Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/TuSGiUNMMhk7LnY2899IuP0Y0qo.roa
File: TuSGiUNMMhk7LnY2899IuP0Y0qo.roa (raw, json)
Hash identifier: XTKXaZBJ3f3EXN8tk2sTyYSD089hCeQFCeV8NgMdKEw=
Subject key identifier: 4E:E4:86:89:43:4C:32:19:3B:2E:76:36:F3:DF:48:B8:FD:18:D2:AA
Certificate issuer: /CN=ffe70693454bc33485dec69d219d0502654ac04a
Certificate serial: 01C5602D
Authority key identifier: FF:E7:06:93:45:4B:C3:34:85:DE:C6:9D:21:9D:05:02:65:4A:C0:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_-cGk0VLwzSF3sadIZ0FAmVKwEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/TuSGiUNMMhk7LnY2899IuP0Y0qo.roa
Signing time: Sat 01 Jan 2022 11:58:22 +0000
ROA not before: Sat 01 Jan 2022 11:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57099
IP address blocks: 5.181.57.0/24 maxlen: 24
5.181.58.0/23 maxlen: 23
5.181.58.0/24 maxlen: 24
5.181.56.0/24 maxlen: 24
5.181.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29712429 (0x1c5602d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffe70693454bc33485dec69d219d0502654ac04a
Validity
Not Before: Jan 1 11:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ee48689434c32193b2e7636f3df48b8fd18d2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:84:8d:df:3d:be:fa:91:12:bf:65:40:e4:02:
af:a7:0a:f5:85:d7:d0:d9:c3:aa:e2:3a:d0:2e:a3:
81:bd:45:8c:8f:a5:d8:72:92:2e:f0:d3:92:49:b2:
f2:18:24:e9:62:8b:d5:de:20:7e:16:09:53:5b:a1:
d1:82:84:87:62:38:79:9f:8a:0c:34:54:70:97:2a:
50:d0:43:e7:68:f8:f9:99:16:e0:13:74:c2:18:71:
0e:61:94:47:61:29:86:66:b8:26:07:ff:6d:5e:e5:
d8:79:f9:da:ff:c4:6d:90:49:d7:17:06:ba:97:6c:
a8:da:82:2d:6f:6f:e7:44:90:70:70:74:38:2c:ef:
7a:13:b1:7e:e9:6a:d5:fc:18:9f:92:ef:a9:7d:bb:
0d:e3:ef:c9:1f:57:df:54:1d:d6:40:3e:3f:e9:fa:
cc:76:a7:69:85:c4:6f:4f:73:f2:46:de:8d:a8:da:
b3:db:84:e3:9a:e5:ac:2d:32:99:30:af:0f:b1:56:
06:6a:56:d0:dd:85:08:0a:c3:69:24:04:ac:2b:77:
7b:c2:42:a2:19:cc:7e:9d:0c:9e:d4:5c:e3:7b:e7:
96:25:fe:cb:37:25:8c:e5:ee:27:85:9b:ea:39:19:
0a:7d:ec:f9:5f:a9:03:2e:bd:cd:e4:00:4e:f3:8b:
7a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E4:86:89:43:4C:32:19:3B:2E:76:36:F3:DF:48:B8:FD:18:D2:AA
X509v3 Authority Key Identifier:
keyid:FF:E7:06:93:45:4B:C3:34:85:DE:C6:9D:21:9D:05:02:65:4A:C0:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_-cGk0VLwzSF3sadIZ0FAmVKwEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/TuSGiUNMMhk7LnY2899IuP0Y0qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/03e4f7-10f3-4114-a1e5-3502658ae6f5/1/_-cGk0VLwzSF3sadIZ0FAmVKwEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.56.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:37:dd:7a:ed:c0:37:86:c4:9e:39:b4:88:93:e0:f3:db:4b:
1f:61:bb:13:40:9f:12:84:59:5b:6a:aa:54:5d:95:0b:8d:d3:
bf:7a:29:1c:27:90:39:9e:98:9b:c1:1b:8f:68:18:23:a2:2d:
99:0c:83:e4:c4:37:7b:fa:c6:0a:eb:ab:b0:ef:8b:bb:ff:32:
14:9d:c1:95:03:fd:66:a4:b0:93:39:40:ea:3c:e1:d5:09:52:
0f:4b:9a:6b:d1:81:86:bc:7a:a4:33:c7:a1:12:b1:99:ba:dd:
b9:c3:95:fb:36:fa:bc:da:06:5b:e3:32:41:43:2c:44:94:61:
a4:8f:6b:44:3b:f8:1e:8a:1a:1d:42:97:40:10:4f:d4:42:fa:
32:1c:39:7b:ab:a3:13:0c:e1:0d:ce:30:99:67:ee:f7:bc:93:
47:e6:77:9f:d6:a6:80:c8:2c:ac:f5:4c:92:45:9b:3f:38:69:
8f:fd:d7:5a:60:9c:0a:14:fd:d3:64:f5:13:ce:ef:83:a3:2a:
e0:38:eb:f3:72:13:84:5f:88:31:57:c9:85:db:b6:e9:2e:b1:
93:6e:dc:af:b3:65:f3:08:9f:fd:d8:da:15:bb:d0:e4:28:d0:
71:f1:63:36:e6:a0:d6:5c:d8:71:6e:0b:db:6e:cb:32:36:b4:
a0:db:85:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:54 2024 by rpki-client on console-fra.rpki-client.org