Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u7-6bGrerMUbm4QbfHl2mMHmEKs.roa
File: u7-6bGrerMUbm4QbfHl2mMHmEKs.roa (raw, json)
Hash identifier: N+McZrtVMiPOwiIa/vR91Y85yltMzFJ9yZyl/ZKEqJM=
Subject key identifier: BB:BF:BA:6C:6A:DE:AC:C5:1B:9B:84:1B:7C:79:76:98:C1:E6:10:AB
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0184524785E3B2CCCF23B9E8D97B6BFAFC94
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u7-6bGrerMUbm4QbfHl2mMHmEKs.roa
Signing time: Mon 07 Nov 2022 13:28:49 +0000
ROA not before: Mon 07 Nov 2022 13:28:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 5.39.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:47:85:e3:b2:cc:cf:23:b9:e8:d9:7b:6b:fa:fc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 7 13:28:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbbfba6c6adeacc51b9b841b7c797698c1e610ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d6:07:11:3d:5d:bf:50:44:6a:f6:61:5f:a4:
84:21:88:ce:b3:dc:18:8a:f0:7a:1a:b8:31:82:1c:
f9:ff:53:b6:d1:4e:9a:40:a7:98:45:12:4b:79:f1:
ae:24:30:26:16:db:61:52:86:35:f9:bb:95:75:9a:
69:8c:d9:ad:65:eb:7c:73:b3:c8:38:84:f4:57:b7:
bf:5e:b1:91:0d:2c:19:e1:cb:c7:08:5d:b6:77:c3:
25:f5:b3:75:83:9d:b4:5b:d4:61:d8:d6:63:11:3b:
22:53:11:d6:bd:4e:fc:cd:f7:13:52:b7:19:12:79:
0c:fd:b6:b0:98:15:f9:79:fb:79:11:d6:c9:c7:c6:
fc:7c:93:42:4b:28:b9:21:9f:4c:29:fc:80:78:e2:
0e:b2:1c:9b:55:73:b3:af:0d:cb:79:15:da:92:b9:
8d:3c:00:8d:15:30:f0:fb:3a:ec:21:6f:e2:12:e6:
7a:e8:13:45:1f:ea:da:e6:e5:47:de:2b:5a:80:4c:
83:8d:0a:fc:80:0c:05:63:35:94:5d:e6:fa:d4:61:
ee:2e:33:25:da:a4:39:51:f8:1e:8c:55:46:8d:49:
e3:cb:34:3f:7f:0a:76:e2:6f:6a:64:6f:a4:37:61:
1e:22:a7:8b:10:ca:1f:be:53:5b:be:a7:94:1f:fa:
8d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BF:BA:6C:6A:DE:AC:C5:1B:9B:84:1B:7C:79:76:98:C1:E6:10:AB
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/u7-6bGrerMUbm4QbfHl2mMHmEKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.249.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e7:72:ea:23:ad:42:02:56:76:83:67:51:01:80:48:d1:10:
52:cf:30:e0:d5:cb:c4:1a:27:3b:d2:8d:05:3d:a1:65:91:81:
1f:53:22:b5:a0:48:a1:93:8d:1e:90:a5:fc:59:6f:87:20:08:
17:f8:14:38:d8:3f:10:91:64:7d:ac:82:c3:d5:1f:b7:a8:f9:
f0:fb:d9:69:65:7a:0d:42:f6:07:50:5a:73:01:f3:78:14:2d:
4d:1f:37:f9:a2:f1:d2:0a:ab:74:75:00:f2:24:c8:82:43:f1:
49:c7:06:4b:74:27:bf:c3:40:9f:37:64:eb:18:35:c3:f6:64:
7a:dd:2c:b2:88:45:09:29:61:d5:3e:e5:5c:d1:f7:ba:fe:58:
54:5d:15:7c:bd:3c:d4:86:57:24:ea:ca:99:12:8e:4c:cb:2b:
40:89:71:3f:43:1e:8b:8e:f9:b3:bd:86:2d:48:e0:2c:44:db:
13:d3:83:79:26:57:85:37:25:ac:23:f0:c3:5a:0e:32:83:1b:
5d:cd:6f:cc:80:a4:bc:52:43:3b:2c:e8:aa:de:ce:9e:45:b7:
91:c1:1b:f0:cd:51:ff:6d:e9:b6:bc:68:35:ca:fb:ec:70:c1:
c5:35:5e:94:f1:b9:29:0c:77:76:18:09:74:6d:42:7a:c9:bd:
93:f8:b5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:15 2024 by rpki-client on console-ams.rpki-client.org