Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AQDIj8J5QaOSNCKNu4ddEqgCKLY.roa
File: AQDIj8J5QaOSNCKNu4ddEqgCKLY.roa (raw, json)
Hash identifier: o7orWsk8wNQMl4RZhklhCShqCumJInfKiV7/Bli+WT0=
Subject key identifier: 01:00:C8:8F:C2:79:41:A3:92:34:22:8D:BB:87:5D:12:A8:02:28:B6
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 36936CE3
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AQDIj8J5QaOSNCKNu4ddEqgCKLY.roa
Signing time: Sat 01 Jan 2022 01:01:06 +0000
ROA not before: Sat 01 Jan 2022 01:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34977
IP address blocks: 5.23.12.0/24 maxlen: 24
5.23.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 915631331 (0x36936ce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 01:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0100c88fc27941a39234228dbb875d12a80228b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3e:3e:c0:11:98:7b:11:48:2a:d0:2e:e0:91:
dd:a1:58:b4:da:ed:3b:3e:9e:9c:30:d6:a5:99:55:
30:e3:e0:5d:0e:30:f3:20:ca:cc:cc:de:c7:ef:65:
9f:0b:72:bb:99:fb:39:1e:85:0e:82:98:e9:90:b3:
04:bb:34:f7:7b:1c:23:9f:2f:f5:91:6b:d0:c4:7d:
a0:1d:e5:70:cf:ba:be:76:bb:f2:8d:14:60:6f:b2:
cc:0d:64:f4:2c:be:4d:38:8d:e4:b1:1d:38:ea:9a:
65:de:8e:47:63:f2:28:bb:1b:d3:d9:5e:3a:47:eb:
d9:36:68:26:17:74:03:a8:89:11:fa:36:a9:81:8b:
55:95:c6:a2:89:32:2e:6b:2b:13:d4:5e:69:d0:37:
41:01:4d:3b:39:96:24:d8:8f:3f:3b:2c:5a:25:b8:
59:87:34:10:f3:55:af:b2:b9:e9:b0:70:33:fa:9d:
05:a0:40:c6:bf:d8:18:2b:38:02:a0:4d:47:00:e1:
72:63:b9:16:68:95:25:e6:54:2c:f7:90:95:99:65:
cf:4b:7e:26:25:af:36:25:6f:46:9c:cc:03:f0:c5:
c9:d9:a6:4d:6b:5c:75:dd:19:66:f4:76:00:67:e7:
d6:34:e8:ce:94:91:b7:6f:c7:c8:8f:61:ce:56:41:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:00:C8:8F:C2:79:41:A3:92:34:22:8D:BB:87:5D:12:A8:02:28:B6
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AQDIj8J5QaOSNCKNu4ddEqgCKLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.12.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:27:c8:26:63:e1:84:af:1a:2c:0c:c5:44:a5:aa:0a:49:40:
61:e9:a6:cb:2a:4f:40:f7:79:36:45:f2:d6:86:a4:b4:2a:76:
81:88:d9:0d:76:58:9d:bc:75:c7:c4:70:c8:dd:28:4b:78:51:
e0:1f:63:26:6a:db:b4:cf:52:1a:d8:41:9d:f5:a4:82:ef:34:
28:7e:78:aa:40:e4:61:41:d6:a3:dd:1f:41:71:ac:68:ee:38:
9b:28:5d:b8:22:76:1e:8b:cc:ee:ab:04:53:2b:f1:f8:d5:03:
5e:af:72:88:25:9a:f0:e4:11:7c:64:95:e5:ec:28:0b:0f:ee:
12:1a:cb:41:81:03:5d:bd:04:c8:6d:51:d0:79:76:84:a5:f4:
85:3d:a9:06:25:63:af:7b:d9:f1:6f:75:b2:05:84:db:0c:13:
5f:d5:49:db:47:5a:be:a2:d6:e9:84:8e:d7:43:cb:19:f4:00:
96:5d:45:0d:67:86:80:71:ec:15:c1:92:42:6e:2b:af:5a:f6:
90:a4:13:22:8b:80:c6:63:b6:08:a5:74:84:b8:88:6d:fa:2f:
3f:fd:5e:ca:c1:bb:63:ff:35:88:f4:2d:b2:35:5a:21:c8:2d:
dc:b5:c7:ea:de:fb:06:d0:86:93:3d:05:f4:98:9f:31:e9:2b:
7a:d5:fd:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org