Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/RIIcMLn4OgPtUYkPDvIL1BWkhS0.roa
File: RIIcMLn4OgPtUYkPDvIL1BWkhS0.roa (raw, json)
Hash identifier: ygE3pEKUEz+hxIbYbT8onO545dIliR+7/SkPnqs/wKc=
Subject key identifier: 44:82:1C:30:B9:F8:3A:03:ED:51:89:0F:0E:F2:0B:D4:15:A4:85:2D
Certificate issuer: /CN=715b885c3b302fd50e6c22647a33dc47727fea95
Certificate serial: 09A9BDBD
Authority key identifier: 71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/RIIcMLn4OgPtUYkPDvIL1BWkhS0.roa
Signing time: Sat 01 Jan 2022 11:00:42 +0000
ROA not before: Sat 01 Jan 2022 11:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16397
IP address blocks: 5.62.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162119101 (0x9a9bdbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b885c3b302fd50e6c22647a33dc47727fea95
Validity
Not Before: Jan 1 11:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44821c30b9f83a03ed51890f0ef20bd415a4852d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cf:aa:51:13:00:22:a3:f7:1b:aa:93:83:31:
d0:23:44:a8:1b:8d:73:4e:6f:c7:8d:2e:18:b9:de:
be:15:3f:d6:1f:3b:e8:b6:19:3f:4d:78:1e:5a:36:
03:e1:cb:bb:7d:87:15:f7:2d:87:6c:b7:d1:1b:01:
b0:f7:a6:ef:0a:ed:21:34:67:2d:33:98:27:5a:7f:
93:58:bf:b6:56:6f:13:ab:53:6c:26:1c:96:99:71:
8c:5b:77:ea:95:13:8f:29:c3:00:78:99:ac:b9:28:
ee:b7:f8:82:2a:10:d5:b7:89:b3:e5:cb:f0:01:20:
51:67:1b:06:55:1f:df:0b:98:4d:5e:80:db:b8:ca:
4c:b8:c7:d2:d6:58:99:aa:6e:3f:c9:b0:f1:5e:c8:
d0:cb:6a:5c:f6:b3:3a:e0:07:12:f2:d3:e6:f1:72:
d2:3b:bd:b2:15:a9:8a:33:35:56:01:30:53:fa:8c:
51:1d:4f:0a:90:d6:62:f2:c5:16:ae:01:57:8a:6f:
51:ee:65:fa:03:3d:0c:9b:e1:a0:8d:ad:c1:23:ec:
f7:38:a0:59:77:a1:fd:24:57:df:8a:66:25:c6:45:
ea:40:2f:91:40:e7:08:48:c0:c9:c8:0e:95:77:30:
ee:9b:11:42:41:90:9e:61:28:ae:96:4e:65:02:5f:
2d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:82:1C:30:B9:F8:3A:03:ED:51:89:0F:0E:F2:0B:D4:15:A4:85:2D
X509v3 Authority Key Identifier:
keyid:71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/RIIcMLn4OgPtUYkPDvIL1BWkhS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/cVuIXDswL9UObCJkejPcR3J_6pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.51.0/24
Signature Algorithm: sha256WithRSAEncryption
29:90:94:ba:c6:78:57:4a:62:36:cd:18:45:00:87:51:b5:17:
d5:2c:2d:8d:22:f6:a1:82:38:c6:89:98:34:b2:3b:b5:c0:70:
04:ee:6b:f3:be:e1:6d:d2:47:ca:8e:c1:4e:77:25:37:c7:90:
71:92:ad:4a:75:78:1c:0e:0c:50:f3:a1:18:cb:f5:12:7a:9c:
3a:e6:94:65:33:26:84:57:bf:88:3d:3c:a3:12:c4:7a:cf:c9:
55:63:d8:f7:53:0e:e5:24:3e:9c:78:c8:47:bb:86:ff:43:60:
44:c4:3b:ac:f5:75:45:58:aa:5c:05:d6:fe:57:07:13:80:cb:
c6:1a:d3:9c:1e:1d:5f:f1:fe:70:36:20:cd:cf:c1:25:b3:af:
7b:e4:cf:8f:a8:8d:1c:ab:ba:ba:16:df:33:a9:8d:99:0f:a3:
18:43:e8:bd:df:44:77:1a:7a:4e:e1:4e:f8:c0:b5:f0:e3:ca:
8e:ac:d3:63:69:0c:aa:02:a6:11:19:22:ba:fa:59:0f:50:fa:
fd:07:ab:b4:8a:60:e9:ba:ed:12:c8:4d:6f:09:67:dc:df:da:
93:2b:cf:00:f9:29:f7:c8:9a:0e:22:70:04:c7:46:ce:3a:45:
18:e2:5b:d5:54:6b:04:a8:eb:15:ec:0f:be:72:f4:9a:b5:65:
9c:94:e1:49
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECam9vTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MTViODg1YzNiMzAyZmQ1MGU2YzIyNjQ3YTMzZGM0NzcyN2ZlYTk1MB4XDTIyMDEw
MTExMDA0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDQ4MjFjMzBiOWY4
M2EwM2VkNTE4OTBmMGVmMjBiZDQxNWE0ODUyZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXPqlETACKj9xuqk4Mx0CNEqBuNc05vx40uGLnevhU/1h87
6LYZP014Hlo2A+HLu32HFfcth2y30RsBsPem7wrtITRnLTOYJ1p/k1i/tlZvE6tT
bCYclplxjFt36pUTjynDAHiZrLko7rf4gioQ1beJs+XL8AEgUWcbBlUf3wuYTV6A
27jKTLjH0tZYmapuP8mw8V7I0MtqXPazOuAHEvLT5vFy0ju9shWpijM1VgEwU/qM
UR1PCpDWYvLFFq4BV4pvUe5l+gM9DJvhoI2twSPs9zigWXeh/SRX34pmJcZF6kAv
kUDnCEjAycgOlXcw7psRQkGQnmEorpZOZQJfLVsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBREghwwufg6A+1RiQ8O8gvUFaSFLTAfBgNVHSMEGDAWgBRxW4hcOzAv1Q5s
ImR6M9xHcn/qlTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NWdUlYRHN3TDlVT2JDSmtlalBjUjNKXzZwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjkvZjg5OTljLTA0MGEtNDI0YS04ODk2LTJhOTIzMzNmOWRmNi8x
L1JJSWNNTG40T2dQdFVZa1BEdklMMUJXa2hTMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkv
Zjg5OTljLTA0MGEtNDI0YS04ODk2LTJhOTIzMzNmOWRmNi8xL2NWdUlYRHN3TDlV
T2JDSmtlalBjUjNKXzZwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAU+MzANBgkqhkiG9w0BAQsFAAOC
AQEAKZCUusZ4V0piNs0YRQCHUbUX1SwtjSL2oYI4xomYNLI7tcBwBO5r877hbdJH
yo7BTnclN8eQcZKtSnV4HA4MUPOhGMv1EnqcOuaUZTMmhFe/iD08oxLEes/JVWPY
91MO5SQ+nHjIR7uG/0NgRMQ7rPV1RViqXAXW/lcHE4DLxhrTnB4dX/H+cDYgzc/B
JbOve+TPj6iNHKu6uhbfM6mNmQ+jGEPovd9Edxp6TuFO+MC18OPKjqzTY2kMqgKm
ERkiuvpZD1D6/QertIpg6brtEshNbwln3N/akyvPAPkp98iaDiJwBMdGzjpFGOJb
1VRrBKjrFewPvnL0mrVlnJThSQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:49 2023 by rpki-client on console-fra.rpki-client.org