Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3rmRGI_VQOe65zIB8hApnBq2vIw.roa
File: 3rmRGI_VQOe65zIB8hApnBq2vIw.roa (raw, json)
Hash identifier: zbB8UwIFivXflFVONWKsEbZTxLFlrRvhqgKocgCkXI8=
Subject key identifier: DE:B9:91:18:8F:D5:40:E7:BA:E7:32:01:F2:10:29:9C:1A:B6:BC:8C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0A61E1A4
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3rmRGI_VQOe65zIB8hApnBq2vIw.roa
Signing time: Thu 12 May 2022 07:02:02 +0000
ROA not before: Thu 12 May 2022 07:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57565
IP address blocks: 5.230.206.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174186916 (0xa61e1a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 12 07:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deb991188fd540e7bae73201f210299c1ab6bc8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6d:74:99:8e:5a:d7:bb:4b:e2:1e:0b:d1:33:
47:7e:9a:a1:33:74:70:77:d2:57:01:d7:32:88:99:
16:af:fa:4c:1b:14:10:5f:a2:98:d5:03:68:21:a8:
b3:23:97:db:1a:c5:a4:8a:d7:9c:52:48:fb:78:3f:
e9:be:74:3f:91:ab:a6:e3:68:88:17:97:62:07:4c:
33:92:8f:93:fd:d8:07:d7:f4:99:0b:31:e6:f9:80:
b8:bc:ca:2d:7e:fe:cd:28:12:91:4b:6b:9d:02:a9:
26:81:46:80:c6:c2:f5:28:44:fd:9b:40:60:81:a0:
ed:b9:30:df:95:cf:ba:63:01:0c:c4:ac:95:5d:91:
c6:73:68:90:a1:49:5e:7e:05:32:75:94:80:0a:7b:
f8:84:84:db:e0:43:36:da:c6:f5:df:d9:ff:8c:96:
52:e8:df:cd:c8:59:ef:bb:b8:76:35:2e:86:a3:6b:
e4:b7:8b:57:31:8e:03:0c:26:b2:c3:c2:a0:a8:72:
25:49:e1:9f:42:5d:75:40:44:dc:a8:57:98:15:19:
cc:90:16:2d:cc:84:d9:e8:18:41:de:b5:6b:34:1e:
0b:31:bb:f4:38:d9:23:9f:7c:61:d4:58:eb:9f:26:
b9:f3:af:4a:2b:43:b1:75:19:83:96:b6:b8:58:57:
59:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B9:91:18:8F:D5:40:E7:BA:E7:32:01:F2:10:29:9C:1A:B6:BC:8C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/3rmRGI_VQOe65zIB8hApnBq2vIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.230.206.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c0:5b:3f:d8:7f:fd:ff:99:ef:90:22:35:c6:5b:66:21:4c:
cf:1f:34:f7:4b:a1:53:da:26:a2:67:bf:cd:51:37:2e:ab:42:
ce:e2:65:8a:60:c9:d5:c4:6c:62:0d:ce:16:a3:a0:4d:22:63:
d9:eb:34:86:a6:b7:5e:6a:46:48:f8:59:03:0c:47:75:a1:8a:
1c:20:00:f6:45:fe:ad:9e:af:01:82:57:81:34:05:f3:7f:e8:
c6:8e:1a:b8:32:24:08:b3:38:3e:57:12:dd:5d:b0:5b:36:85:
e9:b9:54:7d:db:4a:3f:fe:90:00:14:68:5a:df:f8:44:f4:aa:
a8:48:59:e4:56:a0:18:32:81:70:b0:03:83:60:75:49:e8:43:
6e:bd:c2:0f:50:16:6d:b9:db:2c:b3:b7:69:8a:4c:8b:84:45:
1e:ef:70:f9:ad:8f:c3:b2:10:aa:32:b6:09:c3:ea:8c:1f:5d:
ae:40:9b:c2:bb:74:68:8a:1e:f2:5c:1e:2d:5f:f6:fe:85:a8:
0d:d6:03:0e:48:ca:58:f9:c5:00:d9:ae:eb:cd:c6:82:fb:01:
16:14:2d:f4:68:0b:e3:5a:95:a2:5e:b3:68:5d:16:1f:1f:cc:
3d:76:87:4c:3b:d9:83:e9:26:34:24:25:f6:e3:c1:f2:73:e9:
2a:81:c1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org