Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/A8bv4wOInsHpjTsxe00CNIes4PQ.roa
File: A8bv4wOInsHpjTsxe00CNIes4PQ.roa (raw, json)
Hash identifier: SI7NykB3KT+1xpE878OkGO6iMHlvFhBJQh69I8uukE4=
Subject key identifier: 03:C6:EF:E3:03:88:9E:C1:E9:8D:3B:31:7B:4D:02:34:87:AC:E0:F4
Certificate issuer: /CN=7efd087431db127c15ce75fdd176d3b6f857d7ec
Certificate serial: 048843
Authority key identifier: 7E:FD:08:74:31:DB:12:7C:15:CE:75:FD:D1:76:D3:B6:F8:57:D7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fv0IdDHbEnwVznX90XbTtvhX1-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/A8bv4wOInsHpjTsxe00CNIes4PQ.roa
Signing time: Thu 07 Apr 2022 12:25:04 +0000
ROA not before: Thu 07 Apr 2022 12:25:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200356
IP address blocks: 5.42.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 297027 (0x48843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7efd087431db127c15ce75fdd176d3b6f857d7ec
Validity
Not Before: Apr 7 12:25:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03c6efe303889ec1e98d3b317b4d023487ace0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:dd:9f:ac:04:32:d3:70:57:65:2f:f2:3d:
2b:2c:07:3c:ff:3f:7d:9c:61:18:89:4b:6e:ca:19:
39:f2:60:d0:8d:cb:58:47:6c:e6:aa:1e:8b:04:d3:
b6:72:fa:78:b2:99:4d:52:0a:62:4e:69:47:c5:23:
b7:3e:46:65:bc:d3:54:00:8b:0e:24:fe:60:70:5c:
95:4d:7b:6e:fe:62:55:8c:a6:6e:44:df:8f:a2:f9:
56:2b:f6:96:72:3f:5b:90:d7:19:2e:18:4d:45:dc:
f4:04:55:08:54:70:b8:9f:26:43:8a:37:22:4e:28:
ad:fe:b0:dd:76:fc:65:00:eb:4e:ad:c0:27:3f:3f:
94:63:d4:9c:8f:b9:b1:ab:43:88:d3:85:dd:21:92:
48:07:dc:45:69:6d:27:e4:af:a9:cd:41:c8:e3:99:
8f:70:3c:4c:04:13:e2:50:cb:af:87:f5:8f:ca:d8:
39:1c:b6:b4:eb:72:b2:f4:de:e9:cc:9e:02:92:49:
56:03:f1:fa:8d:c8:2f:2a:27:50:fe:12:81:5a:ac:
12:c6:dd:c8:f9:87:8f:05:33:f1:c7:b7:00:9c:f6:
cc:07:ff:22:3f:35:b0:07:1a:61:a9:9c:3f:92:96:
49:57:b7:0f:49:79:77:db:f3:af:7f:f8:ea:81:c7:
50:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C6:EF:E3:03:88:9E:C1:E9:8D:3B:31:7B:4D:02:34:87:AC:E0:F4
X509v3 Authority Key Identifier:
keyid:7E:FD:08:74:31:DB:12:7C:15:CE:75:FD:D1:76:D3:B6:F8:57:D7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fv0IdDHbEnwVznX90XbTtvhX1-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/A8bv4wOInsHpjTsxe00CNIes4PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/fv0IdDHbEnwVznX90XbTtvhX1-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.197.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a1:b9:74:c6:f2:4d:6e:d3:19:1f:2b:f2:55:14:2a:69:46:
86:e6:42:62:41:98:82:18:91:09:0b:2f:61:3e:51:45:b1:55:
03:e7:4e:ea:a3:4f:52:6a:ad:a8:55:3b:33:e6:ac:7b:ac:2e:
32:08:0f:89:55:10:32:63:6b:e1:6a:7d:af:11:bf:b5:6a:22:
91:78:b2:d5:96:1b:5b:c3:82:6b:fa:5a:a1:83:e7:25:06:99:
26:3e:1d:89:97:eb:2c:b0:9e:d0:f9:0a:86:b3:8e:68:25:52:
d1:49:71:d6:56:89:d1:f1:18:fd:cc:29:b7:9d:1c:8b:85:a7:
c5:8c:98:51:13:0d:91:9c:26:d2:df:c0:59:f9:c1:9f:10:c2:
dd:21:d9:46:1d:d8:d8:1f:bc:da:2c:d4:c7:8f:93:80:01:79:
6d:cf:25:9b:2c:e7:63:93:45:fe:4c:5e:71:ae:b4:0e:bd:b0:
0a:88:ec:a5:19:3c:35:c6:ac:1a:dd:af:9c:37:28:f1:10:37:
ad:d8:2e:1c:f9:04:87:1d:f9:a4:08:05:d7:17:35:0e:c5:48:
94:7f:37:8b:d5:ad:29:ce:6d:f4:c9:5d:ef:f9:b3:bb:f6:ab:
7b:cf:7a:f1:7c:77:49:17:d0:5a:92:71:4b:c8:52:f5:27:5d:
47:c5:43:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:42 2024 by rpki-client on console-ams.rpki-client.org