Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/J_4yeyNKhOVDA82XvS8iekT1oxI.roa
File: J_4yeyNKhOVDA82XvS8iekT1oxI.roa (raw, json)
Hash identifier: kEW6isAdXXUxc4BLvhxjwMMkwb8eKRxoE57anuNuTGo=
Subject key identifier: 27:FE:32:7B:23:4A:84:E5:43:03:CD:97:BD:2F:22:7A:44:F5:A3:12
Certificate issuer: /CN=5ff4bc6137c540a89b9173cc2de32eb04c9e6eae
Certificate serial: 0937B6E7
Authority key identifier: 5F:F4:BC:61:37:C5:40:A8:9B:91:73:CC:2D:E3:2E:B0:4C:9E:6E:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_S8YTfFQKibkXPMLeMusEyebq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/J_4yeyNKhOVDA82XvS8iekT1oxI.roa
Signing time: Sat 01 Jan 2022 03:54:00 +0000
ROA not before: Sat 01 Jan 2022 03:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134963
IP address blocks: 5.61.68.0/24 maxlen: 24
5.61.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154646247 (0x937b6e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff4bc6137c540a89b9173cc2de32eb04c9e6eae
Validity
Not Before: Jan 1 03:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27fe327b234a84e54303cd97bd2f227a44f5a312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c6:4a:09:b8:5e:cd:cb:f4:b6:37:63:de:cb:
7c:03:59:db:48:9c:f8:ef:bd:f6:7b:d4:ec:4c:18:
9d:b6:a3:54:86:c5:7e:e1:e3:5f:de:1e:25:66:19:
cd:37:6d:87:e5:d7:6a:7e:11:07:08:64:32:0b:96:
08:f1:5a:45:3f:17:7a:2f:00:3b:49:21:20:37:08:
8c:b3:44:b5:be:3d:f4:49:6b:7a:bb:ce:42:9d:74:
15:eb:2c:64:d2:3b:7b:cd:e1:32:d2:94:86:2b:9d:
44:22:29:c8:f7:53:01:ab:9d:6f:7e:ec:e8:b2:4b:
9d:34:19:e9:fc:97:e8:d7:a1:7b:e9:80:bd:0f:c6:
77:ac:d9:60:26:97:95:ec:64:30:77:92:5f:f2:a0:
df:9f:8a:d2:66:2a:48:65:6f:25:e8:f6:8e:e6:ae:
9b:3d:e5:b1:bd:c2:aa:40:f8:ce:f2:33:8d:e2:78:
7b:56:cf:72:a0:e3:10:79:38:2c:3e:f8:17:15:30:
e4:ab:d2:8d:7d:bd:fa:63:19:99:32:35:21:69:a3:
58:15:fa:a2:68:13:4d:24:62:0b:49:30:a2:50:86:
1a:e0:46:3f:86:c8:bf:f6:80:20:03:5b:cd:06:50:
08:7e:2c:85:80:7e:08:7b:0b:ba:57:59:0f:ae:6a:
69:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FE:32:7B:23:4A:84:E5:43:03:CD:97:BD:2F:22:7A:44:F5:A3:12
X509v3 Authority Key Identifier:
keyid:5F:F4:BC:61:37:C5:40:A8:9B:91:73:CC:2D:E3:2E:B0:4C:9E:6E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_S8YTfFQKibkXPMLeMusEyebq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/J_4yeyNKhOVDA82XvS8iekT1oxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c011ca-456b-4f51-bc8b-005cb4dca63f/1/X_S8YTfFQKibkXPMLeMusEyebq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.61.68.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:68:5e:c6:67:3d:50:2d:cb:ae:74:94:9c:81:b8:f6:ba:8a:
e9:a5:35:c2:97:0c:a2:30:0a:c1:4e:4d:c5:42:47:be:94:32:
d3:ac:71:43:6b:8f:cb:3c:07:58:ea:8d:74:24:f7:97:e5:79:
5a:5c:79:0f:10:74:91:51:bc:62:01:01:6d:0b:cc:7c:91:41:
24:1f:32:0a:e1:66:b3:06:c9:b2:34:80:3b:bf:67:48:27:5d:
71:47:1e:cb:b2:ba:e3:88:01:f8:04:85:19:2d:f7:c9:7a:d2:
b9:b4:b1:4e:3c:dc:95:c1:4c:67:4e:b9:ed:c6:aa:3e:83:14:
8d:bd:85:58:ef:06:61:82:1b:67:14:12:40:44:e5:34:43:8b:
c3:f9:fb:e0:76:9f:f6:d7:f2:5e:ef:7d:8c:f0:2f:35:8f:2d:
6d:e3:3b:44:cf:09:b6:09:20:84:69:1f:3b:b1:ee:b3:93:29:
a6:51:0b:cb:a2:a0:80:02:7e:0c:8b:e6:6d:4d:1e:63:fd:85:
cf:32:b6:55:fd:9e:01:38:2c:e1:1b:fb:b7:e3:09:a0:26:0e:
df:32:02:03:9c:0b:da:34:af:49:f0:ab:44:33:fe:fa:ea:ef:
cb:6f:e4:02:d2:5a:51:e6:ae:3d:81:f9:fd:f0:40:11:af:bf:
4a:18:d7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:06 2025 by rpki-client