Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/kYnPy6gBQdXsjocywS0zUGFO3rE.roa
File: kYnPy6gBQdXsjocywS0zUGFO3rE.roa (raw, json)
Hash identifier: fRg9nFC3Fr6N7rO0YHauBT/o+fA6xlb38L1zo4Ue4AU=
Subject key identifier: 91:89:CF:CB:A8:01:41:D5:EC:8E:87:32:C1:2D:33:50:61:4E:DE:B1
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 045B6EE4
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/kYnPy6gBQdXsjocywS0zUGFO3rE.roa
Signing time: Sat 01 Jan 2022 05:56:28 +0000
ROA not before: Sat 01 Jan 2022 05:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5588
IP address blocks: 5.56.37.0/24 maxlen: 24
5.56.33.0/24 maxlen: 24
5.56.38.0/24 maxlen: 24
2a01:47c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73101028 (0x45b6ee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Jan 1 05:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9189cfcba80141d5ec8e8732c12d3350614edeb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:90:e7:ed:2c:ca:17:86:9e:0d:ec:10:4e:b1:
e5:3d:04:d2:0f:17:a1:f4:fa:66:54:2a:90:25:7a:
97:9d:d4:41:85:d7:84:4f:57:9e:0a:a4:97:e9:34:
be:b6:b4:49:ab:b6:de:9e:b9:f5:70:10:65:93:0f:
f8:61:a1:27:9f:84:b6:53:e6:3e:ff:38:c2:f1:d4:
1e:27:36:f6:66:73:f1:b8:6e:b0:5a:cf:1e:7f:63:
d9:e5:64:b0:1d:5f:bf:65:c9:67:75:5f:58:2c:f8:
47:bf:52:aa:9b:38:5c:88:c7:19:c1:e1:cd:bd:87:
d6:b1:50:a9:a8:ec:2d:25:fc:c8:b1:36:68:8f:7f:
2c:55:81:94:ad:34:8c:20:5c:45:b4:d9:66:ee:62:
33:ab:78:74:ef:9e:0a:54:7e:5b:49:bc:3a:d1:8d:
64:8d:c7:15:01:6c:59:6e:ec:6f:24:c0:5f:67:db:
56:26:65:7e:ab:7e:f4:1e:f7:32:d2:06:c2:f0:b4:
03:b1:d9:07:41:40:f2:33:29:e8:29:97:1a:60:79:
00:fd:af:8b:48:1e:78:d0:83:0f:c4:c6:01:97:d5:
9b:32:52:1b:71:87:40:43:e4:0e:01:0b:a7:e0:02:
50:6a:0c:c8:2d:f4:e9:97:b3:40:b6:01:2f:3e:20:
18:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:89:CF:CB:A8:01:41:D5:EC:8E:87:32:C1:2D:33:50:61:4E:DE:B1
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/kYnPy6gBQdXsjocywS0zUGFO3rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.33.0/24
5.56.37.0-5.56.38.255
IPv6:
2a01:47c0::/32
Signature Algorithm: sha256WithRSAEncryption
e8:d4:74:94:a3:6b:0e:64:0a:ac:e0:60:f5:2d:76:cd:5b:2f:
25:37:a9:8a:24:03:b9:45:a9:96:0a:6a:6c:9d:2a:c2:ce:d1:
da:89:2d:94:72:a6:ff:c3:ba:56:49:ed:c2:ba:8e:ac:45:86:
ce:c0:46:86:85:e9:c1:90:e2:f5:6f:6a:b4:15:55:ec:86:75:
b2:c1:cb:88:4c:e0:d2:dd:2f:93:23:5b:86:b4:02:7a:8c:59:
6f:ae:5c:f9:28:4f:3b:24:13:99:93:d1:06:86:11:ad:67:aa:
ee:e9:0d:7d:4a:a9:c9:b1:d6:32:8e:f0:26:4e:03:40:d9:e5:
7a:69:6b:70:12:7a:2a:f3:89:5d:2d:1b:6e:86:72:fb:a3:b4:
e2:20:0b:cf:b5:97:a7:45:6e:5e:71:f5:27:fd:28:e2:d3:06:
aa:60:6c:9f:b5:9b:5a:af:8e:2d:4d:31:1f:9e:d5:0d:05:79:
70:43:a9:fb:78:9d:a9:8b:af:a9:b5:26:cb:5b:7b:e0:62:17:
78:26:e8:ac:32:d4:60:1b:3c:5b:49:d3:8e:b9:e4:3e:87:a1:
f6:b3:19:c5:6e:09:02:25:7d:91:8c:e3:53:ef:7b:5c:9f:19:
96:dd:f0:69:f3:84:cd:6c:85:e4:36:63:6d:e8:31:49:06:b3:
ba:6d:cf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:03 2024 by rpki-client on console-ams.rpki-client.org