Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/_YoNJm2OWdF7T4SveHBW-BVANbs.roa
File: _YoNJm2OWdF7T4SveHBW-BVANbs.roa (raw, json)
Hash identifier: 5pIs1btF5hVjFYeCXiyCdBmJMNNksK2Vsr7HUBX7DpE=
Subject key identifier: FD:8A:0D:26:6D:8E:59:D1:7B:4F:84:AF:78:70:56:F8:15:40:35:BB
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0289029E
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/_YoNJm2OWdF7T4SveHBW-BVANbs.roa
Signing time: Sat 01 Jan 2022 08:57:32 +0000
ROA not before: Sat 01 Jan 2022 08:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8680
IP address blocks: 5.253.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42533534 (0x289029e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Jan 1 08:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd8a0d266d8e59d17b4f84af787056f8154035bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:75:72:4c:24:de:96:4f:1b:1c:59:54:83:
d6:7f:91:08:f3:8a:33:99:26:36:a6:aa:70:60:ca:
a8:04:16:4d:4a:52:e8:16:c2:0d:00:1f:8e:c4:3d:
58:98:0d:c4:ec:23:66:01:59:ad:47:38:b3:7a:cf:
ba:5f:17:52:80:64:ca:9c:ab:67:89:9e:50:e2:d2:
8f:b3:42:31:ae:a4:64:29:6e:15:6c:23:86:b7:06:
ac:40:1d:d3:0e:3d:39:a8:d6:c1:75:d0:0a:5b:66:
02:d6:d1:51:fe:db:56:15:4a:5c:5a:55:7c:39:6d:
ab:7a:f1:40:4d:ec:1e:68:bc:a0:5b:f3:0d:06:ae:
87:29:51:cf:d0:71:79:1f:75:bb:22:79:eb:d1:bd:
37:96:78:91:c1:dd:5e:f5:c2:22:9b:3a:c8:c1:a6:
d6:d5:d3:5d:1d:a3:7e:81:2c:96:ac:8f:97:72:31:
f2:52:8b:23:ed:f2:7a:7a:af:f0:0b:0b:9e:54:ff:
c5:d2:e3:c9:40:00:5f:50:c4:42:22:46:f4:ce:e4:
13:4e:03:0c:74:6c:3a:8d:dd:2d:2d:d2:28:ee:a3:
16:9f:97:cb:15:e3:8c:38:98:cc:9e:0d:f0:4b:00:
46:5c:1e:82:4e:02:7a:1a:d5:31:59:03:56:c6:5a:
5f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8A:0D:26:6D:8E:59:D1:7B:4F:84:AF:78:70:56:F8:15:40:35:BB
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/_YoNJm2OWdF7T4SveHBW-BVANbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.76.0/24
Signature Algorithm: sha256WithRSAEncryption
57:94:1f:0f:22:70:12:02:21:a5:f1:c4:2a:c1:a3:b3:97:b2:
6c:3e:9a:b8:f4:f9:95:8b:52:05:fe:05:92:5f:ee:1a:46:25:
44:52:cf:76:25:65:4a:83:67:67:78:8e:b0:14:d9:a7:2b:8e:
d7:a8:db:8c:82:b8:e1:07:5b:c5:77:fb:8f:f9:96:03:18:0e:
bc:51:5b:89:d3:ab:10:29:a8:bc:19:7d:a7:a1:77:89:94:5a:
8f:ed:c8:94:3b:37:08:3a:35:e6:dd:c8:75:db:88:23:83:44:
8b:24:18:bb:c6:be:9b:a8:25:ec:b1:d9:c3:96:38:6b:af:29:
2c:65:40:c2:69:3f:f2:04:74:ce:19:cd:ab:96:9d:3c:63:bd:
3e:a6:98:74:f8:fa:70:c5:9e:33:25:6d:f6:77:c5:2b:14:4d:
ab:be:7f:e7:8e:ce:17:bc:cb:22:2f:8b:ad:2d:9b:2a:72:7a:
f6:53:27:36:61:35:e9:38:db:f4:15:c0:bd:bb:53:2b:0d:9b:
31:4d:1a:1a:8e:45:58:11:b8:15:4b:6f:cc:d2:2a:14:03:7d:
46:d3:08:8e:e2:91:eb:48:74:f9:c9:b7:c3:dc:c2:6b:e3:cd:
84:07:2b:79:73:38:2e:4c:07:73:eb:9a:90:89:4f:68:e9:24:
e9:ef:12:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org