Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/t6Elr07OAnqR93CQnWNYFX-j7BA.roa
File: t6Elr07OAnqR93CQnWNYFX-j7BA.roa (raw, json)
Hash identifier: QwxL8ZfbQzUksBdZgkqyAbvo5ZWBcniDYVDV8SjmQk0=
Subject key identifier: B7:A1:25:AF:4E:CE:02:7A:91:F7:70:90:9D:63:58:15:7F:A3:EC:10
Certificate issuer: /CN=99fea9717c280ec879335273f022e6b0537455c2
Certificate serial: 010D45
Authority key identifier: 99:FE:A9:71:7C:28:0E:C8:79:33:52:73:F0:22:E6:B0:53:74:55:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/t6Elr07OAnqR93CQnWNYFX-j7BA.roa
Signing time: Fri 11 Mar 2022 14:57:02 +0000
ROA not before: Fri 11 Mar 2022 14:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 185.5.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68933 (0x10d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fea9717c280ec879335273f022e6b0537455c2
Validity
Not Before: Mar 11 14:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a125af4ece027a91f770909d6358157fa3ec10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:dd:d0:20:84:47:86:2e:c7:2e:0c:9d:f8:ed:
f5:b4:49:37:99:eb:eb:12:9e:d7:57:f9:21:1e:bb:
32:4e:0d:5d:f7:3b:d5:06:78:64:c8:53:2d:88:b2:
62:53:64:e3:c3:71:f4:cb:c5:06:63:c8:16:33:cd:
7b:13:c4:3e:7e:25:53:f4:37:1d:73:e1:7d:ab:a8:
c9:36:77:69:e0:a1:df:7b:1b:f4:9d:75:15:38:23:
b1:be:19:01:f7:b3:50:7d:dc:f4:29:1a:6d:45:bc:
45:26:2e:0e:0d:98:34:06:e3:60:a1:39:d2:d2:cc:
bc:fe:9e:47:7f:e8:a8:41:ff:11:43:5f:e0:1f:d7:
71:fd:59:77:02:a0:00:43:01:09:2a:b8:46:03:68:
cf:09:a1:5d:7b:d3:7f:80:70:48:99:d8:5e:a0:2b:
89:1c:f6:c9:bb:13:18:76:0a:1a:94:3c:45:1b:99:
0e:13:cc:95:bc:fc:76:79:e0:69:a8:44:2e:bb:d2:
2f:88:91:7e:a1:d9:25:ea:57:42:c3:57:a1:3f:22:
d3:50:8a:5c:2d:de:a7:1f:f7:32:6e:f7:c0:fc:1a:
e1:88:76:23:af:99:2a:3b:f8:83:3c:96:99:98:08:
fd:48:85:11:6a:7e:e6:39:7f:18:87:a7:6c:49:72:
87:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A1:25:AF:4E:CE:02:7A:91:F7:70:90:9D:63:58:15:7F:A3:EC:10
X509v3 Authority Key Identifier:
keyid:99:FE:A9:71:7C:28:0E:C8:79:33:52:73:F0:22:E6:B0:53:74:55:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/t6Elr07OAnqR93CQnWNYFX-j7BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/ca5e44-080e-4140-89a1-bfed0092f86a/1/mf6pcXwoDsh5M1Jz8CLmsFN0VcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.147.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:7e:9d:73:0e:c9:4c:e3:b5:4c:80:30:da:b3:d0:ca:54:48:
10:66:90:64:54:1d:a5:59:f3:32:5f:65:d3:32:63:42:f8:4f:
2d:2b:50:33:93:ee:d2:af:d1:fc:66:be:cf:7a:42:2e:37:21:
60:8b:bf:ba:b5:3b:03:54:0f:dd:6e:86:da:e4:7e:3c:ab:dc:
f8:7f:d1:3b:3e:80:50:84:ae:47:98:b6:56:ec:62:1f:91:63:
99:f3:f5:a9:59:c9:76:27:0b:9c:a4:c4:4a:44:52:e4:0f:df:
71:0c:9e:f3:26:f7:cf:ed:db:09:3c:db:1f:c4:78:14:51:30:
32:fa:53:32:74:96:a2:25:f2:aa:20:69:b6:e5:cf:ae:f3:65:
aa:6c:c4:bd:59:07:62:3e:70:7e:93:bc:b5:09:95:54:a4:76:
6e:88:ea:85:49:19:fc:9c:28:99:60:9b:97:c0:6d:80:c0:11:
4a:c5:21:0b:8d:9b:cf:0a:e5:01:f4:db:67:d2:68:aa:2b:eb:
e2:1d:e8:0f:7c:d3:d8:70:e7:cf:26:5b:be:fd:15:a3:9f:73:
70:99:0c:86:f3:c7:18:12:9f:2e:83:52:cc:c1:2a:e1:ed:9a:
87:0b:98:d8:85:df:9d:67:44:72:24:42:d0:e4:c7:b6:c8:d6:
74:00:c3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org