Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/wZ99UKBU0h5Ok0jp0WtOYj60D7w.roa
File: wZ99UKBU0h5Ok0jp0WtOYj60D7w.roa (raw, json)
Hash identifier: 6IPHQBoj8BiTqNwhdE8u19mC5ucZT7QCDli6ZKDXhNI=
Subject key identifier: C1:9F:7D:50:A0:54:D2:1E:4E:93:48:E9:D1:6B:4E:62:3E:B4:0F:BC
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 0EEBF818
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/wZ99UKBU0h5Ok0jp0WtOYj60D7w.roa
Signing time: Sat 01 Jan 2022 15:04:40 +0000
ROA not before: Sat 01 Jan 2022 15:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60911
IP address blocks: 5.172.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250345496 (0xeebf818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Jan 1 15:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c19f7d50a054d21e4e9348e9d16b4e623eb40fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ea:3a:66:aa:89:0d:68:4a:ef:0b:00:32:ba:
35:e2:ac:1d:73:f6:db:ba:53:ee:45:82:33:59:de:
5e:95:e2:82:38:82:85:05:2b:1d:82:3b:ec:be:52:
47:24:14:d5:d4:99:89:16:8c:be:99:8a:ad:c1:25:
c9:ac:0d:14:e9:89:57:0f:98:30:cb:fa:5f:a8:68:
f3:3b:33:4c:40:80:64:9a:5c:3c:30:db:2d:d2:d2:
ef:d5:c6:a9:ee:3a:ef:85:6c:f7:72:a5:8f:16:ee:
1e:ea:7f:92:5c:96:d6:67:a2:cb:60:4b:d9:eb:59:
dc:83:2b:c2:54:2e:12:12:bc:cb:84:86:29:62:fc:
b0:8c:7a:60:14:5c:25:2a:a4:8f:7b:f9:32:3c:96:
ab:ac:34:15:b2:bb:d8:c7:7b:c7:af:23:12:e7:4a:
bd:be:26:a1:58:e3:c4:be:69:c8:67:91:2a:d9:c1:
0d:c8:cd:16:f6:66:19:96:71:d8:e8:4b:48:b7:2d:
7f:42:87:98:20:33:0e:ae:1f:06:44:1b:08:01:05:
7c:03:d5:2a:cd:12:26:33:43:c0:53:bb:ce:17:96:
30:9e:34:9e:fd:37:da:80:88:46:c2:3a:dd:5e:2c:
22:9a:7b:e3:25:6d:dd:46:58:22:dc:72:3d:35:2e:
59:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:9F:7D:50:A0:54:D2:1E:4E:93:48:E9:D1:6B:4E:62:3E:B4:0F:BC
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/wZ99UKBU0h5Ok0jp0WtOYj60D7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.207.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f3:2c:5d:6a:6d:9c:77:94:be:bc:ad:dc:ce:80:61:df:85:
83:cd:c7:a9:27:56:b4:69:4e:70:c9:af:31:cc:a5:aa:18:8b:
42:06:3f:53:d7:bb:3c:92:5f:b0:d0:bd:07:26:26:7e:bf:3b:
05:6a:42:f4:8f:1c:a2:ae:5a:f2:58:b7:44:61:10:ec:37:0f:
37:38:3e:76:a3:ed:41:70:8f:52:87:c7:76:6f:a3:a4:17:1c:
4c:80:fa:34:be:ca:40:3e:71:47:5d:f8:81:72:04:03:52:cb:
2c:fe:3c:5b:dc:2f:a5:fd:6c:48:67:fe:05:b8:c4:63:3e:db:
b3:3e:97:bd:06:b3:0f:78:8b:4d:ea:06:f6:5f:06:a7:af:8b:
ad:26:fd:bb:00:33:0d:84:43:b3:32:99:88:e4:d2:02:64:67:
fc:0d:da:f0:b6:79:b5:af:de:ce:a1:78:03:5a:4c:e3:ce:6a:
06:c1:7c:6b:bc:5b:d3:69:5e:6c:12:ec:5e:e8:dd:4d:cc:26:
83:25:46:8c:1d:08:19:ed:b0:a6:c2:28:04:1d:5a:d7:ae:a5:
43:b2:25:88:75:36:34:a5:c3:6f:25:e5:c0:3c:05:79:30:56:
9c:14:bb:8a:5b:d9:43:54:a9:d8:83:fe:c9:3a:98:cd:40:3a:
fe:75:25:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:49 2024 by rpki-client on console-ams.rpki-client.org