Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/tRuWZXq1EFeU1zHzg6ydymsj0y4.roa
File: tRuWZXq1EFeU1zHzg6ydymsj0y4.roa (raw, json)
Hash identifier: w1cbMT45LmNjcsD5FlGvPNzA37ZNotN00gBKkn/i7UM=
Subject key identifier: B5:1B:96:65:7A:B5:10:57:94:D7:31:F3:83:AC:9D:CA:6B:23:D3:2E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1796D34C
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/tRuWZXq1EFeU1zHzg6ydymsj0y4.roa
Signing time: Sat 01 Jan 2022 04:53:54 +0000
ROA not before: Sat 01 Jan 2022 04:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 5.183.207.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395760460 (0x1796d34c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b51b96657ab5105794d731f383ac9dca6b23d32e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1a:0c:26:55:a9:22:8a:ae:70:5b:50:66:1b:
82:01:97:79:ef:b1:38:59:27:4f:61:78:ad:45:0d:
30:ec:af:69:d9:d3:6d:47:d7:fc:a3:39:b5:02:18:
74:22:d6:38:da:bf:05:73:32:9c:ee:66:ad:f4:06:
a5:0b:5a:6e:07:19:a3:81:aa:08:e5:8b:88:66:f7:
ea:86:6c:95:cb:2b:e9:2e:4e:4f:c1:f1:aa:d8:c6:
24:b7:7c:68:47:03:7e:da:ee:a0:84:f1:ee:63:d3:
19:e7:f7:f5:41:17:e8:9d:b3:3c:49:be:6c:e9:4e:
38:d9:54:fb:3a:f2:a3:46:67:71:30:90:d6:c6:a8:
e5:de:80:b8:bd:a0:e0:e0:cf:7f:61:dc:f7:c4:05:
a5:cc:e1:33:b0:10:08:2a:e2:96:61:7e:df:39:aa:
ee:5b:30:32:6d:1c:52:5f:2c:fa:29:8c:0d:13:d9:
be:c4:37:e9:f5:b4:70:ce:a8:eb:34:4a:16:51:40:
8d:9b:a4:ce:66:33:11:75:7f:19:e8:d0:95:9e:fd:
c2:85:93:1f:28:fa:85:ad:18:e5:86:40:51:d5:d8:
94:3f:e6:75:70:14:8c:35:2d:0c:96:22:3f:69:80:
af:74:00:7f:25:4f:0b:83:21:f6:7d:29:aa:da:69:
4e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1B:96:65:7A:B5:10:57:94:D7:31:F3:83:AC:9D:CA:6B:23:D3:2E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/tRuWZXq1EFeU1zHzg6ydymsj0y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.207.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:bb:6a:bc:f4:6b:b8:e1:7e:44:d7:fd:26:4d:b2:c2:69:a2:
fb:14:b4:85:c2:a7:92:97:41:43:4a:34:53:ed:75:00:3e:bd:
cd:aa:20:3e:b4:9a:b8:e9:47:ad:bd:4a:27:80:b2:62:2e:e1:
b2:1d:a5:4f:98:fa:82:5c:7b:15:cb:b5:75:ab:1e:50:f2:cc:
f2:dc:df:b7:92:eb:54:80:d1:1c:4c:fd:40:e8:6a:90:ed:4c:
bb:46:b4:4d:95:5b:35:e6:f3:fb:c0:13:2c:f2:86:79:b0:05:
61:0a:ee:9c:32:f5:23:42:de:2d:82:c7:5f:85:8a:8d:4f:ad:
b6:f3:af:27:5a:21:42:75:98:88:a2:53:d9:77:ae:91:ad:ed:
e1:9f:d0:fb:29:05:1e:2a:5d:37:99:d7:a9:7b:3e:ee:0e:c2:
e5:a8:d7:d5:59:fa:2e:56:2e:2f:ef:b9:96:d7:5f:10:99:3d:
be:fc:c9:24:a3:69:b4:7a:31:6b:03:a3:fe:ca:95:cd:41:d0:
5a:11:d1:8e:98:64:6c:91:89:4b:f4:b5:59:b7:42:55:82:44:
86:23:6a:e5:ce:c9:51:93:6e:89:d0:d5:1a:04:db:8d:51:da:
46:57:17:32:0d:ef:81:d2:e8:10:6c:f5:9b:42:84:53:cc:52:
27:a2:0d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org