Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/b9df5a-a454-4e27-86af-13d380715cef/1/XJe5ElzcNM3vpk1z8SaekHCuqVY.roa
File: XJe5ElzcNM3vpk1z8SaekHCuqVY.roa (raw, json)
Hash identifier: KUkDZ5HWPyRbkR7zRQnAJkm2PKW1B3fF86gNnL5FqnA=
Subject key identifier: 5C:97:B9:12:5C:DC:34:CD:EF:A6:4D:73:F1:26:9E:90:70:AE:A9:56
Certificate issuer: /CN=e204e1c20114d7731694ddc4f277c4df1bffc4f8
Certificate serial: 08600E09
Authority key identifier: E2:04:E1:C2:01:14:D7:73:16:94:DD:C4:F2:77:C4:DF:1B:FF:C4:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gThwgEU13MWlN3E8nfE3xv_xPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/b9df5a-a454-4e27-86af-13d380715cef/1/XJe5ElzcNM3vpk1z8SaekHCuqVY.roa
Signing time: Sat 01 Jan 2022 13:05:05 +0000
ROA not before: Sat 01 Jan 2022 13:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39532
IP address blocks: 89.104.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140512777 (0x8600e09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204e1c20114d7731694ddc4f277c4df1bffc4f8
Validity
Not Before: Jan 1 13:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c97b9125cdc34cdefa64d73f1269e9070aea956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:4b:54:e6:d3:ee:b6:7c:73:6b:d2:18:76:
ff:34:d8:a3:6a:8a:36:ca:fa:d4:d3:a6:7b:b2:2d:
09:b1:55:3a:46:9e:c1:a2:34:cb:3a:2f:34:84:8d:
f7:93:2c:3a:9e:d0:0e:c7:42:ef:f7:f8:9c:f6:45:
e1:3c:b5:3d:e2:ec:a4:b4:2f:4b:30:f6:b4:46:dd:
44:05:ad:50:6a:0f:50:46:7a:bf:63:9a:cc:8a:1e:
4a:20:19:d3:40:af:c2:14:02:55:33:51:0d:c2:8f:
40:3c:15:73:2e:d1:f5:72:d2:97:db:28:8f:8c:d4:
10:c0:d6:7b:62:48:0d:c8:3f:c2:01:47:e2:c7:f4:
74:b0:dd:94:73:b6:e7:cc:26:ae:98:c0:a9:da:64:
36:52:85:54:6f:01:06:1e:56:05:a7:8c:eb:36:1e:
da:1f:96:98:de:f9:6c:7b:cc:27:65:25:64:5e:87:
fc:fa:94:c3:62:b9:12:66:2a:24:35:3d:18:47:05:
fc:7e:7c:42:e7:00:12:84:e1:09:0c:b4:60:8b:af:
bf:4a:03:b4:1a:ec:05:ab:f2:02:cc:10:eb:0c:32:
21:41:16:04:10:1d:d3:76:1d:e0:a4:f6:f8:b6:d2:
fd:1e:58:15:65:3a:3e:9d:4d:3f:98:71:14:0b:3f:
95:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:97:B9:12:5C:DC:34:CD:EF:A6:4D:73:F1:26:9E:90:70:AE:A9:56
X509v3 Authority Key Identifier:
keyid:E2:04:E1:C2:01:14:D7:73:16:94:DD:C4:F2:77:C4:DF:1B:FF:C4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gThwgEU13MWlN3E8nfE3xv_xPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/b9df5a-a454-4e27-86af-13d380715cef/1/XJe5ElzcNM3vpk1z8SaekHCuqVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/b9df5a-a454-4e27-86af-13d380715cef/1/4gThwgEU13MWlN3E8nfE3xv_xPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.104.128.0/19
Signature Algorithm: sha256WithRSAEncryption
f1:3e:d7:c9:27:ab:5b:43:31:a4:26:12:09:88:98:6e:ce:90:
f3:58:3d:2b:e8:34:97:7d:17:95:7e:be:0e:8e:0c:4a:7b:cb:
ef:28:17:f8:26:7a:0d:59:96:b2:fa:e1:72:3f:2e:9c:cc:2a:
33:b6:d4:1a:a9:ba:f8:ea:dc:61:0c:95:52:06:9b:2a:6b:6b:
fb:9c:94:e0:1f:4b:d5:b5:7a:19:db:03:ea:2e:5f:04:cf:36:
49:54:a1:ec:b1:37:e0:6a:bc:e9:e5:05:9c:52:e3:f2:6f:f3:
75:c9:bf:cd:1f:d6:41:86:fe:ad:b9:c7:d0:35:07:65:53:00:
4a:74:fc:35:15:74:05:85:7d:a2:ae:4e:9f:ac:50:56:b9:ff:
48:64:2c:b3:da:7c:a9:1b:5c:28:6e:06:4e:39:c0:b2:8a:95:
66:2a:6b:de:8c:92:68:04:51:fa:b2:b0:25:cc:e7:a5:0d:ee:
ae:37:d9:61:6d:a2:23:b2:d1:7e:c2:74:c2:68:b6:2b:12:bf:
f1:7a:53:e5:51:f0:2e:21:74:c5:44:eb:22:66:bb:a6:aa:22:
41:58:07:a9:74:92:c5:15:a8:79:6d:21:a3:e0:c2:00:b0:90:
d5:d6:a9:b5:29:1a:39:1d:27:4e:43:ca:42:26:d6:d9:15:20:
7d:2b:41:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-fra.rpki-client.org