Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/G-okuSjygLA5bCinJ5x3vYyHbCo.roa
File: G-okuSjygLA5bCinJ5x3vYyHbCo.roa (raw, json)
Hash identifier: zVU/2ov6UYHTwh6xJyuZ56Rsp4DgA3J+iU7mwuo8wys=
Subject key identifier: 1B:EA:24:B9:28:F2:80:B0:39:6C:28:A7:27:9C:77:BD:8C:87:6C:2A
Certificate issuer: /CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Certificate serial: 11417DD0
Authority key identifier: 2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/G-okuSjygLA5bCinJ5x3vYyHbCo.roa
Signing time: Sat 01 Jan 2022 02:55:59 +0000
ROA not before: Sat 01 Jan 2022 02:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206970
IP address blocks: 5.104.156.0/23 maxlen: 23
2a06:e381::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 289504720 (0x11417dd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Validity
Not Before: Jan 1 02:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bea24b928f280b0396c28a7279c77bd8c876c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:c8:2b:33:10:78:83:ce:16:a0:64:62:f8:
9a:00:c2:af:4e:89:77:f4:b4:a4:a0:1e:33:e1:aa:
69:7a:02:14:4d:64:92:1c:c1:cf:9b:6d:6e:8c:4e:
a6:ac:52:60:6b:22:41:31:24:17:90:32:21:78:ed:
a3:51:50:e6:96:70:4a:76:a1:fe:b1:7d:bc:e0:e2:
2d:25:e5:a3:fe:5f:a0:f8:6c:a0:27:7b:5f:10:b7:
b9:a0:4e:52:55:84:30:47:b5:68:cd:bf:0f:03:7e:
c2:4b:db:5a:6f:e7:f4:ab:10:8e:43:59:e6:d1:c2:
e1:ed:05:07:2d:5d:92:20:9a:d8:b5:d5:5a:64:33:
34:32:3b:79:17:84:06:06:ff:09:0d:6b:4a:2b:11:
34:20:3a:47:bb:07:55:4d:81:c4:f8:86:ab:82:79:
ed:d4:a2:20:3d:11:aa:97:86:5f:39:20:5a:b3:6f:
24:11:8e:17:0f:96:49:1d:f7:09:4d:75:b1:75:65:
ef:29:ea:eb:a8:fd:1b:5d:af:16:e8:99:f8:86:2d:
95:4d:24:0e:9b:ff:90:7d:19:bc:0e:62:07:77:fa:
7c:50:07:62:ad:bb:d5:a1:a5:b5:d1:ba:bb:c8:52:
97:c4:58:46:5a:3a:6a:b7:9e:c8:ba:69:52:89:07:
3e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EA:24:B9:28:F2:80:B0:39:6C:28:A7:27:9C:77:BD:8C:87:6C:2A
X509v3 Authority Key Identifier:
keyid:2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/G-okuSjygLA5bCinJ5x3vYyHbCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/LuVtTXsdGgbOifdG95tlbHNIxSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.156.0/23
IPv6:
2a06:e381::/32
Signature Algorithm: sha256WithRSAEncryption
81:26:f0:b3:3a:13:91:df:22:38:29:68:9f:f0:ac:0e:a8:1b:
21:80:7f:c5:59:f9:21:28:5a:64:99:4c:de:4b:6d:5d:65:49:
da:75:f0:f4:2f:df:1a:01:0e:a6:85:a5:87:3e:65:0b:fd:a9:
f8:f8:e3:06:17:0d:de:02:fb:35:cb:af:8f:b7:9c:f0:df:e3:
f0:7f:ad:90:4b:f2:2b:e5:c3:a2:02:8f:14:db:87:6c:02:75:
a1:5d:66:2e:20:5e:96:66:a2:67:56:84:d5:2e:af:99:ba:be:
0c:44:f5:ac:00:aa:ea:9a:11:b0:0e:04:08:0a:b6:85:51:0f:
3f:33:4f:3b:1c:3c:c7:0a:be:87:ca:4b:d2:48:dd:ba:f9:10:
0c:ea:c0:f7:6c:22:4c:39:20:8b:88:5b:2a:22:bc:14:d6:73:
b5:99:78:78:6a:89:43:2f:c1:75:d7:a3:aa:2d:a1:4a:2c:10:
73:d3:1d:e3:ab:50:ea:18:2f:33:a2:7f:c5:d8:c1:31:02:77:
b7:71:d8:7a:62:1d:3a:bd:40:33:2b:7d:a7:45:fb:b6:ee:85:
69:f2:6c:b3:46:69:6b:44:9d:09:60:d1:38:e9:b0:47:c6:81:
91:bc:b1:12:d2:dc:b0:d9:bf:c8:7b:61:45:f3:e2:9a:df:7a:
37:3c:5e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:31 2024 by rpki-client on console-fra.rpki-client.org