Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/1-TknP_ZcBiaqF1nfze9eD2_UvEI.roa
File: 1-TknP_ZcBiaqF1nfze9eD2_UvEI.roa (raw, json)
Hash identifier: 061VFdMAQZJ0MxTdUEaoTK1ESSHx5C6ne0Pmw+0p1XM=
Subject key identifier: F9:39:27:3F:F6:5C:06:26:AA:17:59:DF:CD:EF:5E:0F:6F:D4:BC:42
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 045B9448
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/1-TknP_ZcBiaqF1nfze9eD2_UvEI.roa
Signing time: Sat 01 Jan 2022 05:56:28 +0000
ROA not before: Sat 01 Jan 2022 05:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 5.56.34.0/24 maxlen: 24
5.56.35.0/24 maxlen: 24
2a01:47c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73110600 (0x45b9448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Jan 1 05:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f939273ff65c0626aa1759dfcdef5e0f6fd4bc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:37:82:d4:1d:2a:40:47:b5:9a:84:c5:bf:15:
92:c2:a9:7a:34:d8:8c:d9:08:38:c3:10:9c:11:e6:
98:1e:23:8c:d3:72:57:36:63:55:45:df:c5:5e:19:
1c:24:a8:72:3b:6a:db:d8:34:51:5e:de:d3:83:72:
b1:63:42:31:84:59:88:93:f8:af:c3:e3:7e:46:0e:
b6:39:33:f8:6c:f6:c5:ba:80:6d:bd:d3:4a:3d:97:
92:ef:b3:5a:6a:f3:ac:66:95:bd:4a:0a:e1:30:4b:
5d:25:43:ec:1b:41:80:ef:60:b3:54:70:98:54:c2:
c3:3c:14:03:67:44:b1:b2:95:b0:a6:0f:84:08:81:
bd:ff:e3:a0:88:2b:2f:ff:36:b3:d3:14:6e:b8:8e:
b2:da:25:9c:03:24:68:34:bc:4b:f0:c9:18:5b:1b:
1c:47:8a:4b:25:61:03:4d:c0:3f:80:66:b3:8d:82:
3a:0a:37:3a:15:f2:b1:3e:6b:6f:e2:66:14:c4:aa:
76:d8:69:6f:fc:d0:d7:0b:dd:c8:95:88:75:17:fb:
cf:39:94:dd:43:3f:24:8f:21:2f:db:2f:29:f3:3d:
28:c1:06:07:38:67:e5:5f:14:dd:d1:3d:64:5b:62:
59:16:6e:0b:38:dd:e4:89:bf:c8:90:d9:15:7a:0b:
d2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:39:27:3F:F6:5C:06:26:AA:17:59:DF:CD:EF:5E:0F:6F:D4:BC:42
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/1-TknP_ZcBiaqF1nfze9eD2_UvEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.34.0/23
IPv6:
2a01:47c2::/32
Signature Algorithm: sha256WithRSAEncryption
25:de:87:a5:b7:d5:3a:50:24:38:c2:78:0a:1b:a5:48:5f:ee:
e1:29:6d:49:c4:61:05:68:bb:d4:ae:53:f2:5d:3d:1f:0f:3a:
ab:76:7a:3a:e4:c0:89:81:f8:27:c6:a6:8c:24:50:8e:d1:6b:
36:de:e9:c4:a0:07:f7:78:86:57:d5:f2:3a:94:43:21:99:40:
ae:30:b2:d6:4e:07:df:52:4b:ec:ad:93:1c:77:99:dd:53:9a:
a7:37:d5:99:65:5b:ca:31:ef:6b:b1:ec:57:71:2a:ff:1a:56:
48:67:7f:b9:fd:da:37:0d:f8:87:b2:8e:7b:b0:04:c7:47:46:
3a:8e:f8:b1:71:c4:54:e1:b8:37:29:19:b8:d1:41:c6:de:d2:
e2:0f:c9:9c:69:f1:38:19:ae:83:77:84:3f:92:44:83:c7:92:
41:9c:45:1b:53:d6:46:6c:18:5c:4a:56:a9:f3:ae:06:23:3f:
7a:3d:cc:61:bc:7f:bc:7a:fa:40:45:ab:f3:4c:ed:e5:62:92:
42:70:5e:41:90:f9:7c:c7:af:93:99:23:39:23:f2:fd:09:aa:
7f:c2:bc:a5:91:7f:a9:ca:3c:ee:a1:65:98:fd:e6:ab:15:b6:
d2:4a:3b:a5:3c:9b:0f:20:37:41:aa:87:85:a0:bc:51:2b:87:
de:c7:cf:59
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEBFuUSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NzFjYzBkNThiMTZhZGJiZjdmYTVjMmZkYmMzNjU5ZjljNzNjN2JhMB4XDTIyMDEw
MTA1NTYyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjkzOTI3M2ZmNjVj
MDYyNmFhMTc1OWRmY2RlZjVlMGY2ZmQ0YmM0MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL03gtQdKkBHtZqExb8VksKpejTYjNkIOMMQnBHmmB4jjNNy
VzZjVUXfxV4ZHCSocjtq29g0UV7e04NysWNCMYRZiJP4r8PjfkYOtjkz+Gz2xbqA
bb3TSj2Xku+zWmrzrGaVvUoK4TBLXSVD7BtBgO9gs1RwmFTCwzwUA2dEsbKVsKYP
hAiBvf/joIgrL/82s9MUbriOstolnAMkaDS8S/DJGFsbHEeKSyVhA03AP4Bms42C
Ogo3OhXysT5rb+JmFMSqdthpb/zQ1wvdyJWIdRf7zzmU3UM/JI8hL9svKfM9KMEG
Bzhn5V8U3dE9ZFtiWRZuCzjd5Im/yJDZFXoL0isCAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBT5OSc/9lwGJqoXWd/N714Pb9S8QjAfBgNVHSMEGDAWgBSnHMDVixatu/f6
XC/bw2WfnHPHujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3B4ekExWXNXcmJ2My1sd3YyOE5sbjV4eng3by5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvNWY1YTYwLTkwMjYtNGI2Ni1iYWFhLWRlNjQwZDAxMjA2NS8x
LzEtVGtuUF9aY0JpYXFGMW5memU5ZUQyX1V2RUkucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE1
LzVmNWE2MC05MDI2LTRiNjYtYmFhYS1kZTY0MGQwMTIwNjUvMS9weHpBMVlzV3Ji
djMtbHd2MjhObG41eHp4N28uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAEFOCIwDQQCAAIwBwMFACoBR8Iw
DQYJKoZIhvcNAQELBQADggEBACXeh6W31TpQJDjCeAobpUhf7uEpbUnEYQVou9Su
U/JdPR8POqt2ejrkwImB+CfGpowkUI7Razbe6cSgB/d4hlfV8jqUQyGZQK4wstZO
B99SS+ytkxx3md1Tmqc31ZllW8ox72ux7FdxKv8aVkhnf7n92jcN+IeyjnuwBMdH
RjqO+LFxxFThuDcpGbjRQcbe0uIPyZxp8TgZroN3hD+SRIPHkkGcRRtT1kZsGFxK
VqnzrgYjP3o9zGG8f7x6+kBFq/NM7eVikkJwXkGQ+XzHr5OZIzkj8v0Jqn/CvKWR
f6nKPO6hZZj95qsVttJKO6U8mw8gN0Gqh4WgvFErh97Hz1k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org