Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/NR6oUrXopM2gLaIgsf5Jpyxm0cQ.roa
File: NR6oUrXopM2gLaIgsf5Jpyxm0cQ.roa (raw, json)
Hash identifier: /WUbEPLMpKkDxxVaE+lRlEWDBLdACvddw2xXlBzAhY0=
Subject key identifier: 35:1E:A8:52:B5:E8:A4:CD:A0:2D:A2:20:B1:FE:49:A7:2C:66:D1:C4
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A009FF5
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/NR6oUrXopM2gLaIgsf5Jpyxm0cQ.roa
Signing time: Sat 01 Jan 2022 05:03:22 +0000
ROA not before: Sat 01 Jan 2022 05:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 5.252.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167813109 (0xa009ff5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=351ea852b5e8a4cda02da220b1fe49a72c66d1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:a3:7e:c4:2f:d9:33:98:cb:1f:18:98:c7:
86:9e:a6:f5:82:0c:47:91:a7:a7:96:ce:28:16:3d:
3e:2a:fc:05:85:99:2d:71:c2:44:a9:38:e0:77:bf:
b3:fb:e9:60:24:84:d1:fd:5d:e6:c5:59:43:1d:25:
89:d4:cc:2d:43:2b:b2:8a:e6:3e:02:9d:7e:91:84:
07:9c:fb:42:97:c4:2e:c0:cf:07:f4:87:31:4e:20:
6d:1b:36:7c:25:bd:73:2b:39:cd:4e:84:91:e5:0f:
37:bc:07:49:7c:a0:a1:e4:97:e9:92:c3:87:1d:aa:
c8:76:69:19:4a:22:55:32:71:3b:6f:11:23:6d:cf:
0d:52:ac:e3:a3:7b:5a:f5:37:ec:76:5d:d2:e7:3b:
20:40:39:47:06:b4:4c:de:67:26:99:d3:ec:c3:f4:
74:d8:aa:cd:a5:a3:28:0a:12:59:65:da:0a:a3:82:
0a:61:ce:d5:be:b6:27:bd:ea:cd:a9:8b:08:49:eb:
1b:d7:69:37:4b:d0:8f:a5:5c:f3:91:ec:e8:aa:18:
17:34:b9:c0:98:a9:28:4c:2b:c3:16:b8:4c:f1:17:
52:17:fa:a3:ac:5b:d6:ce:da:28:c4:2b:11:78:27:
e5:84:86:5d:e3:6a:c1:01:39:15:03:a6:a9:37:8e:
2d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1E:A8:52:B5:E8:A4:CD:A0:2D:A2:20:B1:FE:49:A7:2C:66:D1:C4
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/NR6oUrXopM2gLaIgsf5Jpyxm0cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2d:9d:69:9e:8b:b8:27:e2:68:ef:9d:ca:e3:e5:5a:80:99:
1d:fa:0e:c1:a3:72:d9:d9:5c:49:b8:1c:84:00:fa:bb:ca:39:
26:ce:fd:3f:49:29:7a:be:3b:a1:bd:84:9b:1b:db:57:af:3b:
e0:00:4c:28:6c:45:f9:b2:5b:e0:37:53:bd:e3:6c:c7:bf:4c:
57:d6:23:fb:b7:8d:51:cb:b6:b0:5a:e1:39:34:ee:ba:d8:6f:
60:f5:d4:cf:3d:23:5c:ec:e7:ce:53:a5:8f:76:8e:14:b1:bc:
93:0d:c7:dc:b2:b3:43:4a:0a:4c:ea:c2:ef:e1:e7:6e:ff:eb:
61:45:89:f7:62:1d:9a:22:35:dc:be:65:7d:22:a0:3c:c6:be:
09:39:f9:d1:2c:07:98:6f:df:78:7d:a7:f2:3c:ca:c6:e7:ca:
99:e5:5e:f3:a9:d9:fd:16:e4:a9:17:70:14:ca:ac:53:36:ff:
59:c9:7f:97:6e:57:4a:50:8b:ce:4a:2e:5f:95:79:c0:0e:8e:
db:e2:2f:cc:d0:88:d4:cc:5a:6a:cf:83:83:47:55:53:dc:f2:
67:96:26:be:82:7d:7c:93:4a:d6:fa:50:c6:99:23:2d:46:f5:
d3:de:70:9c:51:05:ab:6b:03:1f:6e:15:80:6a:1e:e5:79:a7:
ce:c2:11:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org