Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/oNHnI9Lrv-hF0YFrbV_1qI-c05A.roa
File: oNHnI9Lrv-hF0YFrbV_1qI-c05A.roa (raw, json)
Hash identifier: PCQ5+958CFdROLTtu/s1mRxmfCjIPZ/XitICJmLtzcg=
Subject key identifier: A0:D1:E7:23:D2:EB:BF:E8:45:D1:81:6B:6D:5F:F5:A8:8F:9C:D3:90
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A661498
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/oNHnI9Lrv-hF0YFrbV_1qI-c05A.roa
Signing time: Sat 01 Jan 2022 14:56:40 +0000
ROA not before: Sat 01 Jan 2022 14:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207381
IP address blocks: 5.160.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 979768472 (0x3a661498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0d1e723d2ebbfe845d1816b6d5ff5a88f9cd390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:70:5d:a5:f3:79:01:e0:26:14:bb:a9:9b:
2d:84:6c:41:be:06:8e:2b:f1:01:ea:d9:71:83:f1:
c6:f6:f1:6d:ca:96:ae:4f:d0:33:af:f1:d0:74:0a:
41:1d:e8:9f:12:27:9c:9e:5a:82:86:34:d8:19:1f:
3a:51:cd:9d:64:69:02:4a:c3:29:cf:65:e6:6b:0d:
a3:94:91:42:a9:c9:c6:c9:a8:96:66:99:2a:c6:08:
13:56:49:01:87:93:57:f9:bd:8f:4c:da:ac:fe:c0:
74:f0:77:c1:7d:ef:a4:e4:40:5e:de:ee:01:35:f2:
d8:a5:ff:60:43:71:12:52:f4:fd:d9:b6:87:e1:42:
2e:4e:d1:6d:00:3c:29:74:72:55:06:d2:40:55:7b:
d3:33:c0:d8:c1:7e:ed:35:17:98:6d:b6:62:d4:86:
01:ca:e0:38:2e:cd:ab:8a:07:3a:1d:cb:ca:bb:99:
61:cf:43:5c:45:1f:04:db:b6:94:99:75:5b:c8:2c:
a8:91:c3:97:d6:c0:a7:43:b5:aa:6f:77:2d:fa:4a:
b4:4d:fa:40:54:2f:6f:5c:29:72:f4:b8:63:29:ac:
8f:a1:b6:54:8a:52:d8:63:80:d8:fc:00:e4:70:5d:
74:73:19:5c:dd:a9:64:70:e0:5f:59:2e:c6:66:0c:
64:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D1:E7:23:D2:EB:BF:E8:45:D1:81:6B:6D:5F:F5:A8:8F:9C:D3:90
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/oNHnI9Lrv-hF0YFrbV_1qI-c05A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.152.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:3d:13:fc:e0:71:fe:83:77:1a:83:a9:c0:e2:8e:b9:61:a0:
df:92:58:e3:e6:73:ae:63:83:23:2d:de:79:f4:30:6d:c9:b4:
3f:d6:a0:5d:5c:37:e7:09:0e:dc:08:22:20:94:69:aa:8a:13:
61:68:05:e5:29:4e:46:1c:6a:e2:eb:0a:57:de:a1:43:6a:b8:
a4:16:67:55:74:ec:9a:a1:7b:a1:78:24:c3:79:9d:91:17:a7:
2e:6f:fb:35:68:dd:40:66:94:bd:83:f7:20:ff:0a:97:76:62:
a7:f2:9a:f6:05:f7:7f:6f:c2:32:3e:51:7c:8c:2e:4c:ed:1d:
bb:66:3b:a0:8b:fb:25:31:51:74:33:50:a0:22:de:e2:8d:39:
9a:ac:9d:29:e7:8f:41:5b:e3:00:34:5e:91:7e:25:7b:23:be:
c3:25:05:96:81:28:82:93:dc:6b:60:64:d1:1a:7e:7e:2a:a7:
f6:37:ed:33:b7:01:ef:18:84:13:f0:bb:87:76:5e:68:92:0c:
22:d2:79:f8:22:36:9e:ae:e7:35:10:e3:c4:48:de:b6:9b:17:
1f:d2:79:7b:fb:4e:f9:ed:13:c4:89:86:fe:e6:df:bd:3a:3f:
00:e4:54:43:20:fd:aa:fd:22:c0:51:06:ea:f0:e9:01:cc:7f:
c0:9b:80:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org