29:00:66:a6:ae:01:dc:
88:bd:b7:79:2a:8a:a1:4b:1a:1d:ae:ae:2d:4b:87:
46:51:d7:b7:22:09:04:c2:a4:7b:93:fd:de:76:ae:
87:f1:8d:97:54:7b:53:90:2a:68:3c:c4:ff:0a:8b:
ad:0e:5e:35:ad:ad:93:21:95:44:e2:80:56:13:4c:
89:44:bc:5c:9c:b7:31:33:f2:0d:88:14:d2:88:28:
3d:de:71:05:70:a2:f4:6a:c2:ba:25:51:5e:5b:ed:
9c:5d:3a:80:51:3f:42:34:2e:a6:6e:09:fe:2c:1f:
e7:3d:bf:73:21:eb:e1:73:e8:16:d3:a5:60:d2:6c:
6e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2D:E3:CA:F2:14:63:BE:57:50:39:9A:A2:DB:8F:39:C5:5F:5A:AD
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/5y3jyvIUY75XUDmaotuPOcVfWq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.198.0/24
Signature Algorithm: sha256WithRSAEncryption
76:47:4a:b9:57:db:67:d4:d7:dd:55:19:30:10:e9:ff:7d:65:
44:a3:5e:45:8e:99:0c:f5:c4:46:9e:ea:23:74:76:6d:57:2a:
e3:5c:c1:a8:cc:18:2b:98:d2:1c:2e:c0:b7:86:80:4a:02:8c:
db:75:b6:c7:f0:00:1d:ff:b8:c2:83:8d:fe:e5:47:be:03:84:
94:a7:10:fb:48:f3:83:6e:1e:b1:1a:07:49:c4:03:3c:b4:53:
c7:64:44:ef:c7:0b:aa:79:50:36:6d:30:7d:67:2b:7f:50:51:
e5:d9:a4:32:e4:c1:11:96:1d:11:86:58:01:d6:35:82:67:77:
7c:00:44:19:dc:7e:56:89:71:69:dc:6e:2d:61:db:6f:a2:db:
78:18:41:e7:5b:e7:a1:de:0b:f3:8d:32:c8:14:d0:f0:b9:3f:
62:01:3f:28:b3:5a:c1:56:25:44:45:b2:6d:ec:7d:ee:0a:c4:
68:f7:34:3d:f3:10:a0:aa:59:1d:42:de:f8:92:64:82:67:1f:
9a:df:c2:23:5a:63:ae:e2:83:e1:ac:cb:7c:a0:a4:15:2e:24:
99:27:4f:25:9c:9d:47:eb:e1:8b:89:62:ca:49:f2:27:79:b2:
5d:23:95:e5:42:9d:5b:b1:14:a9:06:bf:79:31:d5:d1:60:93:
06:46:5e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:44 2023 by rpki-client on console-ams.rpki-client.org