Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/0b951a-8e6c-4445-9c2d-9f00c72620f6/1/ELl5frD3V767nGZBZ8oF59qfLPo.roa
File: ELl5frD3V767nGZBZ8oF59qfLPo.roa (raw, json)
Hash identifier: 9YBa5s9u0pTXwJFBjcM00Sv/rA/tIHeOxCcSFKEM4Y0=
Subject key identifier: 10:B9:79:7E:B0:F7:57:BE:BB:9C:66:41:67:CA:05:E7:DA:9F:2C:FA
Certificate issuer: /CN=bc663667973238b184d9eefd36bbf3810ba4b6d9
Certificate serial: 021F289E
Authority key identifier: BC:66:36:67:97:32:38:B1:84:D9:EE:FD:36:BB:F3:81:0B:A4:B6:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGY2Z5cyOLGE2e79NrvzgQukttk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/0b951a-8e6c-4445-9c2d-9f00c72620f6/1/ELl5frD3V767nGZBZ8oF59qfLPo.roa
Signing time: Sat 01 Jan 2022 06:03:19 +0000
ROA not before: Sat 01 Jan 2022 06:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198608
IP address blocks: 5.57.48.0/21 maxlen: 21
185.168.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35596446 (0x21f289e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc663667973238b184d9eefd36bbf3810ba4b6d9
Validity
Not Before: Jan 1 06:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10b9797eb0f757bebb9c664167ca05e7da9f2cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:da:7e:30:b8:f3:3e:26:8f:c3:bf:0a:a6:28:
43:cd:fc:8a:77:79:4a:65:15:81:ab:ca:fd:0f:91:
17:6e:8a:ef:20:63:65:51:c4:7e:1b:c9:6a:66:ee:
7e:c2:30:79:3c:88:7e:1a:14:cf:c6:a9:ff:2b:75:
d2:8f:f3:a5:6f:ce:2a:fb:0a:1e:cc:23:5a:d8:68:
60:1a:ba:c4:ba:e2:a0:8c:da:88:24:8f:3b:22:62:
56:7d:8e:56:00:cf:97:ce:cc:42:15:e6:b5:7d:3f:
08:14:43:a7:16:ca:9c:f6:60:ff:94:85:9d:dc:66:
1e:37:fe:63:e3:42:53:c4:06:38:07:71:27:36:7f:
ed:be:03:7a:f3:08:d4:c4:01:49:ff:e2:db:fa:ee:
24:c0:01:a8:02:c8:98:b7:7f:4c:8f:a1:99:62:71:
7d:36:86:14:35:5a:60:f4:32:15:30:db:3b:27:a4:
eb:5e:a4:8c:48:86:b2:03:2b:b7:be:4b:e6:cf:65:
39:fb:05:b3:ce:6e:e7:3a:f1:01:0c:ed:3d:67:7c:
7e:d5:54:ae:94:c6:f3:82:12:93:8e:41:e9:d9:57:
71:28:d4:3b:3c:ed:00:bc:c4:9a:77:1e:61:de:d2:
66:10:56:17:27:7a:e9:b8:ce:30:a8:0f:80:f6:7f:
13:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B9:79:7E:B0:F7:57:BE:BB:9C:66:41:67:CA:05:E7:DA:9F:2C:FA
X509v3 Authority Key Identifier:
keyid:BC:66:36:67:97:32:38:B1:84:D9:EE:FD:36:BB:F3:81:0B:A4:B6:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGY2Z5cyOLGE2e79NrvzgQukttk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/0b951a-8e6c-4445-9c2d-9f00c72620f6/1/ELl5frD3V767nGZBZ8oF59qfLPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/0b951a-8e6c-4445-9c2d-9f00c72620f6/1/vGY2Z5cyOLGE2e79NrvzgQukttk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.48.0/21
185.168.244.0/22
Signature Algorithm: sha256WithRSAEncryption
21:e8:50:14:ae:f4:7e:ea:7a:54:ca:45:f2:a9:5c:5a:83:80:
ca:9d:1d:9a:4f:22:26:06:cf:22:c8:ef:68:b1:29:44:16:dd:
18:e0:36:eb:cf:fe:48:24:df:b7:07:8f:42:33:34:82:3f:12:
ed:49:bd:25:ed:a5:80:26:37:fd:f9:62:a4:50:93:3a:86:68:
77:2d:2a:1f:93:cf:3f:65:38:af:5c:6b:66:bc:ff:50:57:18:
16:7d:50:54:97:d1:13:63:80:66:1f:51:8b:47:b8:f7:f8:5b:
82:cc:bd:4a:52:b9:f1:1e:be:c1:af:91:70:ac:dc:6c:10:91:
f6:92:82:49:00:f6:16:74:6e:bb:d3:30:87:b5:33:e6:99:05:
e8:0f:db:45:2b:9b:7b:8c:61:cf:24:57:dc:2f:ea:3d:44:5d:
97:ff:21:86:f4:85:d6:df:98:bc:f1:83:af:28:b6:da:c0:35:
19:fb:ef:50:86:25:32:2a:5e:42:c2:05:7f:95:c1:38:31:ca:
c7:46:48:28:0f:aa:a3:28:29:30:82:a4:e9:91:ce:b0:b5:79:
61:68:fb:40:cf:ac:09:2d:aa:81:fa:12:42:92:d1:dd:6c:40:
a6:d5:e5:65:d2:36:cf:4a:8f:33:9a:83:89:d1:0b:cc:52:44:
b3:78:19:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-fra.rpki-client.org