Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/DY9tl8zsa58NRYhjNmWYbiGvRac.roa
File: DY9tl8zsa58NRYhjNmWYbiGvRac.roa (raw, json)
Hash identifier: blOdvEHYCrKeQVAk5J3oKmhvWOnAMTctwPO6qXL0rNc=
Subject key identifier: 0D:8F:6D:97:CC:EC:6B:9F:0D:45:88:63:36:65:98:6E:21:AF:45:A7
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 0184C6A78F2C46C6F25AE8773FC12DDFF232
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/DY9tl8zsa58NRYhjNmWYbiGvRac.roa
Signing time: Wed 30 Nov 2022 03:49:40 +0000
ROA not before: Wed 30 Nov 2022 03:49:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35145
IP address blocks: 5.181.226.0/23 maxlen: 23
5.181.226.0/24 maxlen: 24
5.181.227.0/24 maxlen: 24
2a0e:800::/32 maxlen: 48
2a0e:802:1::/48 maxlen: 48
2a0e:801::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c6:a7:8f:2c:46:c6:f2:5a:e8:77:3f:c1:2d:df:f2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Nov 30 03:49:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d8f6d97ccec6b9f0d4588633665986e21af45a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:68:f2:9a:f1:8d:47:a4:dc:48:4b:2d:c9:b2:
f2:66:77:bf:13:41:86:67:0d:30:07:fc:65:2a:02:
f1:fd:9a:30:5c:f8:30:e5:56:59:6d:d6:91:9e:eb:
f1:32:8f:ce:1f:89:08:58:fa:f7:ac:44:78:6e:eb:
d5:76:7e:49:b5:df:88:b3:ca:80:19:44:14:99:73:
eb:06:30:15:57:c0:62:55:10:e4:de:5d:b4:5d:5c:
aa:cc:45:84:00:bf:6a:ce:92:ba:4b:24:73:ba:46:
95:cf:b7:fd:6e:6e:63:2b:00:c1:cd:a4:f8:38:c0:
4c:06:bd:a9:5a:94:89:e8:10:f0:73:d3:9b:2b:02:
fc:a2:23:07:98:7b:3c:18:92:f2:ad:e4:77:65:cc:
64:b8:5d:0c:42:aa:00:0d:5d:0b:84:36:c6:aa:54:
35:a5:28:19:66:5b:e8:93:bc:34:1b:50:83:15:d1:
b9:dc:f0:11:2c:17:ff:9e:81:6f:5a:63:0d:1e:56:
03:54:a8:06:86:ee:1a:75:e8:30:9f:a2:74:a5:be:
37:05:08:c5:81:7c:f1:83:fb:c9:2e:f0:65:07:7b:
06:0a:37:9f:72:0f:cf:bf:20:84:a6:51:b3:ec:55:
db:11:99:70:7f:ce:8c:92:1b:c3:ee:78:11:cd:15:
2b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8F:6D:97:CC:EC:6B:9F:0D:45:88:63:36:65:98:6E:21:AF:45:A7
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/DY9tl8zsa58NRYhjNmWYbiGvRac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.226.0/23
IPv6:
2a0e:800::/31
2a0e:802:1::/48
Signature Algorithm: sha256WithRSAEncryption
a7:90:e2:90:8b:fa:09:74:39:84:8f:19:86:58:e0:cc:1e:a8:
98:48:84:b0:4b:69:8f:f1:70:17:fd:d8:18:06:8e:1c:17:fa:
15:52:88:69:1a:6f:e8:23:af:6f:fd:ce:11:1d:d4:9b:58:86:
aa:4e:01:e4:99:cc:b8:0f:4e:a0:52:4a:dd:3e:ef:79:9c:27:
7e:cb:d2:d2:d1:3b:a5:f0:ae:54:54:78:9e:70:bf:3a:3e:35:
c2:9c:16:33:ed:05:78:fe:34:0b:65:38:02:ba:4f:98:c8:f8:
cb:93:4e:87:4b:4c:cb:2c:a9:a2:b1:14:4d:e7:22:9d:d5:a0:
8a:6c:f5:e4:2a:ce:92:00:a3:11:07:d8:50:81:da:17:00:28:
cc:fd:6c:29:32:ed:9d:ea:50:2e:8b:86:ca:f1:e4:16:47:fa:
b2:99:46:87:7c:e1:0d:10:59:82:75:80:95:24:87:da:d4:52:
b6:e9:a0:22:e4:03:1f:c6:6a:c0:d8:b2:bf:a0:63:c7:07:c1:
ef:c0:3b:f7:db:77:dd:c8:f2:c8:f7:81:b9:d4:92:49:2f:cf:
f6:44:9c:76:4c:82:91:78:92:79:58:f7:09:cc:42:74:0c:a3:
dd:78:51:b7:35:59:77:9e:c4:f2:73:a4:b4:4d:13:3e:48:89:
84:47:86:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org