Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PT9A4ngvzNVOaiHX0GZjpythe0g.roa
File: PT9A4ngvzNVOaiHX0GZjpythe0g.roa (raw, json)
Hash identifier: jFnL0F+3Zb2dC+6EoAIdPMWV/+Qm03BnJPSLrRdMLv4=
Subject key identifier: 3D:3F:40:E2:78:2F:CC:D5:4E:6A:21:D7:D0:66:63:A7:2B:61:7B:48
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 090DE294
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PT9A4ngvzNVOaiHX0GZjpythe0g.roa
Signing time: Sat 01 Jan 2022 16:00:32 +0000
ROA not before: Sat 01 Jan 2022 16:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53340
IP address blocks: 5.182.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151904916 (0x90de294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d3f40e2782fccd54e6a21d7d06663a72b617b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:44:7b:b5:04:41:56:61:83:92:bd:fb:a6:35:
0e:58:d4:c7:59:5e:31:4c:c8:0d:0e:6b:9d:5e:82:
b0:a3:5b:ec:f5:a3:36:b0:58:40:d1:f8:a1:05:e7:
51:46:c4:67:47:90:07:0b:28:08:5c:84:04:38:dc:
e7:cc:c4:1e:49:8b:ea:48:53:75:81:d1:c7:7f:a3:
a9:c8:b4:0d:5d:b2:b5:a5:14:b3:ed:ad:1b:30:8e:
f8:e5:48:bd:f7:3a:bb:eb:4a:a2:a8:50:c2:99:a5:
be:f2:87:a7:63:68:dd:cb:7c:05:3e:5f:44:0b:eb:
a5:88:fc:b4:c7:0a:42:be:07:f0:05:25:f7:00:0d:
05:35:a4:32:61:72:64:05:b3:87:14:ba:20:a1:39:
3e:c5:b6:c5:23:1e:93:a1:6c:99:be:2c:ca:b2:29:
4d:18:82:4e:1a:27:b9:6d:2e:54:16:c3:7d:91:9d:
15:c4:9e:bc:42:67:58:89:41:a2:60:f4:01:93:6f:
ae:76:98:76:6b:d1:6b:98:e7:00:5e:74:68:a4:8b:
a3:66:82:08:b4:55:e9:a4:53:0c:50:32:c9:26:84:
35:a8:fe:fc:63:14:b1:6a:08:88:91:21:1e:7d:34:
78:26:84:79:4c:3e:9d:b7:de:39:85:c9:5f:a0:2d:
62:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:3F:40:E2:78:2F:CC:D5:4E:6A:21:D7:D0:66:63:A7:2B:61:7B:48
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/PT9A4ngvzNVOaiHX0GZjpythe0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.50.0/24
Signature Algorithm: sha256WithRSAEncryption
55:bc:6f:00:cf:84:58:fa:ab:44:3c:e5:47:bf:cd:9a:54:87:
33:49:1d:4d:be:6c:39:a3:8f:dc:45:db:ee:9e:33:01:9d:75:
79:c9:cc:66:8c:b3:44:05:16:9f:aa:7f:97:86:20:39:51:20:
56:9a:1d:90:66:ba:95:cf:a3:91:59:1f:e3:3f:09:46:e9:59:
53:c3:51:4c:1a:33:e5:06:19:49:23:a9:6c:92:4a:62:4e:9a:
fc:e7:b8:9d:2e:f9:6a:57:98:a2:7e:92:16:64:7d:94:8e:c6:
ca:45:07:29:44:fc:15:66:7c:28:4e:83:1e:92:5f:ba:67:5f:
e1:3e:c2:22:5e:ec:a4:43:6a:af:b3:bf:12:20:ac:52:b8:1b:
20:e5:a6:9b:5a:06:46:20:1d:05:cc:34:cc:9e:7e:d6:06:9c:
49:31:1c:11:da:fe:5d:21:0c:08:4c:b2:ca:07:c4:0d:ac:50:
c0:82:cc:44:22:10:f0:6d:d8:2e:92:f7:3b:f1:02:f7:b1:49:
ed:e3:67:42:54:bc:c1:11:22:03:6e:71:f2:bf:7e:4e:68:5d:
22:de:49:f2:7c:c3:ac:5c:9f:6b:9f:de:9b:37:7b:47:02:12:
7a:7f:48:b8:5a:c8:53:36:b3:f8:8d:c3:95:71:f3:9b:a6:c9:
9a:7c:e2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org