Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/be0715-3bb2-44f4-bbf6-240698fbddff/1/5JE2_dxbCGTwG-Oi2gdlSthoHsE.roa
File: 5JE2_dxbCGTwG-Oi2gdlSthoHsE.roa (raw, json)
Hash identifier: 52aQN0h7gX/UK04Ovp2qIDbS0icnetV8GrpaK0aA8+k=
Subject key identifier: E4:91:36:FD:DC:5B:08:64:F0:1B:E3:A2:DA:07:65:4A:D8:68:1E:C1
Certificate issuer: /CN=5ac3e2bdb63296d5f0f3afe95bd1545117a5b149
Certificate serial: 018F000E
Authority key identifier: 5A:C3:E2:BD:B6:32:96:D5:F0:F3:AF:E9:5B:D1:54:51:17:A5:B1:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsPivbYyltXw86_pW9FUURelsUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/be0715-3bb2-44f4-bbf6-240698fbddff/1/5JE2_dxbCGTwG-Oi2gdlSthoHsE.roa
Signing time: Sat 01 Jan 2022 01:03:06 +0000
ROA not before: Sat 01 Jan 2022 01:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5400
IP address blocks: 192.109.52.0/24 maxlen: 24
2a0c:8480::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26148878 (0x18f000e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac3e2bdb63296d5f0f3afe95bd1545117a5b149
Validity
Not Before: Jan 1 01:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e49136fddc5b0864f01be3a2da07654ad8681ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c2:05:03:13:a3:58:f8:ab:fa:c0:d4:cc:84:
56:16:2e:d7:15:52:08:ca:3d:43:93:f2:d3:e2:dc:
25:aa:d1:33:fb:08:d5:59:2a:20:ff:05:59:6c:64:
7b:7b:85:53:3b:4b:0b:30:9e:51:1a:df:33:df:e1:
21:d5:8b:a0:ab:7a:27:9a:c2:9d:af:85:4e:06:45:
7f:3d:96:cb:6b:6e:97:4d:62:dd:c4:3a:78:cc:77:
7e:6e:8f:d4:19:dc:e0:c9:6d:ce:3c:9c:a7:37:cf:
dd:7c:27:1c:37:2c:fe:0a:3b:7f:a9:4d:a3:c7:ef:
5c:f2:19:99:2e:3e:0f:1d:ca:ff:00:83:cd:7f:49:
d2:5c:d5:3c:a5:b1:e8:70:23:3a:c6:75:d3:a0:c5:
78:a2:4a:0f:22:ef:2d:68:0e:04:66:60:bb:1f:5b:
a9:be:97:3e:19:44:70:c4:c3:28:4f:dd:b6:84:8e:
6c:1d:9a:59:00:d6:32:89:0b:c4:09:f3:60:2c:17:
ba:e9:f3:0c:65:20:a1:d4:df:77:66:83:36:a6:4f:
0d:cb:92:ff:ef:1c:79:21:bd:c7:36:21:c5:58:42:
a8:a1:b4:28:b9:c0:59:12:cc:9a:d3:34:f0:a6:73:
e7:8e:2f:73:2d:91:8b:71:e2:e4:69:20:0a:b9:87:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:91:36:FD:DC:5B:08:64:F0:1B:E3:A2:DA:07:65:4A:D8:68:1E:C1
X509v3 Authority Key Identifier:
keyid:5A:C3:E2:BD:B6:32:96:D5:F0:F3:AF:E9:5B:D1:54:51:17:A5:B1:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsPivbYyltXw86_pW9FUURelsUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/be0715-3bb2-44f4-bbf6-240698fbddff/1/5JE2_dxbCGTwG-Oi2gdlSthoHsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/be0715-3bb2-44f4-bbf6-240698fbddff/1/WsPivbYyltXw86_pW9FUURelsUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.52.0/24
IPv6:
2a0c:8480::/30
Signature Algorithm: sha256WithRSAEncryption
32:48:a4:0e:d7:de:e1:ce:a9:c4:76:e5:23:b3:41:24:cf:b1:
1d:4b:c1:20:7a:3a:54:93:e6:6b:de:6f:e3:87:d1:e1:0b:1a:
7d:27:09:23:6e:e0:45:81:26:05:5d:87:6f:22:e4:c2:f4:d4:
4d:9d:64:6b:e6:c9:70:5b:cc:2c:a1:61:8a:db:15:6e:51:59:
74:fd:c2:fe:55:6b:fd:c9:43:a0:cf:99:06:2b:68:c8:d9:ef:
9e:b2:87:74:2c:71:6a:ee:a0:60:17:d3:20:11:77:69:86:8d:
cd:47:13:70:9a:5c:2b:17:fc:b5:19:be:20:7c:2b:6f:03:5d:
ee:ea:a7:db:f2:35:fd:e1:aa:9e:f5:62:8d:ed:d8:6b:2e:24:
85:e4:1d:29:d7:7f:d4:0e:1d:eb:e1:f0:e8:89:4a:21:00:e3:
65:b2:9b:5c:c5:ce:61:59:61:6d:f2:d9:2f:6c:7a:a5:7d:6d:
7e:68:a8:d2:9e:5d:3e:1b:18:58:7d:37:69:9b:68:aa:0a:9d:
d5:74:4e:4f:63:72:c3:2b:f2:b5:d8:95:f7:b5:ea:01:a0:71:
55:21:9a:5f:73:cb:6e:09:9d:40:05:17:57:47:1f:81:95:55:
1a:92:99:89:66:e9:33:4a:41:91:2e:8e:a0:3b:43:35:20:d1:
5a:28:8a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org