Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/2d0MqwCeQpzT0N1OvjNawNuaYRU.roa
File: 2d0MqwCeQpzT0N1OvjNawNuaYRU.roa (raw, json)
Hash identifier: +WG/vl7y3x1W0zJ6tdfnXXnFXsfjkJblEc/5Pn+hP4o=
Subject key identifier: D9:DD:0C:AB:00:9E:42:9C:D3:D0:DD:4E:BE:33:5A:C0:DB:9A:61:15
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A0510F4
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/2d0MqwCeQpzT0N1OvjNawNuaYRU.roa
Signing time: Sat 01 Jan 2022 05:03:25 +0000
ROA not before: Sat 01 Jan 2022 05:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36352
IP address blocks: 5.252.234.0/24 maxlen: 24
141.98.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168104180 (0xa0510f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9dd0cab009e429cd3d0dd4ebe335ac0db9a6115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6b:c8:2e:00:91:f8:4b:d8:24:f2:a6:0c:cc:
d1:7b:1d:a1:72:ae:f0:9c:b7:cb:56:47:71:27:1c:
22:5c:45:9d:96:e4:64:45:20:0b:d7:5e:79:84:0a:
cd:55:53:1d:0a:e7:11:e3:55:a6:96:11:78:8e:ca:
51:1f:cc:c7:a7:e6:b6:2d:81:d9:86:07:c8:e4:d4:
66:e4:24:35:8a:8c:0e:bc:06:e3:23:8b:ab:ff:66:
f1:d0:b8:74:10:04:d7:41:bd:de:80:ba:69:96:e9:
88:e3:ac:48:f8:62:16:01:8a:66:78:3f:1b:99:93:
e3:24:57:32:9e:1e:52:70:eb:65:c3:28:c8:2f:b9:
5d:42:3f:49:10:7c:e4:a1:63:90:fb:32:a6:77:c2:
5e:45:53:40:a7:16:67:4e:e5:78:a7:2b:0b:55:8a:
53:3b:83:15:33:49:6f:69:14:55:b6:6a:35:5f:f9:
dc:66:ec:3c:ec:89:08:2c:fb:10:7c:7a:7f:0c:e5:
b5:49:11:d8:e1:13:a4:4d:66:46:51:30:74:a7:3b:
bf:2b:5e:d7:14:d8:2a:3c:88:15:06:45:3c:f4:b7:
d1:74:58:9e:0e:1f:32:d6:29:2c:af:11:bf:ec:02:
ce:87:d9:91:dd:7b:68:79:85:51:5e:b2:d2:63:c2:
bb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:DD:0C:AB:00:9E:42:9C:D3:D0:DD:4E:BE:33:5A:C0:DB:9A:61:15
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/2d0MqwCeQpzT0N1OvjNawNuaYRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.234.0/24
141.98.46.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2e:ce:8b:c2:44:ba:f2:a0:17:ac:f2:a2:59:c0:ce:75:6c:
de:f2:3d:46:c4:da:89:ea:a1:82:2c:90:13:d3:32:cd:28:25:
91:ed:0b:2b:9d:9c:aa:1f:4d:ce:4a:43:10:00:e3:b4:a6:b8:
68:2c:c8:ee:54:66:b4:20:a6:ef:e4:30:21:a4:65:8c:9c:e1:
c1:c9:08:14:33:00:30:76:91:91:2a:53:41:31:a8:ef:13:18:
0f:0d:2c:c1:c7:9a:b2:56:53:31:91:43:d6:38:43:78:18:52:
98:2d:93:62:17:70:93:53:1e:3a:d5:8a:51:7e:ac:73:40:f4:
e0:38:2c:b1:61:9e:b0:79:85:29:59:c8:c4:1d:fe:02:c8:32:
be:83:39:08:6c:b5:01:70:0f:cb:f6:16:46:25:46:f6:bc:fe:
cb:ba:7a:83:1f:a6:40:d8:c0:60:d2:9c:c8:b1:3a:90:2b:d9:
a8:de:03:de:b4:27:e5:02:39:38:0d:01:e5:71:d8:b7:69:f3:
46:62:94:cc:16:a1:c4:8d:f3:3a:80:1f:e4:1d:26:3f:eb:6e:
a6:52:79:c1:ad:3e:8e:fd:74:1e:22:c9:6b:37:1f:5d:2f:60:
ae:8b:85:85:46:54:aa:13:e6:20:c7:f4:01:f6:61:e3:06:11:
ea:36:e9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org