Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/xlrwWWNnaSBr6OtzvGbkUqHGdgo.roa
File: xlrwWWNnaSBr6OtzvGbkUqHGdgo.roa (raw, json)
Hash identifier: DGY57Hq5jm5Xj0brEOctv8qB9pa/C4vj70O8xtjti1o=
Subject key identifier: C6:5A:F0:59:63:67:69:20:6B:E8:EB:73:BC:66:E4:52:A1:C6:76:0A
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AED158A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/xlrwWWNnaSBr6OtzvGbkUqHGdgo.roa
Signing time: Sat 01 Jan 2022 13:57:50 +0000
ROA not before: Sat 01 Jan 2022 13:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29007
IP address blocks: 5.226.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 720180618 (0x2aed158a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c65af059636769206be8eb73bc66e452a1c6760a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e2:80:94:c0:a2:18:43:8d:6f:e6:83:03:d8:
69:21:f7:50:c8:ff:f9:45:c9:f1:f3:37:be:55:3a:
9b:42:48:14:4a:6e:ed:6b:55:d5:5c:71:3e:5f:f9:
84:93:c5:ec:d7:68:21:1d:d7:63:27:97:5a:54:3b:
ea:a1:5d:5a:ae:84:d9:17:bc:f9:cf:1b:9e:77:bd:
f4:3d:c7:d9:dc:4c:b1:1d:dc:2b:03:a2:27:8f:5e:
80:97:b1:89:99:19:1b:44:79:4d:e3:09:e2:a3:34:
6d:1a:8e:ad:30:70:2f:16:c0:c4:8b:93:3b:e6:dd:
67:7f:e7:2e:4f:23:38:09:46:8e:12:f0:c9:0f:5f:
b1:dc:f4:8a:69:8c:97:f7:cf:58:bb:34:9a:56:65:
11:1e:e5:f3:2d:83:8f:96:57:70:52:74:cb:a3:60:
20:8b:cf:11:fd:a7:f9:5c:29:68:c1:d6:ee:db:e0:
9d:07:b7:72:6c:ed:d5:0d:ec:e3:3c:74:56:e9:95:
b2:37:1f:34:9a:4e:36:30:08:8a:04:89:96:b5:70:
21:98:81:6e:59:30:d5:83:46:ff:da:ff:35:56:d0:
b0:49:77:4a:24:e0:6b:2e:b1:0c:3c:40:e7:54:89:
dd:71:87:92:ec:c0:7a:e7:3c:53:bf:0a:25:83:4b:
d4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5A:F0:59:63:67:69:20:6B:E8:EB:73:BC:66:E4:52:A1:C6:76:0A
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/xlrwWWNnaSBr6OtzvGbkUqHGdgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.128.0/22
Signature Algorithm: sha256WithRSAEncryption
55:60:a4:1c:fa:e4:ca:81:73:b6:03:bd:4e:69:a9:22:1b:ac:
e0:da:46:59:b3:39:a3:08:e6:6a:3b:5c:09:6b:94:52:08:70:
14:39:16:5e:da:d1:33:32:09:73:0e:62:19:77:98:49:2f:a2:
51:b4:5e:4d:f6:2d:75:b3:0e:97:48:d3:2a:0b:04:40:8d:aa:
8a:08:09:fc:88:11:76:d0:e6:79:85:c5:81:bd:34:00:8a:d6:
15:82:63:a4:d2:5b:cd:53:b5:d5:d1:f4:66:47:88:f4:9f:dd:
30:96:2e:d8:89:b5:a9:35:54:75:cb:36:81:71:a4:c2:f7:ce:
60:a7:0b:66:a1:34:f2:2a:3f:a5:ee:12:d4:c9:d2:0f:03:b9:
cf:c7:61:26:dd:62:9b:f6:dd:4b:6f:b3:57:8b:eb:5d:a7:4b:
55:8d:fd:e6:30:98:cf:b1:f1:ec:b7:16:39:db:ea:36:c5:ce:
08:e1:8d:d6:8f:2d:40:d7:8f:a5:23:7f:e4:20:40:4b:57:da:
e5:93:b8:d3:07:4b:22:ee:3d:a1:43:11:c0:24:5f:b4:ad:e0:
de:f5:9e:f6:a0:da:c9:0c:04:20:78:24:3a:40:5a:81:15:a6:
25:35:01:ed:bb:14:e5:80:93:e7:fd:6e:3a:cd:48:d7:db:14:
58:1d:f8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org