Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/5JRAKYyy_Y88GZbJh2tMDMzisSk.roa
File: 5JRAKYyy_Y88GZbJh2tMDMzisSk.roa (raw, json)
Hash identifier: E7pvGMljta+vu3dcy2z65gQ9Wlsyimvb9O5IHrH8JLg=
Subject key identifier: E4:94:40:29:8C:B2:FD:8F:3C:19:96:C9:87:6B:4C:0C:CC:E2:B1:29
Certificate issuer: /CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Certificate serial: 294C207E
Authority key identifier: 87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/5JRAKYyy_Y88GZbJh2tMDMzisSk.roa
Signing time: Sat 01 Jan 2022 03:52:00 +0000
ROA not before: Sat 01 Jan 2022 03:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60555
IP address blocks: 93.113.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 692854910 (0x294c207e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Validity
Not Before: Jan 1 03:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e49440298cb2fd8f3c1996c9876b4c0ccce2b129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:51:53:8c:6e:09:2f:82:0c:b8:c8:17:52:c3:
9b:c7:f9:30:e3:7a:b9:d8:87:21:eb:07:82:ab:f3:
b3:27:24:e2:a5:71:08:4b:dc:1a:06:a8:02:3d:73:
b5:be:0c:0f:72:2b:5e:62:38:fd:6b:14:12:7d:88:
58:bb:66:7c:f7:ff:de:5c:d8:1a:fd:a1:c0:b4:af:
5b:12:7c:f2:a5:7f:73:7a:7a:07:f3:41:39:1b:60:
c4:51:c5:7f:f7:2c:c4:88:0c:00:ef:9a:ad:7e:fd:
48:96:4b:c2:d2:f7:b5:af:c5:0b:24:dd:1c:da:81:
0d:ad:85:1b:bf:28:40:05:61:d0:9b:69:f6:ca:11:
b1:52:e8:d1:bf:e2:ff:90:13:f5:87:45:24:ea:00:
7f:e6:b4:fa:54:66:25:2d:75:2f:1f:f8:6d:5c:38:
c6:e9:56:43:29:e3:f2:a8:4a:95:74:9a:91:20:cb:
b1:c8:84:da:55:ae:83:11:39:d0:17:ef:92:68:01:
d1:71:b4:08:53:b7:18:a9:e1:3e:69:31:bc:cd:ee:
81:a8:75:98:cf:59:eb:42:85:4f:a5:0c:36:f8:b0:
75:a2:c3:24:a1:ad:38:88:7f:89:1b:ef:2b:b8:a8:
a8:e1:dc:63:20:7d:dd:3c:2f:7e:a0:d9:cb:ac:80:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:94:40:29:8C:B2:FD:8F:3C:19:96:C9:87:6B:4C:0C:CC:E2:B1:29
X509v3 Authority Key Identifier:
keyid:87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/5JRAKYyy_Y88GZbJh2tMDMzisSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.254.0/24
Signature Algorithm: sha256WithRSAEncryption
75:2c:6a:98:62:db:5d:f4:9f:b4:6b:c3:76:d5:df:f0:28:4f:
76:99:2f:51:ff:e5:59:36:fa:50:a7:c1:a6:c2:c7:9f:2e:54:
3c:2b:41:4a:ec:f0:ec:1a:58:81:c5:45:ca:19:51:dd:9e:54:
ac:94:81:d5:96:78:e6:1a:ca:4f:b7:2c:76:5e:ff:55:05:4b:
c2:11:d5:a7:65:fc:1f:b2:e2:d1:e6:97:03:70:e1:be:ac:c7:
a3:42:fa:79:43:32:1c:db:84:9a:8c:11:6c:dd:95:2d:90:64:
55:96:bc:ba:12:b6:0d:14:c0:fb:9c:f4:1e:d4:b5:c1:00:f7:
81:ff:54:e8:26:a5:4e:64:77:6c:4d:6b:ac:77:a4:33:30:ab:
ec:70:00:d6:56:9f:2b:ce:05:2e:17:b8:8a:ce:f8:54:45:0e:
cb:9b:8b:97:ab:43:62:a6:8f:74:47:fd:f3:a8:72:95:3c:7b:
ba:8c:97:c1:bc:17:02:34:9c:02:f6:31:d9:40:3e:1a:c9:21:
a9:e2:78:cb:5a:00:f4:4b:19:46:8d:31:4e:ec:4b:67:7e:bd:
3e:f8:0e:ea:8b:f4:cd:de:36:0e:ef:1a:86:68:44:43:2b:73:
7e:8a:53:e6:8f:3e:ad:6c:37:7e:85:34:e6:79:f6:41:db:aa:
60:ed:2f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org