Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/IVacEOl_k-vSpqfv63F6PwwfRd8.roa
File: IVacEOl_k-vSpqfv63F6PwwfRd8.roa (raw, json)
Hash identifier: df/XamUMTb3IzpIdWnhnTDwj8yDH58S/3sKZMeRaVeo=
Subject key identifier: 21:56:9C:10:E9:7F:93:EB:D2:A6:A7:EF:EB:71:7A:3F:0C:1F:45:DF
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 36672AD8
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/IVacEOl_k-vSpqfv63F6PwwfRd8.roa
Signing time: Sat 01 Jan 2022 07:59:41 +0000
ROA not before: Sat 01 Jan 2022 07:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30938
IP address blocks: 5.178.96.0/21 maxlen: 21
5.178.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912730840 (0x36672ad8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 1 07:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21569c10e97f93ebd2a6a7efeb717a3f0c1f45df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:d5:27:50:5d:93:a7:41:ea:9d:20:e4:dd:
12:ac:50:9e:3b:cf:65:e0:32:72:5b:e5:48:f8:62:
d9:25:c7:5e:2c:ea:19:13:e0:96:84:df:1f:aa:b7:
a9:42:f8:e7:56:01:9a:c2:96:a4:45:46:93:b8:7b:
f1:1c:f8:b0:42:1c:f0:1e:48:07:d9:a0:57:a7:6f:
cc:3b:15:8d:37:57:d5:c6:e0:f2:f9:52:f9:2e:12:
bd:8e:43:f4:76:8b:54:4b:eb:3f:b8:bf:88:4e:b5:
cd:3e:d4:5a:ba:f9:b2:fe:e9:74:a9:27:e7:2c:d6:
48:91:d8:d7:7f:17:f2:0b:3f:49:2d:92:d7:2b:45:
cd:0a:1c:32:b9:4c:bb:0a:8d:da:17:73:7f:ac:76:
f2:0d:0c:e3:df:53:65:10:fe:c4:f3:c9:d1:55:5c:
e1:08:dd:50:4f:3b:0e:60:4f:b9:da:66:41:b1:6d:
ac:67:ba:52:81:b9:fc:dd:e4:db:fd:e8:9f:9d:2a:
dc:02:f9:00:ae:64:64:7f:b7:84:2f:cb:b1:71:54:
41:09:f4:13:96:94:44:6b:2b:1c:a1:51:45:24:a4:
7a:06:7d:52:41:18:41:62:a8:a8:5c:42:3b:48:22:
89:8c:33:ac:25:22:e2:be:f8:dc:ba:05:7a:60:cf:
75:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:56:9C:10:E9:7F:93:EB:D2:A6:A7:EF:EB:71:7A:3F:0C:1F:45:DF
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/IVacEOl_k-vSpqfv63F6PwwfRd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.96.0/20
Signature Algorithm: sha256WithRSAEncryption
0a:5e:f0:d6:f4:b3:40:59:49:bc:a0:37:3e:0e:bd:a6:ae:98:
0d:e3:24:41:71:0a:86:11:41:8a:27:00:b9:95:13:02:ab:3c:
4a:92:e6:fd:9c:52:db:41:33:60:1b:1f:2d:31:fe:a4:d6:b5:
69:b5:17:2d:a1:30:74:31:68:ec:a0:ce:86:91:25:c5:8e:fa:
63:0a:74:2c:ca:f1:1b:52:b7:e6:62:6d:65:33:5f:2d:b6:45:
13:ac:23:44:6c:98:ef:b4:d7:8d:df:ce:51:70:24:fe:1b:21:
25:a6:b7:fb:e2:16:4c:d1:9d:04:f4:e8:67:06:21:2f:40:76:
e6:c7:13:6b:ce:fc:86:05:93:48:a1:9a:2e:e3:0b:73:93:f3:
8a:dd:67:02:13:71:aa:1a:b1:63:88:f9:00:5d:40:04:c3:0e:
0b:4e:38:16:38:ff:29:e0:55:af:65:ec:c3:1a:77:94:19:a3:
e6:ac:97:d4:12:fc:97:6d:df:ed:f6:0f:85:57:0c:3c:cb:64:
47:a0:a1:1f:15:ad:59:52:ba:f0:4e:3c:ec:2f:38:3a:7e:a6:
46:7f:f0:29:eb:29:33:d4:22:39:7a:7a:9a:38:7c:45:75:6f:
d2:fd:60:0b:0d:d1:19:d1:9f:26:3a:03:9b:bc:ef:57:17:e9:
a6:b9:bf:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org