Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/703df2-b8b4-48f7-9301-de81c7c1e754/1/5FK33_AuacCTiqVB035KFhVnO_Y.roa
File: 5FK33_AuacCTiqVB035KFhVnO_Y.roa (raw, json)
Hash identifier: BLkDBif+052vvGXiam6Hh9yZqfWynR8k0EXQAEckMIk=
Subject key identifier: E4:52:B7:DF:F0:2E:69:C0:93:8A:A5:41:D3:7E:4A:16:15:67:3B:F6
Certificate issuer: /CN=8e2b2982bbbd438b7ab1ac04e36c1880f38c6ada
Certificate serial: 02AA6B24
Authority key identifier: 8E:2B:29:82:BB:BD:43:8B:7A:B1:AC:04:E3:6C:18:80:F3:8C:6A:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jispgru9Q4t6sawE42wYgPOMato.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/703df2-b8b4-48f7-9301-de81c7c1e754/1/5FK33_AuacCTiqVB035KFhVnO_Y.roa
Signing time: Sat 01 Jan 2022 05:54:01 +0000
ROA not before: Sat 01 Jan 2022 05:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34538
IP address blocks: 193.239.158.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44722980 (0x2aa6b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e2b2982bbbd438b7ab1ac04e36c1880f38c6ada
Validity
Not Before: Jan 1 05:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e452b7dff02e69c0938aa541d37e4a1615673bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:67:38:cb:81:0d:72:81:20:37:8a:e3:99:c8:
6a:98:40:0e:53:71:96:c0:b2:9f:cb:40:02:8e:f5:
47:6b:a6:0f:9f:24:d9:34:cb:3a:1f:af:85:80:03:
0c:ad:87:83:48:c3:6b:7f:4f:e8:6d:5d:62:08:88:
50:f5:78:53:d1:7a:ef:b1:77:65:0d:0b:5c:71:17:
2c:eb:73:78:0a:35:30:d1:52:0d:9a:e9:7a:90:92:
74:13:a4:e7:f9:27:54:85:a5:e1:26:85:44:43:e4:
99:f3:df:ab:bd:93:13:eb:10:e8:06:85:aa:ee:4a:
b1:d0:55:46:e1:4c:6d:ef:2c:fe:b3:9c:16:69:46:
d7:d6:96:51:80:31:c7:ff:8c:d9:92:8e:12:d1:51:
e3:89:c0:42:66:85:a3:cc:84:4f:f1:a6:3e:ad:8e:
da:73:b8:3a:10:2c:79:b1:88:ba:f9:bf:fb:2e:b1:
e4:ca:4f:76:25:74:5f:d5:f8:a5:79:0b:f1:41:d1:
e9:92:e9:8e:fc:a7:73:a8:58:1f:ee:86:52:f0:2d:
a7:2c:af:a2:6c:a4:66:ab:bc:ac:1b:67:06:45:ab:
a3:68:84:7e:d0:18:10:11:f8:4f:89:5f:03:6a:85:
b8:f8:99:a2:7b:25:c9:47:f2:2f:d8:0e:ad:ac:b6:
4a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:52:B7:DF:F0:2E:69:C0:93:8A:A5:41:D3:7E:4A:16:15:67:3B:F6
X509v3 Authority Key Identifier:
keyid:8E:2B:29:82:BB:BD:43:8B:7A:B1:AC:04:E3:6C:18:80:F3:8C:6A:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jispgru9Q4t6sawE42wYgPOMato.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/703df2-b8b4-48f7-9301-de81c7c1e754/1/5FK33_AuacCTiqVB035KFhVnO_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/703df2-b8b4-48f7-9301-de81c7c1e754/1/jispgru9Q4t6sawE42wYgPOMato.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.158.0/23
Signature Algorithm: sha256WithRSAEncryption
82:df:f5:ad:ce:de:48:5e:11:78:57:73:5b:f7:19:58:f4:6b:
c2:d8:ee:73:62:10:b0:4f:9c:dc:e1:d5:63:c1:f2:c3:52:7c:
82:07:9e:be:e4:8d:dc:a8:3f:43:24:23:d9:4b:26:ef:50:e4:
e4:bc:4f:bd:ff:78:68:d5:a0:af:f6:86:aa:49:e9:80:7d:e4:
45:0d:c1:14:b6:18:6f:c3:ef:e9:f2:4d:f7:a3:0a:4c:4b:ec:
2b:9a:da:76:a3:d0:53:0c:c7:52:6a:41:7e:a7:e9:b8:1f:b2:
db:a1:c8:d0:fe:74:f5:e1:b2:09:34:9d:f9:b8:fb:30:e3:27:
70:f8:51:97:fa:07:d7:b9:ba:cd:f8:14:4e:94:26:9b:30:51:
93:02:47:d7:47:1e:72:65:50:62:f2:7a:ac:c7:59:fa:52:fb:
c8:2b:35:f3:ae:34:b4:a3:a9:b6:61:ca:46:b1:02:f3:2f:63:
41:95:53:25:3a:e2:f8:d9:71:59:4e:ef:09:16:20:20:14:83:
9a:b6:03:8c:4d:72:74:70:e4:e8:ec:2a:6c:cf:4d:19:8d:22:
79:cf:23:82:de:02:d1:b4:b4:d7:ff:88:b6:ce:fc:0b:c0:3f:
b4:29:c4:b3:1f:5c:57:5f:0e:35:03:40:74:d1:7d:46:2f:d0:
02:9e:99:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:06 2024 by rpki-client on console-ams.rpki-client.org