Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/0df1c2-9ad3-41ca-a12e-9f79143e9c60/1/5Z5udFJ-8Mpg-UgnzRtjVP_aC1Y.roa
File: 5Z5udFJ-8Mpg-UgnzRtjVP_aC1Y.roa (raw, json)
Hash identifier: kEEMipCrXkAyaAg8nFOMGIBfdFvhkNaGfGTEp5U4OI8=
Subject key identifier: E5:9E:6E:74:52:7E:F0:CA:60:F9:48:27:CD:1B:63:54:FF:DA:0B:56
Certificate issuer: /CN=26f55db66c509a9c0a6dfeb023770d5b2ac860b9
Certificate serial: 0184CE293FA4B9583F70193965822312C259
Authority key identifier: 26:F5:5D:B6:6C:50:9A:9C:0A:6D:FE:B0:23:77:0D:5B:2A:C8:60:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JvVdtmxQmpwKbf6wI3cNWyrIYLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/0df1c2-9ad3-41ca-a12e-9f79143e9c60/1/5Z5udFJ-8Mpg-UgnzRtjVP_aC1Y.roa
Signing time: Thu 01 Dec 2022 14:48:40 +0000
ROA not before: Thu 01 Dec 2022 14:48:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 193.84.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:29:3f:a4:b9:58:3f:70:19:39:65:82:23:12:c2:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26f55db66c509a9c0a6dfeb023770d5b2ac860b9
Validity
Not Before: Dec 1 14:48:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e59e6e74527ef0ca60f94827cd1b6354ffda0b56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:38:6c:69:5e:e4:f5:20:19:28:c9:d2:e8:92:
f0:fe:ab:5f:81:9d:f9:01:48:1e:43:58:d4:d0:11:
2d:4a:8b:14:9d:29:30:68:cf:27:2f:57:df:45:12:
4c:01:bd:f7:23:a0:bc:b5:20:8f:a7:64:98:62:25:
39:b4:ad:27:91:49:31:11:15:33:b5:ae:75:41:26:
8b:25:47:fa:46:b6:52:76:3e:be:c7:be:10:36:4e:
c9:f7:d9:86:50:ee:a6:3b:8f:0e:d3:2b:a3:55:2d:
f8:96:1b:b9:38:7d:9f:84:c3:c2:5e:4e:93:13:1f:
66:5d:8f:37:f2:18:11:21:21:17:35:b6:3c:4a:0e:
a3:13:e5:4b:7f:b5:94:98:07:bb:7e:b8:f8:cc:d0:
e5:c1:24:63:3a:d6:3a:0f:33:06:e9:8e:24:e3:f9:
59:c9:f6:dd:e2:2b:54:a8:f3:76:36:45:49:61:31:
1a:c5:31:af:9e:08:0d:6a:16:60:01:f0:e6:43:ac:
32:d0:89:c8:97:ae:90:51:b2:36:d4:34:38:b4:ec:
40:02:e9:b6:35:40:9c:b2:9e:2b:91:3d:7e:6c:a2:
2b:4c:a7:72:61:a3:53:02:8e:60:3b:81:71:d7:f7:
13:b0:29:b4:95:0c:01:46:a1:2e:74:53:45:d4:28:
b8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:9E:6E:74:52:7E:F0:CA:60:F9:48:27:CD:1B:63:54:FF:DA:0B:56
X509v3 Authority Key Identifier:
keyid:26:F5:5D:B6:6C:50:9A:9C:0A:6D:FE:B0:23:77:0D:5B:2A:C8:60:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JvVdtmxQmpwKbf6wI3cNWyrIYLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0df1c2-9ad3-41ca-a12e-9f79143e9c60/1/5Z5udFJ-8Mpg-UgnzRtjVP_aC1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0df1c2-9ad3-41ca-a12e-9f79143e9c60/1/JvVdtmxQmpwKbf6wI3cNWyrIYLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.71.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:e7:37:14:22:0c:f3:65:b9:76:fc:1e:8d:7a:79:f3:23:45:
24:e9:0b:92:3c:24:bb:23:0a:3f:f9:8c:13:d7:00:0a:82:a6:
a3:21:0d:f3:76:0f:7d:c0:ac:96:ce:fa:35:f6:08:60:4a:be:
99:d7:3c:c2:68:21:d2:52:df:9a:43:32:65:77:c6:45:c7:8a:
04:7f:ce:92:f9:f3:00:73:f3:3a:47:49:29:97:c2:29:6c:9b:
48:98:0b:6c:b7:d6:87:fb:4a:2d:83:3c:19:80:5a:31:65:b2:
e4:a1:0e:64:4d:ee:e9:82:d8:3f:d1:96:9a:96:e5:40:c8:34:
82:92:be:89:3c:ce:cd:76:ec:d2:93:f7:0f:5b:55:8d:e2:22:
b7:32:4a:60:76:97:f5:5c:6f:d4:e1:fd:c8:70:a1:79:f7:24:
42:28:13:64:84:d0:e8:3c:f4:db:0c:38:d0:ad:9a:df:7e:50:
c7:bd:87:1a:d3:ef:e1:72:f2:b1:1d:2f:a7:71:4e:72:1a:c2:
d9:b5:fa:c6:45:1c:02:d0:c0:01:30:5b:30:d5:fb:4f:2a:51:
e8:d3:f7:47:3a:a2:e3:d4:82:ce:4e:8f:fe:4e:5a:d6:81:61:
bf:d7:1d:89:28:3b:b2:95:70:09:d3:ce:76:37:d0:5e:0d:d4:
52:81:55:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org