Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/1-rCFovRbo8eoimQYAJJJat4uOcM.roa
File: 1-rCFovRbo8eoimQYAJJJat4uOcM.roa (raw, json)
Hash identifier: tSlBH8po3NNspf1K7KLochvTLGqLLVZl4og9wNWpslU=
Subject key identifier: FA:B0:85:A2:F4:5B:A3:C7:A8:8A:64:18:00:92:49:6A:DE:2E:39:C3
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 0182D0E30B082A17DAFF88CB70FBAD1F9BAA
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/1-rCFovRbo8eoimQYAJJJat4uOcM.roa
Signing time: Wed 24 Aug 2022 17:25:16 +0000
ROA not before: Wed 24 Aug 2022 17:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 5.252.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:e3:0b:08:2a:17:da:ff:88:cb:70:fb:ad:1f:9b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Aug 24 17:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fab085a2f45ba3c7a88a64180092496ade2e39c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:1b:4c:fb:af:d7:bc:70:05:b4:0c:d1:72:
e1:44:17:58:61:fc:34:87:8e:bc:c3:36:29:fc:df:
f9:ea:84:63:6c:e6:c3:c3:9f:1f:07:e0:d2:87:d1:
d7:7a:11:75:15:f8:cf:60:ed:cb:d7:48:77:98:b0:
3a:b9:30:85:8c:1d:a8:34:c8:d9:ed:e8:d0:cb:bf:
56:cc:90:bf:94:5c:0f:e6:88:1a:bb:c2:20:fb:1e:
58:a1:97:49:5b:21:99:a1:b5:6b:94:b5:d2:de:5c:
1b:e5:05:4f:d1:6e:c9:7b:56:a2:ac:7f:71:2a:91:
75:a1:72:ff:23:b3:f1:d3:d9:d2:0a:ed:0c:bd:64:
be:29:2f:c2:3c:8d:55:01:ff:66:83:60:70:1b:eb:
b9:10:a3:96:39:65:f3:91:1b:cd:94:4a:b5:7d:b7:
af:54:dd:cc:a0:fa:a5:95:f1:6b:8c:d8:fe:ac:00:
86:f6:e7:c8:b9:de:43:09:9b:81:91:7c:d7:c9:8c:
16:e3:f5:c7:bd:5f:dc:9e:aa:32:3b:c4:aa:eb:31:
f7:2e:69:81:60:4c:2f:ba:d9:64:8f:20:7e:c2:b8:
45:90:3b:3b:5d:aa:90:02:e5:b6:10:1c:cb:1f:43:
ca:80:67:40:42:c0:f5:9a:38:c4:93:27:86:63:68:
57:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B0:85:A2:F4:5B:A3:C7:A8:8A:64:18:00:92:49:6A:DE:2E:39:C3
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/1-rCFovRbo8eoimQYAJJJat4uOcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.21.0/24
Signature Algorithm: sha256WithRSAEncryption
65:37:2c:e6:5a:f2:2b:e7:9b:e3:79:90:52:82:74:3c:d7:d5:
89:2e:6b:99:7d:0c:59:91:55:88:58:24:cf:d9:2c:fd:72:9a:
91:14:54:56:ec:ea:e9:be:74:13:4e:a9:cc:59:52:56:88:97:
e7:1b:83:f0:64:24:79:c9:cb:19:76:19:f1:00:c2:9d:4d:e7:
af:7e:e3:5b:8e:04:d7:6d:82:a7:34:d2:70:16:51:ba:15:44:
44:15:ad:dd:62:1d:85:4a:c4:66:8b:f7:df:48:eb:c4:05:5f:
8d:a5:60:4c:fd:f2:02:d7:dc:56:42:30:fb:3c:9c:d6:58:6b:
16:d0:d2:64:e5:fc:d5:dc:34:aa:0b:65:98:8b:d5:ee:c1:b1:
22:c1:67:08:35:11:25:17:84:82:93:78:dd:3c:7e:44:92:61:
a8:1f:c0:1c:52:8f:6c:f6:70:f7:10:15:e1:d4:11:f0:4a:23:
aa:9d:b7:be:1f:bb:48:be:88:6c:b1:3c:bf:d4:71:15:e3:21:
57:a5:d3:5b:62:b3:dd:dd:ee:c8:3c:d6:32:dd:7b:d9:8f:96:
ed:99:9d:fb:24:c4:e3:09:42:d5:54:85:74:78:dc:6a:48:0e:
cd:8b:a9:9c:cd:da:bc:fb:6c:8a:d8:e0:27:ed:88:8a:10:a9:
53:2e:18:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org