Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/xqhgHaG_j_93Nz_Ga32oPY_CR_s.roa
File: xqhgHaG_j_93Nz_Ga32oPY_CR_s.roa (raw, json)
Hash identifier: DOeNKn3hrkRTfifzDjjoe+rmQWImHacEnIr6MeftnZg=
Subject key identifier: C6:A8:60:1D:A1:BF:8F:FF:77:37:3F:C6:6B:7D:A8:3D:8F:C2:47:FB
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 183514C8
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/xqhgHaG_j_93Nz_Ga32oPY_CR_s.roa
Signing time: Wed 02 Mar 2022 11:52:28 +0000
ROA not before: Wed 02 Mar 2022 11:52:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47536
IP address blocks: 5.1.67.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406131912 (0x183514c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Mar 2 11:52:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6a8601da1bf8fff77373fc66b7da83d8fc247fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1f:b7:3f:78:24:c8:b7:5c:af:fe:65:9f:1a:
8c:b0:5d:d7:40:59:5a:08:54:7b:91:8a:c8:c6:0f:
57:e4:e7:05:92:f7:6d:e5:21:a0:95:50:fc:f3:c1:
25:35:a3:d3:6c:75:dc:ca:ea:60:de:fb:26:a9:db:
ae:72:fe:bd:27:5d:a0:83:0f:b0:45:b8:ca:02:3b:
77:6a:5b:d8:94:73:d6:82:48:9a:c8:0e:14:ff:97:
c0:cd:78:48:66:6a:86:99:ea:6b:2f:85:84:3e:ea:
96:54:77:c6:93:b6:2f:9d:99:8c:03:15:c4:cf:e1:
75:98:0b:69:75:4e:7b:12:1f:a4:d5:84:b6:0a:b6:
d0:5e:69:31:10:10:6f:e1:f5:86:3f:dd:48:c3:89:
7d:d2:3d:c5:31:15:77:45:4a:f0:61:13:48:d2:14:
f4:8b:52:3b:86:dd:b7:99:30:fa:17:46:63:5a:23:
bb:b4:1d:2b:f8:aa:e3:6c:c0:61:fd:38:80:40:48:
15:9c:1f:a7:55:d9:90:42:4d:45:22:7b:dd:f4:5e:
a1:14:03:45:91:d5:c8:8f:7a:81:0b:3e:2d:0e:8c:
e0:7d:ae:f4:04:6b:3a:5a:de:8d:e5:1b:af:20:10:
a9:0d:ee:d1:cf:e1:6e:04:98:83:89:8d:d8:7b:8e:
0e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A8:60:1D:A1:BF:8F:FF:77:37:3F:C6:6B:7D:A8:3D:8F:C2:47:FB
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/xqhgHaG_j_93Nz_Ga32oPY_CR_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:73:49:3f:50:4f:13:ef:fb:6b:21:8b:0c:0e:33:7e:e7:8d:
29:04:32:2d:5e:94:11:b8:8f:45:e7:cc:17:8c:2f:83:e0:fe:
36:8b:50:96:be:e4:6e:e0:16:e7:dc:15:ba:01:9f:55:74:2a:
80:40:10:d4:3a:c3:17:8c:5e:67:61:5f:9d:48:40:7e:ba:3b:
af:27:75:ed:0d:63:ea:f9:da:ea:88:dc:0c:1d:c0:5a:35:1a:
8e:b6:2e:fc:d6:09:48:a2:2d:4b:54:68:11:22:f9:39:d1:a8:
0d:29:eb:ab:c4:b2:b1:5f:8a:6f:a0:dc:a4:6a:65:56:65:04:
f5:6c:14:d4:6f:56:0f:8e:56:26:d3:f0:27:8f:d3:5f:60:af:
7f:eb:93:ea:33:65:94:fc:6e:ff:62:0a:e4:2f:3a:d3:08:8c:
3d:64:95:9c:e9:9d:4a:f6:32:a9:39:37:c9:ff:bd:25:31:5d:
cc:17:e2:4e:e7:9f:0d:bc:ac:ac:c8:59:46:11:d4:7c:7e:67:
53:95:e1:c0:9f:bc:56:ae:da:52:45:4c:8c:1d:a6:b8:51:88:
bf:81:2f:7c:a8:27:d3:7a:c1:ce:71:b5:95:57:d1:96:4b:44:
e2:a9:39:0a:0e:dc:be:5b:03:5d:32:55:88:a5:f0:b7:cb:be:
6f:6d:eb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org