Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/5Vw10SMZIqmzIVCO6On9Q6M_O-s.roa
File: 5Vw10SMZIqmzIVCO6On9Q6M_O-s.roa (raw, json)
Hash identifier: KvDtQdw87DPP6Is0HJVpmrRcthx8hKpoRaDmbNGgY4s=
Subject key identifier: E5:5C:35:D1:23:19:22:A9:B3:21:50:8E:E8:E9:FD:43:A3:3F:3B:EB
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A764E4
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/5Vw10SMZIqmzIVCO6On9Q6M_O-s.roa
Signing time: Sat 01 Jan 2022 06:05:04 +0000
ROA not before: Sat 01 Jan 2022 06:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57580
IP address blocks: 217.107.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118266596 (0x42a764e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e55c35d1231922a9b321508ee8e9fd43a33f3beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:58:56:0e:6c:23:62:0c:0f:42:5d:4e:29:86:
c4:2b:62:c6:97:d9:6f:86:26:ac:5d:a9:f0:f0:68:
78:9e:e8:a2:31:21:25:39:d1:64:3e:de:2b:42:1b:
ee:8e:b1:c6:cf:1b:5a:3b:09:f6:db:6f:ab:7e:2d:
4a:01:d0:d3:f8:04:6a:54:5f:57:33:80:e4:14:65:
45:33:75:8d:e6:94:f9:4a:a1:6e:cc:94:2f:83:b7:
67:8a:4e:85:69:a6:7a:fe:ff:36:59:62:5d:08:33:
95:af:80:ec:db:89:76:ec:4c:e4:b6:93:4c:c8:76:
ac:76:c0:bc:79:2a:d4:8c:c1:3a:90:e9:90:42:71:
19:ae:e1:7c:8d:d2:fd:50:d6:c2:bf:67:9e:ee:af:
01:98:2f:0f:3c:65:4c:a3:51:d6:51:db:12:da:ad:
62:01:cf:fc:21:e3:16:a3:4c:d0:b3:f1:16:91:5b:
da:9e:cb:86:3b:b5:e2:4c:d1:2f:17:8c:ce:a5:7a:
c4:07:2b:5e:61:73:8d:01:a4:63:f9:d2:7d:0c:e9:
a6:71:fa:31:31:4b:5c:7e:4e:23:bf:a6:74:e6:0f:
d7:98:a2:5f:c4:37:cc:df:e5:76:b7:53:66:4c:27:
59:c8:a1:f6:82:7d:5e:18:b2:31:2d:28:6c:27:aa:
d5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5C:35:D1:23:19:22:A9:B3:21:50:8E:E8:E9:FD:43:A3:3F:3B:EB
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/5Vw10SMZIqmzIVCO6On9Q6M_O-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.107.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:79:62:d5:a2:fd:32:1c:4a:da:b0:a4:71:46:16:1c:e7:21:
4e:88:d9:b0:24:70:0f:cf:6e:eb:6d:13:db:fc:0a:58:66:83:
19:40:d3:ca:5b:1d:cf:7e:1a:60:d8:ef:8d:6e:36:23:6d:7c:
9e:da:ff:06:73:bd:39:7f:3a:02:53:ce:82:e3:87:bb:5b:ee:
7b:76:0b:ad:7b:8d:8b:73:d4:64:d2:a4:13:6c:42:f8:e9:46:
04:1b:26:f6:9a:ca:ef:60:41:1e:75:5a:3a:d7:bc:4e:c6:0c:
a6:53:84:40:a2:d2:21:68:37:c3:b1:77:38:83:76:7a:17:36:
a4:9b:95:aa:40:58:17:48:da:54:7d:74:81:bf:90:b4:8e:b3:
4b:12:cd:e8:28:c4:1f:66:d4:c4:55:78:df:1a:5a:e8:d8:3a:
20:14:c2:d3:0a:32:8a:68:1e:56:d2:9c:44:f3:60:33:54:86:
1e:cb:c3:68:0d:75:0c:23:36:79:e8:d2:f0:84:c2:5d:c3:7d:
c8:83:65:35:ae:a0:23:f8:cb:7b:13:cd:31:d3:0c:ed:57:9f:
8d:c4:56:08:ee:17:83:dc:9a:9b:22:cc:e8:b5:50:65:fb:61:
39:48:55:ee:79:38:a8:0b:84:25:36:ca:42:93:da:5c:20:00:
7d:9c:54:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org