Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MGq8f9AbpZlAKJaf8GKT25U0YKU.roa
File: MGq8f9AbpZlAKJaf8GKT25U0YKU.roa (raw, json)
Hash identifier: av6mx3Es4WJG+v1UOBd3cFDN+IUF6kYHcCDkjXqq36A=
Subject key identifier: 30:6A:BC:7F:D0:1B:A5:99:40:28:96:9F:F0:62:93:DB:95:34:60:A5
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A5EB4C8
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MGq8f9AbpZlAKJaf8GKT25U0YKU.roa
Signing time: Sat 01 Jan 2022 14:56:35 +0000
ROA not before: Sat 01 Jan 2022 14:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64460
IP address blocks: 5.160.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979285192 (0x3a5eb4c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=306abc7fd01ba5994028969ff06293db953460a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7e:f1:eb:b1:b8:09:34:41:be:c4:c3:a6:67:
fb:50:0b:a3:90:30:90:f4:1f:e2:fe:ef:1c:1c:7d:
f7:3e:20:4b:af:16:5c:63:0a:87:dd:07:02:54:77:
5c:a1:3f:bc:56:11:35:06:58:bc:cd:d4:1e:0a:2a:
f7:14:8b:f2:4d:c9:87:f5:ca:a5:3d:14:bc:2f:4b:
61:93:b7:70:aa:67:03:aa:e4:6b:ac:ac:e6:1e:7b:
e5:1d:e7:a2:cd:fa:68:b8:9d:a5:24:6e:57:99:fa:
44:bc:0c:da:66:34:4e:f2:97:07:30:5d:57:a6:06:
ff:1a:42:42:82:18:95:38:04:2a:95:b8:26:c3:8f:
9a:c4:a0:c3:a6:d4:e8:ad:59:68:6d:94:26:0d:25:
bc:7b:fc:11:b6:24:6c:04:23:2e:e7:a8:4f:fa:41:
52:3e:df:6e:2e:62:4c:fc:3c:a8:38:34:87:49:bb:
47:46:14:4c:43:5f:82:86:b5:86:f5:80:09:cb:4b:
a6:9b:da:01:ee:93:0c:f7:51:e4:56:bb:18:b8:2d:
99:cf:f7:54:de:40:7d:05:b7:0c:a3:e5:9b:e3:fa:
c0:19:44:54:ef:9e:41:2a:c8:97:df:95:71:3b:3a:
4a:9c:e8:53:6b:8d:4b:75:ad:ad:da:0c:ce:b0:3e:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:6A:BC:7F:D0:1B:A5:99:40:28:96:9F:F0:62:93:DB:95:34:60:A5
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/MGq8f9AbpZlAKJaf8GKT25U0YKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.141.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:30:d3:76:06:5e:92:08:14:28:3e:1e:9e:4d:2b:62:59:b6:
06:0d:11:ce:9d:79:bf:93:19:52:ac:91:0c:f2:20:b7:d7:28:
61:90:9d:64:62:03:13:2e:97:0c:4d:2b:85:ae:45:98:e9:b6:
ad:a8:20:b4:51:e1:e4:6e:c7:42:9d:82:5b:38:be:48:03:98:
59:fc:3d:a2:8c:bd:ea:ba:5d:cc:fe:47:70:fe:9a:bc:f6:a2:
2c:33:a6:a2:fc:e3:2c:2d:f4:80:79:0e:c4:09:2e:1c:5a:48:
9c:b8:45:ac:38:54:2f:b7:54:c8:be:a2:3e:11:ad:7d:21:68:
4d:53:14:5b:e6:6d:50:a6:9a:d8:dc:9c:ed:f1:65:3d:01:84:
0c:31:ae:ae:08:42:d0:ea:12:b2:0b:72:8d:d2:c6:76:cd:27:
32:e2:e1:67:8a:96:8d:66:38:74:f4:38:a7:7e:58:46:94:1b:
c4:4f:09:e7:0d:9b:cb:fc:ca:0e:f8:53:75:7a:07:96:e9:00:
76:dc:ee:b4:86:eb:2c:7b:f6:cf:e7:92:f0:a9:66:0a:8a:ac:
ba:05:ad:bf:eb:5c:0d:0d:c0:8d:ec:bf:14:88:2f:1c:c1:97:
ab:8d:ac:d3:2b:ef:02:6a:51:22:0e:2a:0f:a1:0e:21:69:5a:
95:42:d2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org