Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/aSkvIEqAegc3hWyiP29u5M99vZg.roa
File: aSkvIEqAegc3hWyiP29u5M99vZg.roa (raw, json)
Hash identifier: 8nJYhQt53UU7V0DQ3qty6htDdYTs1qkhoIBB1z28LF4=
Subject key identifier: 69:29:2F:20:4A:80:7A:07:37:85:6C:A2:3F:6F:6E:E4:CF:7D:BD:98
Certificate issuer: /CN=e5cbde75d536e91b28a23469349d1cf28b884a3b
Certificate serial: 0183ED724343DFAF1960A0BB38933780F41B
Authority key identifier: E5:CB:DE:75:D5:36:E9:1B:28:A2:34:69:34:9D:1C:F2:8B:88:4A:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cveddU26RsoojRpNJ0c8ouISjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/aSkvIEqAegc3hWyiP29u5M99vZg.roa
Signing time: Tue 18 Oct 2022 23:33:52 +0000
ROA not before: Tue 18 Oct 2022 23:33:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55195
IP address blocks: 185.159.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ed:72:43:43:df:af:19:60:a0:bb:38:93:37:80:f4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5cbde75d536e91b28a23469349d1cf28b884a3b
Validity
Not Before: Oct 18 23:33:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69292f204a807a0737856ca23f6f6ee4cf7dbd98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:34:24:ea:87:36:fc:06:0f:3a:f1:fc:a0:19:
5e:58:22:9f:2c:c6:bd:09:6a:cf:79:ec:6e:d4:5f:
33:2a:b5:5e:40:dd:88:71:c5:c9:ae:4a:ab:d2:e8:
31:d3:75:6c:7c:d4:60:ad:57:ab:75:55:a7:c1:3f:
c3:96:03:3a:eb:34:72:c4:35:4c:8e:df:27:8c:0a:
6e:ba:68:a2:a7:b9:ce:a4:91:7e:6b:88:68:b9:19:
d7:52:8a:d3:a7:68:5b:2f:30:cd:a1:1f:a1:53:d3:
6c:52:29:7a:f0:a8:a9:83:93:ac:74:fe:00:8c:98:
ed:ea:17:63:93:1b:8f:25:61:bd:56:92:c2:b2:e2:
33:b0:81:c2:8c:bb:11:e7:cc:8a:b7:47:d8:dd:c8:
c1:70:6f:12:30:8c:d9:6d:39:bb:6d:47:1f:95:cf:
95:6c:16:53:2e:8c:85:e0:55:7c:1e:8b:2d:64:fb:
eb:c4:13:27:ed:3c:28:59:d9:cf:7c:c9:ce:88:a5:
fa:36:79:a6:96:09:22:c1:6c:2f:c4:9a:48:11:52:
6a:48:5b:8c:85:ac:3f:9e:00:93:c1:be:fd:3a:22:
a4:18:a8:f3:54:78:a9:8d:f2:24:3c:f7:e0:40:bb:
4c:dc:56:46:58:1a:61:1e:ed:fe:06:4c:bd:7e:76:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:29:2F:20:4A:80:7A:07:37:85:6C:A2:3F:6F:6E:E4:CF:7D:BD:98
X509v3 Authority Key Identifier:
keyid:E5:CB:DE:75:D5:36:E9:1B:28:A2:34:69:34:9D:1C:F2:8B:88:4A:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cveddU26RsoojRpNJ0c8ouISjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/aSkvIEqAegc3hWyiP29u5M99vZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/015e90-5204-4d09-8b26-fceacbd73845/1/5cveddU26RsoojRpNJ0c8ouISjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.197.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:b5:91:91:36:dd:25:50:c3:e4:f9:01:a9:e7:fd:65:87:bb:
d5:dc:03:7f:f0:b0:c1:99:8d:81:fc:50:c1:e5:8c:53:3b:be:
cb:aa:92:43:72:9c:3c:33:7b:2f:4d:28:4d:b9:29:be:a1:2b:
96:7f:3a:21:a3:14:0c:76:ca:7b:30:f9:1d:3e:53:fd:18:8a:
55:ed:0f:24:fd:e2:bd:dc:62:41:55:d3:f2:1f:c4:bc:ed:c5:
ff:e9:7c:62:93:ad:07:68:a7:07:48:94:02:f7:ad:47:78:3d:
ce:93:fd:ba:a7:02:71:53:b3:da:e5:48:1a:3c:51:9f:f9:b4:
7a:f0:30:1d:66:61:3d:f3:f9:1a:36:bf:94:42:eb:a6:ef:85:
f5:cb:f2:a4:26:9c:e1:63:4c:9a:dc:7d:5b:33:0d:1c:14:55:
fe:a5:32:c0:6e:90:e3:b9:78:49:f0:0f:81:bd:a0:60:b5:46:
4f:c4:55:71:fb:56:2d:84:6b:ef:bb:ed:bb:b8:8b:0c:b6:0f:
2c:5b:be:c1:e0:93:b3:93:19:00:54:cc:b3:c8:15:21:3b:40:
c0:08:b8:68:e1:e6:3f:93:47:08:53:2e:ae:cc:a9:a1:00:ee:
4d:00:c3:d9:76:59:37:20:11:89:ad:2e:23:c5:6c:fa:fa:77:
51:41:2e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org