Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/ObWhytCK7DdbEfFH4tOyTFVes58.roa
File: ObWhytCK7DdbEfFH4tOyTFVes58.roa (raw, json)
Hash identifier: yH+un/kpeTR2gb3w0jQio6nYbo8/RrP3fs+ks16l8JM=
Subject key identifier: 39:B5:A1:CA:D0:8A:EC:37:5B:11:F1:47:E2:D3:B2:4C:55:5E:B3:9F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4867F0AC
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/ObWhytCK7DdbEfFH4tOyTFVes58.roa
Signing time: Sat 01 Jan 2022 03:00:28 +0000
ROA not before: Sat 01 Jan 2022 03:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47478
IP address blocks: 5.188.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214771372 (0x4867f0ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b5a1cad08aec375b11f147e2d3b24c555eb39f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a6:e8:ed:e0:8c:96:c7:98:9b:63:f9:51:67:
b2:f7:e0:ba:73:40:85:3c:c5:7e:71:83:e1:54:53:
11:b5:a3:b9:d2:a8:01:f2:97:5b:7d:c1:47:4c:cb:
63:08:eb:ea:86:96:22:83:3b:42:f6:9a:d4:ee:07:
1b:a3:cf:17:36:31:69:39:7e:a8:75:2c:84:81:33:
a1:b4:3e:c9:03:95:fe:ba:4b:ea:06:9d:91:3f:cc:
9a:aa:c4:32:cc:76:ca:87:15:ea:25:5b:68:f3:ec:
e2:67:d4:4e:16:d2:aa:b0:0f:17:52:99:5e:1b:da:
c4:1c:0e:8e:c9:1c:52:28:50:13:22:50:73:af:a9:
1f:95:50:68:a3:8f:a4:36:99:2e:ba:4c:75:bd:2e:
c4:70:71:6a:86:0b:20:a4:0f:9a:4b:04:3e:52:39:
37:c4:1a:eb:6a:d8:fc:24:a6:c9:49:4e:00:ce:88:
e9:77:69:c2:07:23:11:50:5b:ef:76:b0:b7:15:9a:
a1:5f:2e:28:af:dc:9c:7f:1f:29:7a:67:c3:64:e8:
e3:bc:2e:e0:52:25:dc:05:cb:a6:d6:07:9c:78:7e:
53:5e:6c:c9:5c:20:b6:97:9b:64:3b:60:62:86:a5:
b0:50:22:d4:54:31:a9:52:11:65:22:40:ef:85:a4:
59:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B5:A1:CA:D0:8A:EC:37:5B:11:F1:47:E2:D3:B2:4C:55:5E:B3:9F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/ObWhytCK7DdbEfFH4tOyTFVes58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.52.0/22
Signature Algorithm: sha256WithRSAEncryption
96:c0:f4:e7:ac:48:fb:da:34:35:93:36:72:3d:bd:31:4e:67:
97:78:58:9c:6a:92:24:7b:ec:20:63:58:ae:fb:cc:78:5b:2c:
3e:37:e1:79:ec:a8:29:c0:0f:41:73:12:e9:da:b1:3e:5f:62:
fe:6a:0a:27:fb:ca:9b:30:c5:67:c6:f6:78:e0:6a:f2:c2:d5:
4d:5a:37:5f:ed:8f:66:68:5d:84:ac:8b:49:b0:fc:6a:03:1e:
cd:6b:07:02:2c:1f:46:c1:b9:65:96:6e:98:d9:ac:de:cb:eb:
ae:12:d7:18:aa:aa:16:e1:35:22:cd:cb:cd:75:85:b7:51:23:
d0:95:2d:14:99:85:6d:59:39:22:cd:9b:e4:68:66:1f:45:0a:
bf:a2:9a:79:9f:1c:83:a7:6a:a1:34:87:30:0f:76:4f:47:68:
b5:48:a7:0e:c2:e9:a8:15:39:53:ba:80:18:b5:3b:2e:74:80:
d3:c7:48:d1:1d:70:48:6d:8b:b5:b9:6c:f5:f5:cc:64:7c:af:
c5:0c:6a:fb:46:b7:39:c1:a2:f9:9a:d9:03:87:ed:73:71:a0:
36:23:44:89:be:5f:98:8f:01:52:7b:ea:59:bc:74:71:27:ea:
b7:60:e3:56:e0:7b:57:dc:0c:e1:5c:6c:c0:ba:d3:98:9c:05:
b2:d5:b2:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:29 2024 by rpki-client on console-fra.rpki-client.org