Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/5e7rUX-CYxKnMqN2R8B9FJZpL1U.roa
File: 5e7rUX-CYxKnMqN2R8B9FJZpL1U.roa (raw, json)
Hash identifier: q6h4ylL7KVpBKBt0aAK367gh/v8t12VuKM9AcVWBCO8=
Subject key identifier: E5:EE:EB:51:7F:82:63:12:A7:32:A3:76:47:C0:7D:14:96:69:2F:55
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 01826416F89C056333C80C887580A1927542
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/5e7rUX-CYxKnMqN2R8B9FJZpL1U.roa
Signing time: Wed 03 Aug 2022 14:23:23 +0000
ROA not before: Wed 03 Aug 2022 14:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 192.109.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:64:16:f8:9c:05:63:33:c8:0c:88:75:80:a1:92:75:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Aug 3 14:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5eeeb517f826312a732a37647c07d1496692f55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3a:80:12:71:f9:44:2e:b8:6f:00:4b:39:ed:
f7:48:5b:fb:56:d4:f5:d5:97:30:59:df:34:a0:26:
9f:c3:94:9d:49:20:25:30:29:fa:90:8f:96:a5:bd:
4f:af:74:e1:55:3d:bf:76:ac:96:5f:db:f5:50:b9:
1a:28:eb:0a:2f:34:17:da:7f:e5:58:78:3e:a1:29:
a6:2c:9b:6f:93:6a:62:0b:87:ca:47:28:79:45:f7:
0f:ba:00:31:7c:1d:43:f7:c3:6c:c1:2d:8e:55:fd:
6a:55:a0:0e:f7:a7:87:ca:c2:59:3e:ce:96:8a:34:
36:43:e1:10:55:16:80:a3:a3:b3:7a:6a:a2:8b:85:
29:cf:ec:a3:cf:10:f4:3c:ca:ac:6e:e5:80:5f:b3:
df:e8:e0:6c:2f:94:82:cb:53:7d:36:b6:71:3a:d2:
5a:8d:de:15:fa:64:5b:0e:27:4b:ba:d0:b6:89:b9:
84:47:78:55:0c:d5:80:01:8e:00:6c:ed:c8:8f:67:
08:48:7e:2c:1f:43:51:15:c4:fe:85:ac:fb:d4:5f:
23:21:98:0b:0a:dc:ba:ee:51:a7:27:31:84:5e:63:
f2:c1:52:db:f4:52:47:d0:89:50:f3:07:c1:07:a4:
f9:26:84:73:96:50:d3:f4:b4:b9:1b:10:68:2b:a0:
6f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:EE:EB:51:7F:82:63:12:A7:32:A3:76:47:C0:7D:14:96:69:2F:55
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/5e7rUX-CYxKnMqN2R8B9FJZpL1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.201.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:67:68:5f:dd:16:78:27:75:96:c0:b1:61:d8:93:18:96:5e:
f9:7a:7e:de:2d:99:0a:d4:98:d0:58:17:9a:b7:b3:54:ed:08:
34:95:a6:4a:e9:7b:05:29:fd:ed:20:c2:35:6f:f5:a9:86:4c:
03:c8:6e:df:41:78:d6:f8:e7:a3:b1:1b:ec:a9:6a:18:e5:80:
bb:3c:69:9c:8f:f2:c1:85:12:c2:e9:ef:5e:12:36:19:4e:0a:
0d:64:03:8e:02:4b:0e:14:1c:25:ee:e2:f2:84:1f:ac:9f:a1:
bf:66:e6:b3:92:22:01:fb:f9:3b:a0:38:70:a0:70:ad:fc:39:
77:0c:00:27:f8:77:1d:03:8a:37:38:88:8d:d5:59:24:5e:6f:
4a:28:f7:13:5d:ab:2b:e6:a6:ac:88:76:86:69:75:da:36:22:
a0:78:13:4b:e7:ae:0c:b1:e9:31:fa:24:6f:c1:21:51:25:45:
22:fd:25:eb:25:1f:8a:dc:b4:1d:3c:01:e5:40:48:89:44:3b:
03:99:28:6f:88:65:03:a7:c5:ee:a5:a7:d7:5c:fa:6b:9b:19:
f1:b9:a2:8e:e8:5b:ed:a4:5a:a7:bc:62:2c:e1:12:92:f2:f8:
9a:dc:87:39:9c:32:71:cc:93:95:cb:99:fb:57:de:45:53:1b:
a1:19:3c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:58 2024 by rpki-client on console-fra.rpki-client.org