Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/M1Sl3TAPc_LCn9UIMXHwGVvw_Kg.roa
File: M1Sl3TAPc_LCn9UIMXHwGVvw_Kg.roa (raw, json)
Hash identifier: lcbIX19ViO+SW4KT/kELRyiQgmsrDAieBdogZOEQikw=
Subject key identifier: 33:54:A5:DD:30:0F:73:F2:C2:9F:D5:08:31:71:F0:19:5B:F0:FC:A8
Certificate issuer: /CN=fab796d980fa60fe2514fce62646f45d12c95165
Certificate serial: 0183FA3971BDDFA2811FB5FDBA97825DD908
Authority key identifier: FA:B7:96:D9:80:FA:60:FE:25:14:FC:E6:26:46:F4:5D:12:C9:51:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-reW2YD6YP4lFPzmJkb0XRLJUWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/M1Sl3TAPc_LCn9UIMXHwGVvw_Kg.roa
Signing time: Fri 21 Oct 2022 11:06:52 +0000
ROA not before: Fri 21 Oct 2022 11:06:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209435
IP address blocks: 5.253.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:39:71:bd:df:a2:81:1f:b5:fd:ba:97:82:5d:d9:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fab796d980fa60fe2514fce62646f45d12c95165
Validity
Not Before: Oct 21 11:06:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3354a5dd300f73f2c29fd5083171f0195bf0fca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:aa:35:83:e7:c8:20:5a:6c:8e:cb:9f:0b:fa:
66:51:c6:cb:50:5e:8d:f0:79:8d:32:ae:f5:43:e8:
44:14:a8:b2:cc:87:34:e2:ed:5a:c5:43:3a:92:fc:
b5:e8:45:3a:0c:6a:9d:06:2a:3c:c3:fe:55:33:0c:
e3:8e:b5:bd:9d:d8:75:1b:7f:3f:19:d2:91:a2:c4:
2a:d0:c2:24:5e:30:c1:3b:59:f9:4a:49:1f:3e:5b:
4f:24:65:0c:20:10:85:f0:db:4d:f1:1f:df:0d:23:
99:5b:db:e7:e9:60:b2:39:54:05:ce:56:b4:59:c9:
38:95:e0:d3:6f:46:d9:1a:78:48:02:0b:45:79:65:
45:1f:1a:61:27:3b:82:63:df:5e:41:bf:a7:b1:3d:
a0:cf:35:cb:30:17:24:c0:c1:1e:2c:a2:6e:60:4a:
cb:80:ea:f6:4a:9e:fe:08:65:5a:de:77:5e:3c:bd:
e5:fe:92:9c:0b:ef:58:47:92:99:26:14:70:34:50:
ac:0d:47:ec:e4:6a:40:0e:ba:8d:69:21:37:cb:ef:
53:f6:15:40:d7:23:35:e7:af:42:1b:ed:d2:fc:9f:
15:04:4b:9d:24:a4:00:20:44:f0:f7:68:9b:07:3e:
7e:61:8f:18:3b:39:e9:10:8d:aa:96:62:25:66:2c:
96:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:54:A5:DD:30:0F:73:F2:C2:9F:D5:08:31:71:F0:19:5B:F0:FC:A8
X509v3 Authority Key Identifier:
keyid:FA:B7:96:D9:80:FA:60:FE:25:14:FC:E6:26:46:F4:5D:12:C9:51:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-reW2YD6YP4lFPzmJkb0XRLJUWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/M1Sl3TAPc_LCn9UIMXHwGVvw_Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/97f89e-82b5-442b-b672-5d192fbfcb0b/1/1-reW2YD6YP4lFPzmJkb0XRLJUWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.172.0/22
Signature Algorithm: sha256WithRSAEncryption
81:5f:14:52:cb:22:48:46:ff:b2:1a:4e:87:f3:29:91:12:49:
05:de:8c:8c:91:bd:69:b1:35:dc:9b:2b:4a:2a:99:f0:1a:b0:
55:05:bf:63:e2:f8:f7:6d:8e:65:26:ee:28:ae:23:e9:45:2a:
4b:04:12:f5:a5:70:fa:ae:8d:56:96:4a:df:b1:21:2a:0f:7e:
0e:1c:e7:d9:ee:fd:95:6b:e8:bd:2c:96:92:1c:a2:ff:b4:56:
88:90:68:09:ba:8c:a8:18:e7:7a:30:33:21:2e:5c:97:f5:83:
e8:e6:05:e9:ec:f5:04:da:11:66:8d:14:d1:26:0c:a8:d1:57:
ef:fe:b2:8f:6c:30:2e:ef:71:2a:f7:ce:27:a9:dd:59:5b:37:
8f:64:de:14:5b:46:87:62:07:08:62:00:24:87:e2:ea:93:26:
b5:b0:2f:c4:c9:75:23:1e:ea:2e:16:0d:3a:bb:b7:24:44:e3:
15:c2:e7:d8:ad:ea:22:ec:b3:4a:ac:46:f3:86:ef:da:ff:07:
45:b6:dd:aa:a9:0a:8c:c4:de:4e:d2:06:88:9b:ff:b3:bc:b8:
46:33:fd:eb:83:5f:74:10:29:8f:08:c0:e4:ad:7d:39:a1:cc:
cb:41:d6:a5:35:6d:38:21:60:aa:ce:50:05:f8:43:45:54:38:
26:ac:66:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:47 2024 by rpki-client on console-ams.rpki-client.org