Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/WrVUlU91x3NP_LS96yVBCxKpr64.roa
File: WrVUlU91x3NP_LS96yVBCxKpr64.roa (raw, json)
Hash identifier: 7reZz09mmSfLo6AkenuX97KgZhsuTwJ0rdj1SExfb6Y=
Subject key identifier: 5A:B5:54:95:4F:75:C7:73:4F:FC:B4:BD:EB:25:41:0B:12:A9:AF:AE
Certificate issuer: /CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Certificate serial: 03B53F
Authority key identifier: B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/WrVUlU91x3NP_LS96yVBCxKpr64.roa
Signing time: Wed 06 Apr 2022 13:55:10 +0000
ROA not before: Wed 06 Apr 2022 13:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17905
IP address blocks: 193.108.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243007 (0x3b53f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Validity
Not Before: Apr 6 13:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ab554954f75c7734ffcb4bdeb25410b12a9afae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:00:c9:af:19:df:62:ff:c3:b6:f5:18:87:aa:
0e:5b:07:f1:34:4a:15:02:4a:a0:e8:c6:c0:2c:48:
84:ed:5f:e3:5e:12:fe:6f:60:f0:25:b3:cc:28:4f:
17:1b:ed:0b:a1:98:00:c3:33:9d:67:dd:09:a7:d8:
f0:4b:4b:08:ce:f9:1e:6c:e1:13:74:79:46:73:1b:
eb:24:65:e1:9e:5a:e8:15:5b:75:19:b9:ec:b9:e6:
1b:60:0b:67:6b:dc:58:66:7c:66:ba:40:80:cf:e3:
ea:d1:38:75:93:ba:ea:72:95:3f:7a:15:58:99:e7:
ff:ca:21:97:18:bf:fa:c8:2b:4f:41:5d:19:a6:ef:
f2:26:b1:af:dd:a9:62:49:5f:b7:d3:48:64:db:44:
66:0c:65:32:a5:a5:69:40:a5:d5:d2:2c:4f:9c:1c:
16:98:a5:a3:e4:31:0a:d6:76:bf:31:9a:ad:6b:60:
2a:e9:86:68:e7:20:ae:0d:bb:8e:0d:75:9b:a1:a5:
06:7a:23:fe:2c:30:03:d5:8f:04:d7:e1:01:42:59:
0a:eb:53:8b:ee:de:aa:52:89:de:8f:ca:e6:ab:7c:
d5:6d:87:69:fd:30:a3:f4:5e:9f:e1:9e:b8:81:fb:
09:7f:66:cd:12:0b:5b:f6:0a:b9:88:33:3b:07:be:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B5:54:95:4F:75:C7:73:4F:FC:B4:BD:EB:25:41:0B:12:A9:AF:AE
X509v3 Authority Key Identifier:
keyid:B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/WrVUlU91x3NP_LS96yVBCxKpr64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/tTuhjVzrjnlMgTnOAqeRuFAYJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.157.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:60:31:0d:4e:b2:bf:29:f4:dc:38:80:f1:05:04:05:b7:88:
19:00:31:e1:84:52:41:4d:20:9e:b3:7d:ab:9f:ff:91:7a:92:
4a:bf:9e:9c:7c:25:cc:8c:66:5f:6a:8a:19:62:19:bc:96:44:
d7:a1:b0:91:b2:3e:88:6f:67:ba:a0:f2:02:ab:32:64:d0:db:
54:b4:cc:86:99:9c:dd:0d:56:fa:60:b3:a5:e1:91:41:bf:f3:
da:68:99:d0:ee:99:1d:22:77:2d:87:77:a3:83:a0:7e:28:85:
a1:09:bd:e5:8b:37:5f:af:73:06:b3:e9:d4:d7:9f:3b:7d:d8:
82:25:af:d0:97:9f:d3:16:04:26:d9:6e:d5:88:74:e4:b2:45:
d3:26:8a:d7:68:3b:a1:26:d5:0e:97:63:26:99:4b:9b:08:89:
3a:5a:6d:2c:7c:d8:2a:cb:c5:51:c3:01:6c:0b:02:36:0e:55:
56:1b:b4:b3:53:f6:0f:cc:a1:c7:1d:c5:a2:4a:fb:76:6a:e5:
ad:3d:2d:03:c7:cb:cc:2a:f0:be:59:85:33:b8:78:ca:d8:06:
30:f7:a7:44:dc:7f:32:f5:ac:02:99:47:01:63:62:78:d4:f1:
c8:27:42:ca:78:de:c1:c9:8b:b4:0c:ea:5e:8d:24:65:e4:39:
f6:5d:00:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:18 2023 by rpki-client on console-ams.rpki-client.org