Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/ARJt8x1fnsXoi67EcITboVZWgYg.roa
File: ARJt8x1fnsXoi67EcITboVZWgYg.roa (raw, json)
Hash identifier: 5b7KVjkTFbPxfSPITdbUwqJWzF8PmSAypBtDFNwG4tA=
Subject key identifier: 01:12:6D:F3:1D:5F:9E:C5:E8:8B:AE:C4:70:84:DB:A1:56:56:81:88
Certificate issuer: /CN=56e3353d5f423ad4271c3261caa543140530bddb
Certificate serial: 018262A42F21D7BB32B1EEC024DF92535BD1
Authority key identifier: 56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/ARJt8x1fnsXoi67EcITboVZWgYg.roa
Signing time: Wed 03 Aug 2022 07:38:23 +0000
ROA not before: Wed 03 Aug 2022 07:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40995
IP address blocks: 5.44.172.0/23 maxlen: 24
109.111.160.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:62:a4:2f:21:d7:bb:32:b1:ee:c0:24:df:92:53:5b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56e3353d5f423ad4271c3261caa543140530bddb
Validity
Not Before: Aug 3 07:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01126df31d5f9ec5e88baec47084dba156568188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4f:9c:2b:77:3a:2e:13:41:11:79:3e:f1:ff:
1a:1b:8a:4e:5c:b0:02:df:81:15:73:c9:1e:bb:99:
2d:84:a7:eb:87:b6:3c:8b:79:0c:1a:cd:80:e2:fc:
b4:5b:26:26:6e:00:e0:fe:93:9d:8a:4d:8d:25:b5:
cf:81:18:3e:00:1e:11:95:05:fc:1d:14:b7:8c:24:
db:c7:79:ac:14:a3:55:eb:c7:ec:7a:4a:b2:8b:65:
7d:42:1b:52:52:1e:f7:f8:e4:46:12:39:a5:b6:f7:
66:7e:82:5d:8e:f2:9d:c1:b9:7c:57:e7:b5:e3:9d:
3b:41:f4:28:3d:0e:0b:87:3e:7f:27:e8:56:90:af:
4f:ac:e0:53:e5:b9:6e:2b:10:20:ff:9e:22:3e:32:
94:40:c9:09:0e:dd:26:3d:3f:06:ea:39:40:24:af:
49:82:36:29:84:cd:40:0f:18:bf:58:59:65:5e:26:
36:31:36:de:e4:f0:3b:35:ec:7c:f0:81:47:ce:66:
aa:4e:18:68:12:df:f0:e7:4b:7c:25:0d:f3:ea:e6:
0f:5f:15:47:4e:d8:89:60:c6:64:90:7d:6d:a9:d6:
2e:5b:95:57:ce:7d:8b:87:52:4b:25:f2:be:88:86:
56:14:2e:a3:c7:34:7d:85:04:ca:f6:5d:41:7f:9f:
bf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:12:6D:F3:1D:5F:9E:C5:E8:8B:AE:C4:70:84:DB:A1:56:56:81:88
X509v3 Authority Key Identifier:
keyid:56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/ARJt8x1fnsXoi67EcITboVZWgYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.172.0/23
109.111.160.0/20
Signature Algorithm: sha256WithRSAEncryption
59:6b:b7:61:0a:0f:0d:77:e6:53:52:f1:76:e3:37:2b:39:17:
17:7d:4d:1d:ab:82:71:f4:5c:b9:fd:d7:dd:bd:89:a8:b9:c2:
c6:ed:86:39:60:bf:56:31:45:55:3e:00:f3:5e:3d:c8:95:9e:
70:e8:71:da:e8:c9:62:36:60:10:07:d2:9b:88:b0:0b:13:fd:
4c:46:45:2b:51:18:29:2f:c1:35:46:d2:1e:53:d5:7c:11:4e:
cb:4b:7e:c6:a1:cf:68:02:b2:00:0d:d8:64:27:58:b4:31:9a:
d1:ba:51:03:11:02:e2:d1:98:e2:4f:78:5c:99:52:2f:8c:6a:
88:d9:4c:d0:f6:42:da:65:cb:21:f9:a9:d6:4b:82:e9:46:db:
13:a2:4c:2e:7f:11:5f:e6:bc:69:34:67:7f:e1:32:71:92:95:
b6:48:01:7b:34:6f:9b:8a:16:2b:35:ad:e3:31:a4:2f:83:9b:
5d:0f:78:63:b9:74:cb:0b:bf:99:ed:50:c9:90:61:db:a4:68:
26:39:29:ca:72:cd:11:84:d4:ec:eb:03:29:02:65:af:a6:f5:
62:91:68:8b:f1:99:77:f7:cb:78:5a:34:c6:9b:5c:94:83:17:
6a:2a:3a:0e:fd:0e:ce:8a:0c:9c:da:93:5c:14:6c:85:f1:9a:
04:20:69:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:11 2024 by rpki-client on console-fra.rpki-client.org