Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/44038b-8031-44e0-91c4-cc5676c7de9f/1/1G5H4ue8NjC6FbJNVuHfogJetc4.roa
File: 1G5H4ue8NjC6FbJNVuHfogJetc4.roa (raw, json)
Hash identifier: 9QhLzW9HkUVG6Y0A9+QmNJzBJBIB472rRZ/yIpmvNIo=
Subject key identifier: D4:6E:47:E2:E7:BC:36:30:BA:15:B2:4D:56:E1:DF:A2:02:5E:B5:CE
Certificate issuer: /CN=d268d9a2a645d7cc2fd253b3670408055e56fff9
Certificate serial: CC07
Authority key identifier: D2:68:D9:A2:A6:45:D7:CC:2F:D2:53:B3:67:04:08:05:5E:56:FF:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mjZoqZF18wv0lOzZwQIBV5W__k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/44038b-8031-44e0-91c4-cc5676c7de9f/1/1G5H4ue8NjC6FbJNVuHfogJetc4.roa
Signing time: Thu 28 Apr 2022 09:04:23 +0000
ROA not before: Thu 28 Apr 2022 09:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35480
IP address blocks: 193.192.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52231 (0xcc07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d268d9a2a645d7cc2fd253b3670408055e56fff9
Validity
Not Before: Apr 28 09:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d46e47e2e7bc3630ba15b24d56e1dfa2025eb5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:87:fc:48:0d:99:73:7a:de:c2:36:6a:1d:c1:
46:99:64:de:50:0d:cb:c5:cb:fc:78:7b:ce:2e:ea:
5a:d7:ab:fd:7b:00:a4:d5:dd:d0:ab:7f:18:bd:0d:
be:06:3a:ed:d2:fd:e8:eb:62:c8:8f:39:ba:d5:4d:
19:a9:e8:a1:cf:bd:f1:50:e3:50:5a:d1:29:e2:d5:
27:a5:e4:f8:31:2e:bc:40:5d:c8:b4:93:a2:be:18:
5d:6b:9d:62:e4:13:01:fd:fc:94:e4:2f:ab:e7:c3:
c4:31:0f:de:a6:b9:24:12:10:75:b7:cf:8c:c8:ea:
ec:ed:eb:dc:88:5c:17:f1:e1:8c:35:c4:2f:73:77:
d8:1e:db:70:d3:e4:e5:dd:90:ac:7d:d7:5a:7b:4e:
89:47:a2:a3:09:73:b8:0e:93:61:66:5f:1d:20:5a:
99:96:aa:a5:9d:c0:63:74:43:52:1c:5d:de:f9:9b:
7b:da:8c:b8:a8:ac:62:3f:51:43:ab:22:0b:79:f6:
67:dc:8d:81:1f:10:7e:5a:c7:9f:8f:62:d6:be:64:
2e:bc:c2:53:16:4f:04:ff:59:7e:72:8f:e4:b9:be:
b2:ad:54:e8:ef:28:84:f3:61:7e:b4:ed:28:31:45:
ea:a3:e1:82:5e:90:34:3a:f3:19:81:dd:17:f6:c5:
a7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6E:47:E2:E7:BC:36:30:BA:15:B2:4D:56:E1:DF:A2:02:5E:B5:CE
X509v3 Authority Key Identifier:
keyid:D2:68:D9:A2:A6:45:D7:CC:2F:D2:53:B3:67:04:08:05:5E:56:FF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mjZoqZF18wv0lOzZwQIBV5W__k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/44038b-8031-44e0-91c4-cc5676c7de9f/1/1G5H4ue8NjC6FbJNVuHfogJetc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/44038b-8031-44e0-91c4-cc5676c7de9f/1/0mjZoqZF18wv0lOzZwQIBV5W__k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.48.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:ce:af:a9:b0:04:ea:50:ad:c9:93:ec:7d:66:e1:38:be:6a:
2d:5c:7d:56:7f:a8:fa:ab:57:43:82:aa:53:e4:6f:90:6f:a1:
b2:7d:1c:f2:da:3c:77:77:0b:38:4d:78:ff:aa:ae:09:3f:bd:
7d:89:19:1c:13:d4:8b:65:29:2d:b1:6f:a3:83:55:17:db:2a:
dc:e9:b3:61:13:e9:34:54:79:a8:33:ad:bb:36:d5:88:b2:42:
26:fc:3d:7e:e1:55:6c:d2:22:6e:7a:e0:cb:cc:53:ca:5d:46:
c6:fa:36:ed:07:a0:bd:b6:53:bb:24:f6:3e:80:40:48:6f:8d:
21:b7:66:6c:f8:09:37:1d:21:13:9e:8f:ef:cc:4b:3a:e4:02:
68:b8:71:49:75:a1:d0:00:62:55:d2:c6:8d:6f:51:72:98:54:
6e:cc:31:8a:74:bb:3d:bd:fd:a8:c7:11:52:10:dd:93:9c:53:
a7:0c:12:06:c4:38:57:04:17:44:8f:c1:5e:80:59:08:6a:6b:
eb:1e:9e:0d:38:16:36:4d:4d:18:38:bd:65:f2:6e:72:b1:5c:
b0:93:ca:fa:d0:7f:f9:3d:54:5a:73:a9:2b:d8:2d:9f:72:57:
c7:41:dd:2d:02:dc:e5:6c:2b:52:1a:cd:a4:89:cd:d9:94:71:
e4:4e:a8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:42 2023 by rpki-client on console-fra.rpki-client.org