Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9438b7-39a2-4c95-af1a-cdb1fdc9d57d/1/5de0ijLubfG4Q0OBm5Xa69pgkNc.roa
File: 5de0ijLubfG4Q0OBm5Xa69pgkNc.roa (raw, json)
Hash identifier: z+RewiYpEB0YH0EibNEVw6ENBDWXbToOfwTx4fuPbQ4=
Subject key identifier: E5:D7:B4:8A:32:EE:6D:F1:B8:43:43:81:9B:95:DA:EB:DA:60:90:D7
Certificate issuer: /CN=efe01974743a3b3a28f7a64e2d871bf1e5e5f6e5
Certificate serial: 056FBA9C
Authority key identifier: EF:E0:19:74:74:3A:3B:3A:28:F7:A6:4E:2D:87:1B:F1:E5:E5:F6:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7-AZdHQ6Ozoo96ZOLYcb8eXl9uU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9438b7-39a2-4c95-af1a-cdb1fdc9d57d/1/5de0ijLubfG4Q0OBm5Xa69pgkNc.roa
Signing time: Sat 01 Jan 2022 13:58:48 +0000
ROA not before: Sat 01 Jan 2022 13:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13190
IP address blocks: 185.117.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91208348 (0x56fba9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efe01974743a3b3a28f7a64e2d871bf1e5e5f6e5
Validity
Not Before: Jan 1 13:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5d7b48a32ee6df1b84343819b95daebda6090d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:f0:91:4a:f0:e0:4c:fc:14:a2:b8:f8:ba:
ab:cb:8d:aa:83:b5:d2:85:d4:39:10:91:f0:5c:40:
d0:f9:5d:be:53:40:53:aa:3b:d4:ed:26:0d:96:8d:
67:f4:b5:58:69:17:cc:e0:00:de:60:22:b3:c1:50:
1c:45:26:83:c1:37:8a:c0:4a:1a:ae:dc:91:a3:59:
bd:2a:7a:38:fc:24:8e:8c:ef:a0:00:69:8e:a0:f0:
86:69:66:7f:95:10:e3:70:52:8f:a7:44:68:84:28:
81:5d:66:fc:0b:2e:ec:63:4a:9e:34:69:19:50:0b:
9b:c1:a3:a9:d9:a5:b4:4c:4f:fe:df:0f:ba:e6:55:
ba:5f:88:4f:03:b0:5a:96:6b:7b:ed:f0:59:57:10:
09:e6:c2:4f:0b:ed:3f:b4:d2:92:17:4e:90:74:9d:
d1:29:1a:97:16:24:b0:6e:47:cb:73:fd:b3:c3:ad:
2b:3f:33:ee:d9:2f:2c:25:44:91:71:0b:41:96:12:
3c:46:26:76:ff:ea:2e:60:24:34:cc:c4:7f:44:e3:
04:e2:54:7e:a6:71:01:ed:32:30:c8:60:fc:b7:2e:
98:be:4f:32:9b:90:c9:cf:36:b9:5f:32:a8:b0:d5:
d6:77:f6:f6:c6:8b:21:4a:51:f3:95:5d:e6:c1:e6:
dd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D7:B4:8A:32:EE:6D:F1:B8:43:43:81:9B:95:DA:EB:DA:60:90:D7
X509v3 Authority Key Identifier:
keyid:EF:E0:19:74:74:3A:3B:3A:28:F7:A6:4E:2D:87:1B:F1:E5:E5:F6:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7-AZdHQ6Ozoo96ZOLYcb8eXl9uU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9438b7-39a2-4c95-af1a-cdb1fdc9d57d/1/5de0ijLubfG4Q0OBm5Xa69pgkNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9438b7-39a2-4c95-af1a-cdb1fdc9d57d/1/7-AZdHQ6Ozoo96ZOLYcb8eXl9uU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.164.0/22
Signature Algorithm: sha256WithRSAEncryption
45:99:1d:5a:b8:18:d8:93:27:fa:c7:5a:53:b3:07:ac:e8:e7:
3f:67:ce:b7:84:31:59:7c:88:73:75:ac:12:54:76:ad:7a:63:
6d:1f:c7:8d:f9:65:bd:cf:cd:5d:15:73:a7:92:e3:f7:ec:1d:
a6:0c:74:75:d4:58:e6:2a:61:33:02:7e:87:e6:c5:17:90:bc:
e1:62:53:0b:73:76:16:60:ee:5d:95:8a:5b:0e:fc:5e:24:73:
b3:43:aa:f1:8d:5c:80:fa:ec:23:b3:53:1d:17:d0:e4:c4:de:
2d:0f:5c:66:3f:63:a9:ff:8c:6a:e8:9f:f4:a2:54:70:9b:15:
ad:a9:0c:60:e8:ad:89:eb:2a:fc:80:51:1d:10:3b:e4:69:65:
60:9a:e3:e2:0a:e2:98:94:aa:35:18:b2:b2:54:f5:2c:fd:4f:
42:c4:0f:55:4d:dd:5a:47:3d:2b:06:eb:20:c0:09:6c:9e:62:
6f:23:e1:6d:16:05:00:99:18:be:49:a0:08:bc:0b:44:32:6a:
47:42:36:43:bc:9c:70:1e:ee:71:da:f6:a2:6d:4c:81:f5:71:
c6:2b:76:a1:bc:53:fb:b9:69:41:42:b2:68:00:9a:f2:68:76:
18:cf:2b:39:b0:71:1e:73:bc:a3:31:02:65:f1:89:0f:13:65:
e8:41:13:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:29 2023 by rpki-client on console-fra.rpki-client.org