Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7baa1c-8da1-4f80-babb-b4bfc29e71a3/1/s2Ryr78GYNJnY6jUaW1H7L0DORc.roa
File: s2Ryr78GYNJnY6jUaW1H7L0DORc.roa (raw, json)
Hash identifier: ekpk+A6w1q2ONFgRUUM88dn8bdkFzhtgbaNPcExdbiM=
Subject key identifier: B3:64:72:AF:BF:06:60:D2:67:63:A8:D4:69:6D:47:EC:BD:03:39:17
Certificate issuer: /CN=96f6ea768ebc9ddc068f5697dfd75caedd7ae108
Certificate serial: E514EC
Authority key identifier: 96:F6:EA:76:8E:BC:9D:DC:06:8F:56:97:DF:D7:5C:AE:DD:7A:E1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvbqdo68ndwGj1aX39dcrt164Qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7baa1c-8da1-4f80-babb-b4bfc29e71a3/1/s2Ryr78GYNJnY6jUaW1H7L0DORc.roa
Signing time: Sat 01 Jan 2022 04:58:57 +0000
ROA not before: Sat 01 Jan 2022 04:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 5.180.200.0/22 maxlen: 22
2a0b:3240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15013100 (0xe514ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96f6ea768ebc9ddc068f5697dfd75caedd7ae108
Validity
Not Before: Jan 1 04:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b36472afbf0660d26763a8d4696d47ecbd033917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:9e:cb:85:09:28:68:e0:2c:8d:05:98:eb:
d2:68:22:08:8a:65:f5:3d:9b:6c:75:d8:af:79:62:
bc:05:d0:39:4b:21:7f:47:c4:11:7c:73:1f:5d:02:
e6:d5:d4:05:94:ad:21:c4:a8:7b:e0:f6:4e:d3:5c:
42:6a:d8:07:bf:40:33:3d:0f:96:5a:76:c8:12:10:
3a:d1:5c:cb:6d:22:42:b1:ad:0c:8b:fc:7b:0c:51:
b9:78:aa:c8:00:77:4a:f0:f8:d0:b4:c3:44:a4:8f:
2c:e3:d4:67:6c:9b:c2:1d:1e:c0:39:a4:50:4b:aa:
80:00:62:24:ef:3a:53:ce:d2:49:e0:dd:b9:8d:c7:
bc:f5:ef:52:70:6d:62:46:46:15:12:76:3d:0a:02:
18:8a:2d:d7:c0:fb:8b:88:77:6a:af:5f:28:7f:f4:
fc:cb:77:78:ec:fa:b9:d2:d0:65:8f:82:72:5e:a9:
09:db:48:6a:be:fc:1e:76:36:99:c8:2d:0e:04:cc:
75:ba:8d:b3:8b:82:5e:e4:be:fb:9d:eb:89:a9:73:
f2:40:6a:64:b3:d1:ca:19:7c:c6:95:ff:46:72:2c:
c8:63:91:f9:c1:2b:74:95:07:1d:8f:8b:03:6c:1d:
f2:3a:ff:75:cd:26:9c:a3:59:bf:c1:aa:e2:93:34:
99:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:64:72:AF:BF:06:60:D2:67:63:A8:D4:69:6D:47:EC:BD:03:39:17
X509v3 Authority Key Identifier:
keyid:96:F6:EA:76:8E:BC:9D:DC:06:8F:56:97:DF:D7:5C:AE:DD:7A:E1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvbqdo68ndwGj1aX39dcrt164Qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7baa1c-8da1-4f80-babb-b4bfc29e71a3/1/s2Ryr78GYNJnY6jUaW1H7L0DORc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7baa1c-8da1-4f80-babb-b4bfc29e71a3/1/lvbqdo68ndwGj1aX39dcrt164Qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.200.0/22
IPv6:
2a0b:3240::/32
Signature Algorithm: sha256WithRSAEncryption
77:b7:4e:82:ed:a0:d1:fc:bc:77:07:1d:03:c2:81:d8:a0:6f:
a5:f3:2d:0a:46:36:48:2d:6a:29:7e:28:19:7e:aa:42:93:ef:
fd:6d:4b:48:60:f1:18:87:c6:5c:53:c7:59:12:3b:90:4a:b9:
dd:2a:a6:ef:e6:65:c1:d7:9c:c2:dd:18:60:bc:40:29:7b:73:
d8:38:4e:3c:50:2c:8c:18:2f:7e:63:0f:99:40:8e:4e:75:e5:
c7:bf:6d:5d:4a:22:71:68:b4:ee:ca:99:6e:63:ca:07:19:59:
2d:af:b0:19:c8:ec:39:fb:35:92:ca:27:7c:63:d3:eb:bf:db:
a1:b4:81:0b:30:fb:55:d9:5f:24:6d:f5:59:6c:23:c8:99:82:
c7:9d:ef:ec:2c:c8:0e:c5:cf:26:34:e6:51:33:81:ca:5e:62:
25:59:42:3c:ed:01:2c:20:d1:f3:a2:26:7d:5b:d2:e6:ce:18:
f2:3f:71:7e:2b:f9:4b:21:11:f9:d8:68:00:a2:7d:54:77:c0:
b1:31:e6:fc:a4:68:46:ef:36:06:60:dc:69:79:b6:d6:0c:97:
6e:0a:2a:e5:cd:4e:a1:45:0c:fb:cb:7b:24:69:43:49:11:9a:
a2:3d:04:14:6e:26:a6:c8:98:b6:a1:b7:ef:6e:57:e0:ed:d4:
79:3c:d1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:22 2024 by rpki-client on console-fra.rpki-client.org