Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/0g5GyLLu3SS_w-2ykQlPYeMDyis.roa
File: 0g5GyLLu3SS_w-2ykQlPYeMDyis.roa (raw, json)
Hash identifier: 28wYox2USLRdDIyfwx/TV4GDQPxC5bcnTtk7EY26IHE=
Subject key identifier: D2:0E:46:C8:B2:EE:DD:24:BF:C3:ED:B2:91:09:4F:61:E3:03:CA:2B
Certificate issuer: /CN=5f96676cf398d3994c4dd4a296594614dff586c7
Certificate serial: 07EEFAAF
Authority key identifier: 5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/0g5GyLLu3SS_w-2ykQlPYeMDyis.roa
Signing time: Mon 17 Jan 2022 13:25:42 +0000
ROA not before: Mon 17 Jan 2022 13:25:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 159.20.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133102255 (0x7eefaaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f96676cf398d3994c4dd4a296594614dff586c7
Validity
Not Before: Jan 17 13:25:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d20e46c8b2eedd24bfc3edb291094f61e303ca2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ae:f3:08:f6:47:6d:ec:f4:9d:63:8a:b4:3f:
c2:9d:f1:b4:96:44:2f:ee:6f:69:41:ef:33:41:cd:
ff:de:9d:64:dc:fd:92:f0:f6:92:2b:5f:9c:b6:02:
f4:16:56:be:1d:e5:31:74:d4:d5:4a:b2:96:3c:ea:
2b:8c:c4:0f:d5:17:70:71:b4:e7:68:d6:2c:17:4f:
87:d0:e8:cc:08:16:5a:14:8d:7b:ae:be:1c:67:14:
73:79:af:90:d0:40:8d:b2:00:6c:65:9d:27:e3:78:
2d:15:e3:ea:02:42:91:ba:cb:cd:a7:45:93:fc:2a:
57:6c:03:40:0f:f5:d9:dd:b3:11:85:bd:f3:70:f0:
f9:ac:f2:69:51:ba:c8:a8:a0:10:48:2d:09:f3:a4:
8e:52:8d:d2:79:96:9c:3e:0f:d9:a2:d0:ba:12:4e:
a4:02:d4:40:4d:5d:b5:b9:b9:67:fd:1b:fb:a0:28:
d3:ec:d4:6c:ea:af:da:33:09:46:e7:27:8c:6b:7c:
28:cc:01:cc:b9:c9:b7:89:5f:d1:14:72:88:50:f9:
b3:5a:d2:a3:35:84:df:f4:35:d5:82:5c:dc:c5:ca:
e3:f1:22:1f:97:8c:0d:62:af:52:57:9f:1b:79:73:
f9:e0:88:b9:c0:d0:4f:7a:cd:3d:29:33:40:c3:82:
41:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0E:46:C8:B2:EE:DD:24:BF:C3:ED:B2:91:09:4F:61:E3:03:CA:2B
X509v3 Authority Key Identifier:
keyid:5F:96:67:6C:F3:98:D3:99:4C:4D:D4:A2:96:59:46:14:DF:F5:86:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5ZnbPOY05lMTdSilllGFN_1hsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/0g5GyLLu3SS_w-2ykQlPYeMDyis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6a6805-5ce0-4128-a04c-f62f35af4371/1/X5ZnbPOY05lMTdSilllGFN_1hsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.20.113.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:04:09:7b:07:84:ce:d9:54:63:90:42:18:50:5b:83:94:e2:
ed:16:41:65:95:ff:99:1d:f5:d0:59:eb:f6:2a:45:3f:ef:f3:
74:2f:44:6d:38:8b:48:51:3a:ff:26:b9:4c:71:8b:18:b9:57:
24:10:5b:26:ae:ed:0b:5d:94:3a:e3:fa:80:30:f8:27:9f:fa:
a1:1c:eb:52:ad:79:87:01:e4:f9:e9:c1:d6:b9:ce:01:97:ba:
05:70:cc:90:19:e7:00:1b:b9:3b:4a:3e:01:02:01:60:cc:23:
a5:39:89:dc:be:5d:bd:48:a7:03:ff:31:ed:fc:c6:b8:a2:4d:
9a:a1:c0:24:24:5a:2c:cd:dd:68:04:df:d5:c1:28:c7:3f:b1:
5f:d1:77:80:ed:12:36:91:14:dc:63:c3:6f:ba:20:0d:cc:e5:
f9:b0:7a:54:5e:ee:5d:98:4e:18:b0:9f:1b:fa:79:ed:cc:71:
c2:4a:6b:9b:05:17:20:8d:42:de:b2:53:c2:b0:6b:6d:15:d8:
7e:e1:e9:cd:3f:92:74:c0:45:b7:b9:0f:0f:85:e1:35:04:e0:
41:a0:cd:79:e6:b6:13:8a:24:74:c1:d1:1b:b3:2e:3c:a4:ec:
f1:a6:da:28:e1:1e:2b:77:0a:5e:8b:e0:e2:40:38:0f:67:87:
91:26:08:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:28 2024 by rpki-client on console-ams.rpki-client.org