Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/788fcf-60f3-426f-9858-82f476b5cfdb/1/gd0ChgtVtW1yt_MwIK8iSCBY41E.roa
File: gd0ChgtVtW1yt_MwIK8iSCBY41E.roa (raw, json)
Hash identifier: RxG9VUA+Fg5OeD0/1iFoaZzhF1n/Hqs9TCKi7Ky2Of8=
Subject key identifier: 81:DD:02:86:0B:55:B5:6D:72:B7:F3:30:20:AF:22:48:20:58:E3:51
Certificate issuer: /CN=9dc366af6ce0b1a9f60173b14b5fddd7e0b96306
Certificate serial: 05CAEC78
Authority key identifier: 9D:C3:66:AF:6C:E0:B1:A9:F6:01:73:B1:4B:5F:DD:D7:E0:B9:63:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncNmr2zgsan2AXOxS1_d1-C5YwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/788fcf-60f3-426f-9858-82f476b5cfdb/1/gd0ChgtVtW1yt_MwIK8iSCBY41E.roa
Signing time: Sat 01 Jan 2022 00:58:27 +0000
ROA not before: Sat 01 Jan 2022 00:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51487
IP address blocks: 5.253.4.0/24 maxlen: 24
5.253.6.0/24 maxlen: 24
5.253.5.0/24 maxlen: 24
5.253.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97184888 (0x5caec78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc366af6ce0b1a9f60173b14b5fddd7e0b96306
Validity
Not Before: Jan 1 00:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81dd02860b55b56d72b7f33020af22482058e351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:01:79:19:fa:cd:fa:b5:d2:4d:83:f8:bb:d2:
e5:cd:c3:cf:43:63:64:87:44:51:ec:52:73:02:c3:
70:4c:fd:fc:ea:b0:13:53:a1:85:de:6c:34:65:0b:
2a:63:5e:45:3c:5b:b5:b9:f9:0a:af:27:08:94:85:
ed:85:b9:eb:ac:38:11:d2:be:27:2d:6f:09:42:84:
5b:ba:66:c1:84:53:23:6f:55:7f:1a:20:10:19:e6:
d6:f7:7e:bc:88:40:8f:2f:34:35:77:7b:3c:41:86:
60:1a:82:40:f4:22:83:a1:da:e4:c8:77:5c:a1:b3:
25:95:ae:f5:bc:29:8f:cb:7c:8c:4f:06:11:54:bd:
c0:56:4e:fd:e7:a6:00:9c:99:e6:69:d2:47:64:b8:
3c:00:b7:04:3a:bb:4b:8b:1d:b3:2b:db:74:f1:1c:
5c:7c:67:c5:74:37:7f:af:bd:e4:26:24:af:38:5f:
cd:43:9e:10:23:d1:13:f2:87:68:20:c8:df:00:9a:
c4:11:2c:bf:82:87:37:b0:09:d9:af:70:f0:82:b6:
c7:d2:ae:33:35:44:dc:e0:ae:d8:9b:69:ba:be:59:
87:d3:3b:1e:78:d1:b4:f7:27:d8:1e:26:5b:0f:12:
a7:c8:97:a1:c4:4b:63:4a:09:da:6f:26:ea:be:99:
5e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:DD:02:86:0B:55:B5:6D:72:B7:F3:30:20:AF:22:48:20:58:E3:51
X509v3 Authority Key Identifier:
keyid:9D:C3:66:AF:6C:E0:B1:A9:F6:01:73:B1:4B:5F:DD:D7:E0:B9:63:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncNmr2zgsan2AXOxS1_d1-C5YwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/788fcf-60f3-426f-9858-82f476b5cfdb/1/gd0ChgtVtW1yt_MwIK8iSCBY41E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/788fcf-60f3-426f-9858-82f476b5cfdb/1/ncNmr2zgsan2AXOxS1_d1-C5YwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:50:44:59:12:a7:28:77:c4:a8:9d:84:3d:b8:81:56:15:2a:
70:99:f2:d2:f1:f0:64:1a:44:e7:1c:19:14:be:19:17:ba:6d:
3f:86:b6:bd:b0:d9:38:d7:aa:60:66:4b:1f:03:0d:99:f0:6f:
aa:b1:c8:9f:fa:5a:57:1b:6f:e7:a2:49:97:8c:a5:57:23:1c:
42:de:72:fa:85:bc:8d:b4:50:93:2b:5f:47:0c:9a:27:27:93:
60:00:7e:f0:9a:04:6e:28:69:d5:aa:3a:5f:5e:5c:d5:df:dc:
63:6f:a8:70:09:a4:17:d7:d1:f9:d9:18:de:14:8f:3f:ad:c7:
92:12:3f:51:22:eb:e7:ff:15:3d:f7:34:24:e9:1d:b7:2f:50:
be:cb:50:a1:6f:b8:b2:88:e6:b4:36:9a:3d:eb:3e:e6:6d:c5:
b1:dd:af:a9:78:8f:66:6f:d9:e6:d7:12:15:21:76:51:b1:81:
d5:43:39:11:6f:03:3e:3f:e9:0b:46:26:86:bc:30:fb:c4:6a:
fe:64:a6:13:b9:c4:86:d8:be:2d:d5:9e:90:ce:b1:db:9f:4c:
2e:26:ab:b9:81:98:53:a5:21:d9:1d:98:4c:17:bc:b9:56:ce:
c0:1a:36:3e:f5:b1:fd:52:e9:25:88:61:9b:95:9c:6f:3b:b3:
93:14:45:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org