Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bSwGlMOLMJeB65zqV2OcKZ5h9eA.roa
File: bSwGlMOLMJeB65zqV2OcKZ5h9eA.roa (raw, json)
Hash identifier: 4yxVNQD+9OatAdVwwVJuaOOIAXSiVy+OhWzhSdwYhBc=
Subject key identifier: 6D:2C:06:94:C3:8B:30:97:81:EB:9C:EA:57:63:9C:29:9E:61:F5:E0
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 48724C75
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bSwGlMOLMJeB65zqV2OcKZ5h9eA.roa
Signing time: Sat 01 Jan 2022 03:00:33 +0000
ROA not before: Sat 01 Jan 2022 03:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59924
IP address blocks: 5.188.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215450229 (0x48724c75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d2c0694c38b309781eb9cea57639c299e61f5e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:57:a7:b8:61:7a:af:b8:a9:94:4e:4f:a1:
66:d3:8b:94:2f:63:37:85:e0:af:3f:db:7f:38:c9:
bb:61:07:cb:2a:35:06:ce:42:cf:d9:52:6f:60:2e:
2d:17:ab:08:95:b2:05:dc:f8:96:24:d7:ad:9d:ec:
aa:b8:a0:93:dd:cf:ff:f8:05:5d:95:64:7c:d0:5d:
fc:3a:2d:ba:29:c9:7d:f6:e5:e8:d1:14:85:72:01:
ab:08:5e:78:56:ec:92:58:4f:2a:34:ab:7d:fa:e7:
e2:bb:26:0f:88:af:73:ef:dd:6f:bc:96:bc:f9:9f:
21:12:9f:e6:95:f2:99:18:a7:4c:80:1d:12:40:10:
f5:55:79:11:84:21:a6:98:4b:df:ec:ef:a1:36:2d:
f7:cd:33:0e:54:67:bf:55:b8:ea:07:dc:f3:e1:3f:
e6:e6:16:26:d9:ab:2c:a6:9d:89:96:a8:35:22:5f:
0c:5d:d6:68:ee:6e:ce:24:28:c5:75:1e:25:30:c0:
d8:10:4d:39:9f:7e:da:20:86:fd:0a:84:f3:67:40:
5c:5b:ae:5c:6d:c4:66:c8:0c:9a:cb:07:db:e7:ae:
24:d3:1f:da:85:09:9c:a6:bf:d9:0c:53:8d:a2:da:
f7:98:00:02:5a:9b:bc:10:89:18:3c:3d:a5:72:1d:
a6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2C:06:94:C3:8B:30:97:81:EB:9C:EA:57:63:9C:29:9E:61:F5:E0
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bSwGlMOLMJeB65zqV2OcKZ5h9eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.218.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:05:7e:d3:02:9f:a9:3f:0f:4b:0e:f1:dd:14:ca:05:eb:a7:
49:39:79:3f:8f:51:a7:93:a5:c7:8b:31:ea:ea:73:d3:8c:f4:
4d:a5:43:e6:97:b9:5f:38:ee:75:f9:7a:75:a2:98:03:5d:1d:
b9:10:2d:df:bb:50:e9:c7:d6:6b:9f:0f:5c:ba:5d:d9:6d:94:
fc:83:87:c3:4f:c7:81:8a:0f:7e:b3:60:28:ef:47:14:cf:1b:
f6:bc:ec:fd:26:58:ae:d1:5e:84:66:e7:0b:8d:fe:96:bc:11:
d1:ce:22:bf:bf:9a:1a:83:c5:4c:3d:51:d5:48:0b:0d:20:3d:
f8:0c:c5:93:60:5a:29:95:a5:0b:89:1a:ec:31:4c:52:ad:9e:
c8:52:4b:37:59:eb:5f:7b:4f:08:1b:f1:4d:97:af:2e:7e:16:
cb:5c:93:7a:df:f8:38:b1:bb:bb:95:1b:60:cf:95:e3:42:54:
b9:24:7f:16:c5:e2:47:51:7f:f3:d3:a0:3d:ee:70:2c:cf:8d:
2e:5e:77:d8:da:f2:8b:cf:d3:50:e7:6d:b2:59:e3:e9:69:2f:
7b:bc:32:3e:cb:d9:5e:b2:c8:6e:d7:3f:27:65:34:15:ec:fa:
b0:38:05:53:bd:ac:52:01:71:78:78:54:6d:cd:f5:3d:52:6c:
7f:cc:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:55 2024 by rpki-client on console-ams.rpki-client.org