Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/NJ7bLTiQ7QLk8KPNHmZuvzk0hPs.roa
File: NJ7bLTiQ7QLk8KPNHmZuvzk0hPs.roa (raw, json)
Hash identifier: sI7GUSDkKlO6HqqLXhDHMpA+D782p09ulEJyGazd8gs=
Subject key identifier: 34:9E:DB:2D:38:90:ED:02:E4:F0:A3:CD:1E:66:6E:BF:39:34:84:FB
Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Certificate serial: 03D6F137
Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/NJ7bLTiQ7QLk8KPNHmZuvzk0hPs.roa
Signing time: Sat 01 Jan 2022 09:58:05 +0000
ROA not before: Sat 01 Jan 2022 09:58:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209448
IP address blocks: 5.253.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64418103 (0x3d6f137)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Validity
Not Before: Jan 1 09:58:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=349edb2d3890ed02e4f0a3cd1e666ebf393484fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:4a:89:fc:7e:cd:0e:72:1b:2f:8e:49:8b:
cd:83:a6:84:e3:45:f7:08:7e:fe:f6:44:cf:81:86:
9b:cf:21:f9:b3:5e:b7:c1:24:1b:02:f2:16:7b:89:
cf:ee:ce:39:93:76:f5:ed:b2:14:3e:96:2c:5c:b4:
b2:9f:6b:bd:43:b0:d2:cd:01:ae:9b:f4:e5:85:e9:
45:7b:86:a8:67:1f:34:c7:47:17:b9:75:15:82:27:
71:09:01:b7:3b:26:9b:18:10:c1:e6:10:6e:3b:82:
cc:aa:54:b3:57:77:21:bc:c5:b1:1e:e2:a7:50:f4:
04:bf:a3:1f:8f:00:18:37:34:30:11:d9:f8:c0:08:
e1:23:f5:77:15:b2:d1:7b:dc:06:bb:3a:93:8d:db:
dc:a2:21:09:bc:75:91:9f:58:0e:43:d3:03:37:b0:
e9:97:87:c3:95:95:10:37:c7:0d:a1:2e:8f:dc:fe:
0c:c2:e7:b0:88:78:97:ed:75:b2:b0:4a:81:72:89:
d4:7b:8f:8c:1d:4b:ba:f4:c4:4a:d4:1c:eb:4e:29:
c3:7b:e9:47:9e:09:eb:78:25:cd:6d:aa:a6:98:19:
09:1a:00:e7:ee:58:c5:ee:84:e2:a6:b2:8d:fa:1f:
8f:42:ea:39:b0:42:42:43:5a:d7:fd:b3:fd:9f:78:
60:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9E:DB:2D:38:90:ED:02:E4:F0:A3:CD:1E:66:6E:BF:39:34:84:FB
X509v3 Authority Key Identifier:
keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/NJ7bLTiQ7QLk8KPNHmZuvzk0hPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.164.0/22
Signature Algorithm: sha256WithRSAEncryption
34:00:0d:98:43:c3:58:01:95:dc:38:a2:48:1e:9a:33:7e:73:
34:7c:50:d4:a0:99:45:38:95:a3:9c:8a:7e:a2:a9:52:7c:ea:
9b:33:3a:05:55:0b:0a:05:6f:56:2a:23:1e:6f:11:88:b5:c4:
0e:de:34:f7:78:b4:02:08:91:c7:d9:9a:bf:3a:b9:31:ba:16:
0a:92:eb:ca:7f:0e:f1:8c:23:f2:83:c1:d6:31:a3:66:e9:34:
32:48:1f:a4:a4:d7:aa:f6:78:9f:e4:ac:c0:ca:5b:51:c0:29:
ec:c4:97:53:30:c5:d9:53:a4:5e:72:91:8c:af:4b:e0:b8:11:
a0:bd:43:3f:be:6c:27:78:63:9f:5f:8a:9d:54:81:d5:f8:11:
b4:12:dc:4c:3f:57:06:96:3a:a9:a0:d4:d3:e5:8c:d2:77:fb:
23:a6:0e:ad:77:b7:c0:4e:86:6b:31:7d:32:22:53:a3:7d:25:
b8:7b:f3:c8:2a:4f:d8:9e:3e:a4:3e:d5:a1:48:db:d5:02:81:
9c:1e:58:de:89:89:31:10:ba:17:3b:3a:c9:75:e7:fb:d7:e6:
84:bc:5c:82:be:75:70:96:c7:5a:16:ef:59:d3:25:11:1d:8d:
3f:a5:27:53:f6:05:30:41:ec:98:de:3f:88:96:d1:7c:b3:e4:
bd:81:0d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:22 2024 by rpki-client on console-fra.rpki-client.org