Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/tXJqyYz2DoH2Z91e5j3wPZa12DA.roa
File: tXJqyYz2DoH2Z91e5j3wPZa12DA.roa (raw, json)
Hash identifier: nHfmDWYs1zTwgDNZcTxRsmKKpBLkf2KF5hnhuvxw1VE=
Subject key identifier: B5:72:6A:C9:8C:F6:0E:81:F6:67:DD:5E:E6:3D:F0:3D:96:B5:D8:30
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 3A491941
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/tXJqyYz2DoH2Z91e5j3wPZa12DA.roa
Signing time: Sat 01 Jan 2022 14:56:21 +0000
ROA not before: Sat 01 Jan 2022 14:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49433
IP address blocks: 5.160.242.0/24 maxlen: 24
2a00:15c8:1000:3000::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 977869121 (0x3a491941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 14:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5726ac98cf60e81f667dd5ee63df03d96b5d830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:82:52:9e:9e:77:f7:36:00:b1:f1:65:e1:c4:
e0:c0:fe:a1:5b:f6:b7:4d:ac:ac:18:b2:b3:fe:cb:
10:1b:41:2c:88:1a:5e:3a:fc:a5:be:2b:20:5e:36:
65:2c:bc:a4:d0:2b:cb:22:79:f3:58:29:14:57:3a:
0b:75:0c:a1:70:47:95:2d:5b:36:26:2a:33:4e:09:
23:e4:4f:ea:7f:2d:b2:f2:29:82:ab:20:dd:08:81:
40:27:b5:d1:a9:a4:78:b9:6d:a7:26:28:9c:9d:09:
05:e6:a8:e3:72:5d:b9:84:8f:88:18:80:22:7d:8f:
66:23:61:f6:d6:c4:2a:e8:bf:26:f9:35:5a:ae:40:
06:77:65:e5:57:33:18:38:8d:89:aa:7e:f9:e5:6a:
b6:49:ac:4c:db:ae:f7:19:b8:94:f8:e6:0a:21:ab:
bb:a1:64:da:cc:44:02:31:4e:fa:50:1d:a6:a9:0f:
51:fe:ca:43:d6:b0:d1:aa:61:94:17:6f:42:63:2b:
dd:9c:b7:08:6c:4b:96:a3:2f:61:f9:12:dd:98:eb:
aa:5f:0c:98:85:f7:90:49:06:a4:ce:1f:c7:d1:b7:
4b:96:56:b5:4f:ff:cd:5d:b7:83:69:18:3f:c9:1c:
a2:2b:0f:5e:db:e2:60:48:61:ab:08:92:5a:85:df:
71:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:72:6A:C9:8C:F6:0E:81:F6:67:DD:5E:E6:3D:F0:3D:96:B5:D8:30
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/tXJqyYz2DoH2Z91e5j3wPZa12DA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.242.0/24
IPv6:
2a00:15c8:1000:3000::/64
Signature Algorithm: sha256WithRSAEncryption
62:df:19:22:8e:36:bb:c3:9c:0a:f2:55:03:94:a2:ee:9a:35:
d4:77:11:ba:c1:ec:d6:12:a5:f5:ed:3c:d5:55:90:ba:4a:1a:
6a:f4:0c:0e:e3:cd:b7:a6:6e:9c:b1:ab:4a:c2:0c:73:79:6a:
c2:6f:b5:17:10:9e:aa:b3:13:a1:27:7a:03:8b:5a:de:35:60:
44:50:1d:c6:8b:a9:ba:06:4c:c2:1b:33:04:3c:8b:8e:d7:45:
4c:54:16:15:b9:0d:a5:0f:c9:f1:65:a2:34:fb:d2:9e:7c:23:
ff:ef:63:d5:73:94:7f:ba:78:5b:7f:81:1d:93:c2:15:b0:c1:
ef:ab:50:0f:dc:1b:ec:7d:84:21:7e:bc:47:7b:b5:21:5a:fe:
1a:58:bf:5a:2c:a6:b6:d6:ff:6f:45:07:8b:eb:ba:65:b9:a4:
e5:73:95:43:3c:f3:0e:85:f9:7e:d7:af:5d:ab:f4:0f:82:72:
fd:d9:ed:69:76:73:8b:40:eb:64:25:ef:2a:6e:56:2d:a3:13:
f5:f7:6e:8b:a9:43:bd:41:42:ac:83:25:36:7f:81:43:c1:98:
53:b1:3a:b9:0d:9d:b2:de:c1:f5:dd:e5:2b:d4:e6:a0:97:1e:
80:c1:bb:55:f6:a4:0e:5e:84:89:90:e5:28:f9:d6:95:fc:c7:
3d:fa:cb:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-ams.rpki-client.org