Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/U9g2yHnU-7IN5Ws-7YxY8PsYPTU.roa
File: U9g2yHnU-7IN5Ws-7YxY8PsYPTU.roa (raw, json)
Hash identifier: Ekh3xAVGaozrXwZyvJiXPLXZF1yT1uiKEtkk4NKsSN8=
Subject key identifier: 53:D8:36:C8:79:D4:FB:B2:0D:E5:6B:3E:ED:8C:58:F0:FB:18:3D:35
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A537BC8
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/U9g2yHnU-7IN5Ws-7YxY8PsYPTU.roa
Signing time: Sat 01 Jan 2022 14:56:28 +0000
ROA not before: Sat 01 Jan 2022 14:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59838
IP address blocks: 5.160.203.0/24 maxlen: 24
5.160.202.0/24 maxlen: 24
5.160.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978549704 (0x3a537bc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53d836c879d4fbb20de56b3eed8c58f0fb183d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:31:23:d6:a2:96:d0:50:7b:90:5a:b5:b6:9e:
af:5a:df:03:92:a6:d2:3d:85:d5:b7:54:c9:5b:47:
0e:55:5d:a9:3b:db:52:20:8b:ca:1d:93:06:cb:9d:
9c:db:3d:7e:8a:a9:f3:36:af:18:47:9f:f3:c6:e3:
dc:5e:0d:99:a9:3a:e7:ec:59:7a:75:c7:ee:a1:dd:
82:a4:f6:b4:82:cf:7b:6a:ec:04:f5:fb:fe:2b:d6:
26:49:28:2b:aa:8c:e6:02:ae:d7:85:70:53:5f:0c:
94:bb:db:fe:26:2b:ee:8f:af:7a:be:e4:68:62:6c:
94:32:16:af:3f:79:7c:c2:8c:f9:2a:72:2c:89:ac:
61:b7:55:df:55:53:32:32:90:e7:25:20:1c:11:33:
d9:93:b1:0a:2e:ad:de:c7:70:1e:4a:87:4b:cb:cc:
a3:fc:91:e2:b0:85:f2:52:f7:57:f9:aa:27:7e:1f:
e7:6f:52:1d:58:5f:01:3f:83:44:34:96:d5:1d:fe:
a6:d5:f2:cd:da:a0:ed:65:bc:d6:c2:46:03:27:22:
d3:35:ec:fd:52:4f:ec:d0:43:28:63:79:c8:67:73:
ca:f2:fd:85:41:6f:9d:ab:c2:fa:bd:da:e0:7f:37:
5d:83:4d:67:8b:85:16:e7:87:30:aa:19:96:bb:c3:
e5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D8:36:C8:79:D4:FB:B2:0D:E5:6B:3E:ED:8C:58:F0:FB:18:3D:35
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/U9g2yHnU-7IN5Ws-7YxY8PsYPTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.202.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:a4:f4:8e:34:cd:3c:6c:da:c9:df:a6:a8:35:ed:37:ee:4a:
31:5a:36:c3:01:63:f0:6b:b9:cb:f3:6d:af:e7:74:33:a4:6c:
d7:87:8a:f1:a7:94:1d:ab:55:d2:a5:2d:67:64:b4:e4:d0:af:
a8:60:77:be:e1:8f:23:02:c8:6b:9f:6a:5b:ac:60:ae:38:ab:
38:c0:9c:70:12:ce:ad:30:1d:76:f0:27:14:99:29:a8:37:19:
38:53:d0:b0:7a:0f:e7:33:7a:e0:6c:11:d2:a2:60:e4:64:8e:
57:c5:aa:71:43:94:c0:71:4e:25:31:36:c4:f5:bd:a6:62:5a:
d3:d5:2d:e0:d5:51:ec:48:19:a8:93:ad:70:f6:df:d4:90:37:
1c:c6:e3:d3:8b:dd:2e:9d:dc:96:e9:d0:b2:66:c2:06:46:ed:
06:2a:11:9d:02:4b:35:3a:bb:26:a6:f8:75:64:62:23:5e:7d:
15:38:7c:d9:cc:8a:72:c7:90:cd:16:c2:37:02:2b:07:26:22:
a4:b9:0b:cd:e0:c6:08:c8:cc:02:7d:e6:9d:d7:22:e2:9f:c5:
58:7e:2c:c2:df:b4:bd:83:a8:75:c9:a9:b6:41:39:2a:a0:4e:
49:ad:66:69:30:c7:20:b6:c5:7a:48:61:b5:f6:a2:d4:80:74:
4c:2b:4f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-ams.rpki-client.org