Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/n5Ts3wzsdxbA9durKwMFWLg4r98.roa
File: n5Ts3wzsdxbA9durKwMFWLg4r98.roa (raw, json)
Hash identifier: ECqW0YrAVPp6OauSxGI5d2+n2/PZOd5aKKQRVWv3DgI=
Subject key identifier: 9F:94:EC:DF:0C:EC:77:16:C0:F5:DB:AB:2B:03:05:58:B8:38:AF:DF
Certificate issuer: /CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Certificate serial: 018535C39E4EE04C7C54A76CC969C0515C69
Authority key identifier: 87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/n5Ts3wzsdxbA9durKwMFWLg4r98.roa
Signing time: Wed 21 Dec 2022 17:38:10 +0000
ROA not before: Wed 21 Dec 2022 17:38:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 185.59.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:c3:9e:4e:e0:4c:7c:54:a7:6c:c9:69:c0:51:5c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Validity
Not Before: Dec 21 17:38:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f94ecdf0cec7716c0f5dbab2b030558b838afdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:30:9e:da:0b:2b:46:65:c7:40:6c:cf:84:c6:
5c:49:9a:dc:8b:86:85:9c:95:1b:4d:d3:71:d5:8a:
2f:71:8a:92:6a:76:cf:4f:9b:7f:ac:87:82:56:c4:
c7:3e:31:73:98:36:31:39:bf:45:a8:39:c6:52:67:
00:9a:fd:63:20:6d:00:e9:e6:b9:c5:8a:8a:74:87:
a2:f6:a3:c8:c1:5e:b1:01:4b:6b:0d:cb:a4:28:fc:
bf:e6:87:6e:99:ef:b3:4c:53:fa:75:40:82:6d:2d:
4f:d0:98:9d:51:e8:a9:55:98:44:3a:8c:1b:6e:28:
e0:0d:65:45:4e:17:97:15:d7:b8:de:3f:e4:53:a7:
45:f4:42:b1:39:dc:fb:8c:c6:23:66:68:23:bc:ed:
bc:02:4d:02:13:d5:3f:94:63:da:ed:9b:7e:cc:b7:
35:b0:a0:55:70:af:f6:e0:4b:60:27:7b:39:15:bf:
42:ed:b7:d4:38:5c:79:cc:ba:79:1e:eb:21:a3:4d:
15:8c:f6:87:e5:6c:15:d7:e2:4d:4b:9f:c4:9e:22:
27:66:a2:4a:1d:b9:f3:b0:94:ed:b0:69:7e:b1:63:
eb:80:58:9d:e3:f2:20:47:cb:83:66:ec:c7:82:57:
40:db:aa:e2:69:09:9d:b9:15:f0:66:07:5f:11:e9:
d3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:94:EC:DF:0C:EC:77:16:C0:F5:DB:AB:2B:03:05:58:B8:38:AF:DF
X509v3 Authority Key Identifier:
keyid:87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/n5Ts3wzsdxbA9durKwMFWLg4r98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/h8N9A12V_vuh1H-Yuf9Jc_F99s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.52.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:34:af:a9:e1:65:f7:a1:87:1f:a4:27:1a:fb:46:fd:72:fa:
f2:b9:51:4a:35:50:cb:6a:59:61:1d:20:b5:a3:be:38:fe:11:
30:44:37:29:0b:26:00:0c:06:eb:7a:e1:a9:2c:7e:22:2d:d7:
44:db:43:91:7b:55:22:60:c5:bc:3c:18:19:d8:5d:d2:80:f1:
5f:50:49:d3:0e:c6:46:21:8e:3b:e8:8b:9e:8b:7e:89:ee:db:
be:b2:9f:a6:6d:30:b8:44:7a:3f:02:2d:ab:12:3b:cc:47:ec:
5f:5c:0b:a8:6b:6d:0b:b0:40:21:7f:db:ce:f6:26:5a:d2:d8:
a8:55:c6:73:42:87:6a:30:e1:01:db:88:9f:83:9b:90:33:af:
b0:42:cc:53:e9:f5:e9:a6:1f:cf:26:3a:bd:d5:db:9f:dc:5e:
30:5a:3d:7b:a1:95:21:48:4b:b4:a1:82:b9:70:69:52:77:3a:
03:68:34:e3:07:fb:59:83:ce:a8:46:a7:a7:17:9c:0f:13:21:
6c:69:c4:73:9d:91:6d:71:71:2b:c8:3f:ed:c6:9c:48:a7:32:
96:66:ce:86:eb:31:f5:6f:bc:19:77:38:20:30:d3:cd:01:37:
a2:e6:3e:e3:ca:a0:c7:53:dd:0a:04:39:85:1f:5a:6d:29:0c:
0f:15:36:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:21 2023 by rpki-client on console-fra.rpki-client.org