Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/5J-Lzo1wGlZ9fu9zMwLqIRq8o0E.roa
File: 5J-Lzo1wGlZ9fu9zMwLqIRq8o0E.roa (raw, json)
Hash identifier: ED1BhBGdudYycsw6i8lRTosU+XtOUXCtWnEyglzjxlw=
Subject key identifier: E4:9F:8B:CE:8D:70:1A:56:7D:7E:EF:73:33:02:EA:21:1A:BC:A3:41
Certificate issuer: /CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Certificate serial: 130B93F0
Authority key identifier: B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/5J-Lzo1wGlZ9fu9zMwLqIRq8o0E.roa
Signing time: Sat 28 May 2022 21:41:13 +0000
ROA not before: Sat 28 May 2022 21:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56087
IP address blocks: 185.156.168.0/23 maxlen: 24
185.156.170.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319525872 (0x130b93f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b252dda27226a275e3e79b374c8f263cd2d8ecd1
Validity
Not Before: May 28 21:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e49f8bce8d701a567d7eef733302ea211abca341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:54:c2:fa:26:62:2c:fa:3d:2c:3a:81:04:47:
7b:17:5d:81:c5:33:b4:66:90:99:c9:09:b7:20:3d:
17:a7:75:a4:6d:9b:56:54:f6:c9:7e:f4:bf:94:93:
80:90:d4:fe:1d:c7:be:f8:d5:6f:87:0a:62:11:88:
ca:96:0f:be:ba:54:d5:32:35:13:09:d4:cc:d7:62:
38:1c:5b:26:57:60:f7:25:01:be:6b:34:04:58:41:
0f:69:47:ea:85:9f:77:26:d4:a2:cb:26:a0:ea:32:
38:37:8c:11:e6:12:f0:ee:e0:02:5e:5f:65:d7:a4:
bd:07:2f:93:98:5a:5d:cf:ad:14:1e:1c:7c:15:dd:
55:89:cf:09:7d:d4:82:d3:72:3b:cf:24:eb:07:fd:
bd:4b:f3:f4:44:40:36:2e:2d:f7:23:0d:b0:de:54:
62:ee:72:b1:14:c8:87:29:e2:c8:65:83:55:1c:a5:
57:b9:09:2b:45:86:93:1f:44:bf:59:a9:aa:a7:50:
6f:b6:de:38:a4:e7:45:98:22:78:cd:63:3b:cc:61:
27:5c:9c:05:12:16:cc:7c:1b:fb:a7:b7:41:6b:cf:
1a:16:dc:49:51:78:32:a5:f9:11:16:33:d9:b0:ca:
04:1d:b4:28:74:87:53:1a:07:05:4d:d7:05:e0:a8:
17:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:9F:8B:CE:8D:70:1A:56:7D:7E:EF:73:33:02:EA:21:1A:BC:A3:41
X509v3 Authority Key Identifier:
keyid:B2:52:DD:A2:72:26:A2:75:E3:E7:9B:37:4C:8F:26:3C:D2:D8:EC:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/slLdonImonXj55s3TI8mPNLY7NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/5J-Lzo1wGlZ9fu9zMwLqIRq8o0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d05a2e-c281-4dab-8373-a1779904b1c5/1/slLdonImonXj55s3TI8mPNLY7NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.168.0/22
Signature Algorithm: sha256WithRSAEncryption
65:17:0d:15:92:5d:65:56:89:59:3e:a6:03:9c:a6:37:96:57:
7e:09:e5:b8:5e:46:21:ea:4f:73:63:c8:d0:be:2f:f3:46:ed:
c9:cc:f9:7d:38:7d:f3:8b:f3:0b:f4:e2:7f:c4:0e:a1:07:e0:
42:a5:33:cb:ba:42:c7:91:ba:35:17:84:12:d7:8b:04:00:c5:
f1:f7:d9:15:92:a0:55:b5:bf:43:c3:a8:96:3f:d4:97:54:7f:
a6:65:9c:5b:6a:a4:ef:73:bf:e9:67:ef:17:05:8c:8c:26:ea:
57:b9:32:b5:e2:3e:9a:bd:0b:9f:25:33:c7:4a:6a:57:ba:ea:
f2:c5:30:bd:2d:a7:38:57:53:9f:3b:89:a3:1f:4f:ff:1a:52:
fa:70:bb:2e:84:f9:a7:0d:89:1e:ab:43:8a:b9:e5:ad:ce:31:
c4:96:80:24:d8:f3:80:ed:ef:58:ec:8b:83:da:c6:67:37:9c:
b6:42:99:84:09:bb:81:f1:ed:17:9a:61:e9:a1:d8:73:32:bc:
a5:5b:1f:6d:d4:91:1d:b3:18:3e:2b:26:15:8c:72:96:68:52:
ed:7b:f0:e4:85:cc:55:31:5e:fc:bc:cf:89:00:76:3f:96:d2:
98:75:38:b5:c0:2e:96:ec:78:0d:08:bd:1e:3d:7f:5f:3d:b0:
51:c8:b6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:57 2024 by rpki-client on console-ams.rpki-client.org