Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z5F182aRalJTeruVfmiQrC_sOXE.roa
File: Z5F182aRalJTeruVfmiQrC_sOXE.roa (raw, json)
Hash identifier: 3dg7nlOQDqdlZa6BDgHMTe0TxhQhgSU8QrIVI/3T3lk=
Subject key identifier: 67:91:75:F3:66:91:6A:52:53:7A:BB:95:7E:68:90:AC:2F:EC:39:71
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42984796
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z5F182aRalJTeruVfmiQrC_sOXE.roa
Signing time: Sat 01 Jan 2022 06:04:55 +0000
ROA not before: Sat 01 Jan 2022 06:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16054
IP address blocks: 213.228.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117276054 (0x42984796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=679175f366916a52537abb957e6890ac2fec3971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:63:aa:0c:3d:0b:1b:64:9a:d7:c1:b2:68:a7:
d1:4a:e6:cb:99:7f:06:6c:04:98:af:7d:d1:07:1b:
5b:17:81:7d:40:51:91:9a:da:74:30:39:6b:db:27:
8c:47:36:cd:71:47:58:7b:0b:a1:fb:ba:a3:26:a0:
13:ba:30:81:bb:e7:bc:81:6f:d0:81:99:01:76:80:
42:66:0f:b3:16:16:c0:1f:8e:3f:48:c1:53:8f:d1:
25:bf:ea:b2:38:f4:7a:3c:b9:dd:38:55:78:2d:9e:
b6:eb:70:6f:47:63:2f:8a:2e:aa:05:ed:d3:00:87:
f3:0f:10:db:ed:68:69:76:2f:6e:98:b4:72:06:11:
20:21:57:10:70:00:d9:a7:18:78:ba:ea:5b:df:6e:
3c:ae:d8:5d:a0:39:ca:eb:db:25:25:27:33:63:f7:
92:c8:fb:d3:4e:07:86:58:8b:36:e7:34:db:62:78:
7f:00:a1:45:98:b7:63:46:4e:d5:4a:8e:ba:da:f4:
6c:8d:2a:0d:1a:5d:48:59:bc:3d:c6:72:6d:53:a8:
d4:12:9b:ea:f1:18:e9:a1:f5:b0:31:3e:14:64:97:
96:23:4f:01:68:cb:ad:4c:d1:8e:c4:b2:39:36:fc:
9a:89:00:01:7f:87:25:dd:94:57:59:41:85:83:9e:
14:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:91:75:F3:66:91:6A:52:53:7A:BB:95:7E:68:90:AC:2F:EC:39:71
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Z5F182aRalJTeruVfmiQrC_sOXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.228.96.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:27:7a:43:b6:6d:0e:cb:ff:98:37:1f:30:39:81:13:a8:82:
d5:26:c7:16:51:66:ea:da:b8:6c:c8:85:2c:73:c8:8d:26:c0:
d4:bf:b4:26:59:ef:6d:04:43:ad:c2:bb:2f:ae:9b:cc:82:d9:
03:7f:cb:3a:af:14:5c:f6:cf:c4:0c:04:8b:da:4e:2a:04:08:
bf:af:22:ad:e3:b0:d0:eb:7f:83:34:91:8b:3c:bc:dc:ae:c3:
b0:58:47:35:53:f1:92:8d:a0:66:20:37:f7:28:24:76:28:26:
95:71:6a:55:0a:9b:06:62:c1:e9:d8:fa:12:94:7a:1c:e6:ae:
d2:13:85:1a:a6:65:dd:d2:81:86:83:d7:69:53:be:84:76:46:
b0:7c:56:8c:6f:11:77:c0:80:2f:43:bc:af:1a:96:7f:ce:76:
72:12:c9:3b:1f:bc:d4:5e:6f:2e:d2:71:9b:26:6a:f4:11:28:
2c:f2:91:0c:07:94:c2:94:ca:f6:4d:b7:cf:f5:13:74:f0:20:
13:bf:52:8b:b7:d4:1e:d9:b2:7a:5a:56:9c:f2:2d:50:65:41:
67:7c:31:bc:5e:7c:a0:a6:e3:00:76:c4:17:10:40:30:d4:86:
bb:52:49:81:4e:08:3b:0a:59:72:e7:d9:c7:04:51:bf:71:f8:
b6:6c:89:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:25 2024 by rpki-client on console-ams.rpki-client.org