Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/dePJmeGNSKSQ-UHVs1IzLzo7J2w.roa
File: dePJmeGNSKSQ-UHVs1IzLzo7J2w.roa (raw, json)
Hash identifier: 3qq1AD5YDOvZhURfoZujuH/irundcy8umYEnENus7sw=
Subject key identifier: 75:E3:C9:99:E1:8D:48:A4:90:F9:41:D5:B3:52:33:2F:3A:3B:27:6C
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A54A7B7
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/dePJmeGNSKSQ-UHVs1IzLzo7J2w.roa
Signing time: Sat 01 Jan 2022 14:56:29 +0000
ROA not before: Sat 01 Jan 2022 14:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60014
IP address blocks: 5.160.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 978626487 (0x3a54a7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75e3c999e18d48a490f941d5b352332f3a3b276c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:5f:d1:10:8e:12:c8:3b:01:12:e5:8b:8f:
c8:16:4c:fb:95:ef:b8:ab:22:cd:5b:a6:2a:f4:c9:
b0:d5:ac:c0:ed:1d:78:f0:58:34:1b:b5:14:92:35:
f9:6a:01:6e:e8:5e:8e:be:58:14:91:55:3c:05:97:
e1:18:3b:2f:70:e2:a4:7b:04:55:16:f8:a7:9e:cd:
39:f3:d8:0b:72:5d:5e:60:e4:fb:94:f6:f0:a8:69:
79:0f:84:29:23:ab:c3:15:2a:6d:e8:40:f1:da:c8:
df:a4:13:95:c1:7d:9f:9d:e1:e9:5f:57:0c:99:58:
01:7c:2c:db:05:3b:f8:bc:1c:a2:12:d5:31:df:0a:
fd:09:6c:14:e4:b3:bd:8d:e4:34:66:c8:4d:bb:2a:
d7:c2:29:76:96:68:dc:c0:81:3b:0a:e5:86:80:78:
08:45:2d:43:60:de:a0:3e:4a:2c:89:c9:5c:e8:c5:
0c:e0:96:07:8c:f6:62:14:40:29:fa:75:a0:6f:db:
cf:6b:8c:64:27:92:49:56:dc:80:2c:81:69:b1:64:
b6:49:a6:f4:86:93:01:b5:dd:e8:d8:12:5f:11:1b:
4c:97:c3:97:80:35:c6:d6:99:ca:53:ab:5e:ba:5e:
77:8c:98:5c:18:53:93:f9:06:e3:a8:8f:8e:ac:64:
f3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E3:C9:99:E1:8D:48:A4:90:F9:41:D5:B3:52:33:2F:3A:3B:27:6C
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/dePJmeGNSKSQ-UHVs1IzLzo7J2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.199.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:82:67:60:e3:1c:48:32:c8:da:a6:a9:aa:47:b2:4b:28:b7:
23:fc:58:cd:8b:d4:0a:a3:7a:23:8e:b7:e3:39:2a:04:79:23:
47:9f:50:80:9d:ee:cf:62:50:b0:f2:76:36:ec:c5:d7:03:97:
cf:e7:ae:4f:a9:09:77:da:c6:89:33:92:26:2e:ac:1a:f1:7d:
4e:14:39:1b:07:b0:82:8a:06:dc:14:ae:5e:4f:d9:d0:6b:49:
11:92:ab:52:81:02:b0:6c:0e:05:15:f9:f2:2a:93:7f:eb:82:
8b:62:78:aa:14:04:1f:e2:ca:d1:0a:a5:59:8e:7c:ba:a4:12:
bf:24:5f:c7:2e:f3:52:88:3f:e9:e3:1d:dd:41:fa:c9:a4:a6:
c6:28:b4:a8:5c:8a:19:41:97:a9:3f:1e:95:a9:72:bc:9e:99:
1f:f3:2c:de:d8:38:01:b1:a5:ef:2e:71:8c:fb:4c:90:cd:4c:
e4:ad:aa:45:f9:0d:74:d7:db:3c:98:a5:cd:57:ee:85:81:f8:
b8:a1:2a:2e:78:2e:58:ad:9b:f4:74:e9:76:c3:58:62:a5:e4:
b7:99:43:c6:ef:7a:93:81:33:b3:b6:00:05:19:11:c9:2a:bf:
42:dd:66:29:a0:0b:29:fe:e4:f4:f1:7d:a1:32:9c:25:72:6f:
1a:0f:78:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org