Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/d0-RcFgSFK1IkEo_zinFvx3SmSY.roa
File: d0-RcFgSFK1IkEo_zinFvx3SmSY.roa (raw, json)
Hash identifier: EkPuWHDB3k5ow/HSURPOlzsYYialBVJ7M+GTqLL1Kq4=
Subject key identifier: 77:4F:91:70:58:12:14:AD:48:90:4A:3F:CE:29:C5:BF:1D:D2:99:26
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0AF8CAC0
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/d0-RcFgSFK1IkEo_zinFvx3SmSY.roa
Signing time: Sun 10 Apr 2022 23:54:08 +0000
ROA not before: Sun 10 Apr 2022 23:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44599
IP address blocks: 5.252.232.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184076992 (0xaf8cac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Apr 10 23:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=774f9170581214ad48904a3fce29c5bf1dd29926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f1:b1:ac:70:35:1a:18:21:6a:85:f6:3b:80:
cf:86:55:96:59:32:a0:b3:be:0c:47:ab:56:1e:d3:
d8:71:e4:28:f8:d7:26:d9:cb:d2:24:77:90:47:9a:
33:81:e3:2c:c6:72:dc:97:7e:e0:ab:c0:66:9c:2c:
c3:97:f8:4e:89:78:b0:16:02:e4:69:bb:0d:88:12:
65:b8:f5:7a:5f:1c:86:93:32:d7:37:69:a8:c3:5f:
22:ed:b9:6c:93:35:98:0f:8d:98:d5:c5:ae:95:96:
53:bc:06:e5:b1:0f:40:15:c5:7d:1b:a4:3c:11:ad:
8a:61:4c:ff:1f:d2:f2:e5:e7:cc:aa:4e:31:a2:65:
0d:39:a6:94:05:8b:20:b5:e0:57:d3:00:a0:c0:93:
6c:57:ed:74:23:5f:03:85:66:80:e2:fc:a5:f0:a6:
b9:2b:fe:e9:3f:b5:74:ac:9e:43:e2:43:77:09:be:
d8:4f:57:f6:af:7d:ba:4b:54:19:32:b8:17:8c:4e:
91:8e:83:76:c2:9d:f5:d4:f2:c5:30:68:0e:45:12:
a4:a8:cf:a7:d8:b7:38:a6:2f:35:34:ce:89:e8:36:
d6:f7:7e:db:7b:5f:69:a1:63:cb:72:06:4f:b2:9a:
aa:7a:bb:8c:13:a1:2c:a6:7c:40:51:14:10:f2:35:
90:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4F:91:70:58:12:14:AD:48:90:4A:3F:CE:29:C5:BF:1D:D2:99:26
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/d0-RcFgSFK1IkEo_zinFvx3SmSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.232.0/23
Signature Algorithm: sha256WithRSAEncryption
21:fb:71:45:5f:46:f1:64:17:ee:c4:30:28:15:af:54:96:50:
4d:a4:c4:ac:03:e1:b1:bc:59:55:b3:56:9f:4b:1f:14:cb:7f:
f8:05:43:b1:9f:ee:96:6d:0b:9a:29:2e:3e:3f:bd:3b:ed:c3:
15:bf:2c:67:00:37:62:f0:cb:08:51:bb:62:63:5b:bd:d6:60:
3d:32:86:97:f2:2b:42:70:7f:aa:a5:99:f8:ae:f2:fa:91:a4:
31:40:d3:14:39:9b:9b:6a:50:bd:4d:87:7c:8e:2d:25:6a:4b:
e1:5d:d6:94:d2:8c:67:26:31:da:99:fa:8a:c1:eb:66:27:3d:
3c:78:68:f1:8b:77:00:8b:b7:3a:61:3e:69:a2:36:66:ac:26:
7c:74:e2:5a:6a:7d:65:d4:23:59:47:2f:a0:0c:d3:a9:24:f3:
0c:33:73:ab:9d:79:85:9b:33:4e:15:e5:01:20:44:3c:6e:34:
d3:d2:7b:c2:d7:70:83:91:53:56:35:29:72:11:3e:a6:ef:e9:
8e:6e:bb:6e:f9:9b:d8:a5:b6:d7:a3:10:97:45:d8:e0:71:b5:
b1:05:43:6e:ac:a4:c7:9a:35:6f:89:f4:43:cf:1b:91:f7:1e:
d9:5c:74:95:f1:de:85:a4:df:6a:c6:3c:bd:d7:3a:f1:f1:71:
aa:0e:8f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org