Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/5RMkNtMe2OsbP3aUQFYc_kglKXg.roa
File: 5RMkNtMe2OsbP3aUQFYc_kglKXg.roa (raw, json)
Hash identifier: b+uy3efz44XBAHAFgonzutme3G7H4BlRRedZYxScUPk=
Subject key identifier: E5:13:24:36:D3:1E:D8:EB:1B:3F:76:94:40:56:1C:FE:48:25:29:78
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 08284815
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/5RMkNtMe2OsbP3aUQFYc_kglKXg.roa
Signing time: Sat 01 Jan 2022 06:03:23 +0000
ROA not before: Sat 01 Jan 2022 06:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209420
IP address blocks: 192.145.17.0/24 maxlen: 24
192.145.16.0/23 maxlen: 23
192.145.16.0/24 maxlen: 24
192.145.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136857621 (0x8284815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5132436d31ed8eb1b3f769440561cfe48252978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:21:c3:16:e2:bf:d3:d5:bd:24:2d:c3:99:88:
01:64:d0:f2:5c:50:64:91:6d:b7:6d:82:2e:f8:2d:
f1:04:1b:02:8b:77:e0:c0:56:ad:2e:6f:46:ed:1d:
37:28:18:77:48:b5:0f:6b:67:06:d4:e6:f8:fa:e4:
cf:2a:60:40:53:01:5a:98:56:99:dd:a1:26:02:55:
e0:d2:c0:73:9f:77:8f:57:26:45:78:00:69:f7:45:
11:79:c9:da:4e:e9:71:bc:19:73:39:95:80:45:28:
7c:36:b2:f5:f6:67:6a:90:ba:bd:13:77:9c:84:7f:
33:21:dc:66:e1:a8:2a:84:94:20:c6:b3:f8:db:3a:
5f:4a:d8:3f:c4:8b:01:8f:c0:90:39:02:b2:2e:d5:
16:06:c2:ae:c4:5d:7d:d6:3c:5e:74:c9:36:9d:ed:
f3:81:0f:f6:eb:6c:ac:5c:13:ad:26:05:c5:39:c8:
21:29:59:fa:c8:57:7a:0a:44:1f:d7:35:55:23:2c:
44:86:9e:b5:bf:85:f3:5c:91:b1:41:7d:77:f2:cb:
12:e9:46:3e:3e:3c:c6:46:8e:1d:87:ca:90:e0:38:
71:78:1a:f4:3c:19:d3:08:6c:0d:55:a6:fd:03:9e:
d4:8b:c9:31:85:2c:8a:04:c6:68:d0:de:bb:7f:e5:
2e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:13:24:36:D3:1E:D8:EB:1B:3F:76:94:40:56:1C:FE:48:25:29:78
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/5RMkNtMe2OsbP3aUQFYc_kglKXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.16.0-192.145.18.255
Signature Algorithm: sha256WithRSAEncryption
07:b9:8b:00:0e:04:e6:40:1c:87:18:cc:a7:27:fe:93:21:cf:
7a:17:cc:6d:c2:1a:71:22:d2:b0:3b:ad:dd:f0:8f:74:de:82:
af:a1:e1:fa:9e:e6:9f:bc:07:a6:4f:df:50:3b:2e:ff:c5:51:
46:d0:b0:d6:58:92:4c:86:04:35:de:45:ab:51:13:6d:38:ba:
9d:33:41:56:89:55:dd:2f:c4:9d:5d:7b:b5:99:fc:01:57:d6:
2d:32:21:8e:e4:ad:b1:e4:fa:6c:cf:89:9f:b7:fd:f8:60:a8:
6a:5a:b5:d6:02:a7:14:26:26:09:c1:a3:cd:9f:b4:dd:3b:48:
05:87:dc:52:83:2c:d8:8c:fb:57:5f:73:81:a6:5f:59:93:ca:
ce:41:44:13:b2:c0:a1:7b:ca:7e:b0:b9:1f:f7:4a:82:b9:80:
80:9d:97:33:d9:d0:d8:74:b2:aa:3b:d5:9e:5d:41:e0:c9:78:
99:eb:d8:c2:bf:cc:82:32:f2:8c:a3:49:b9:92:9a:a7:62:79:
75:9c:2c:63:43:8e:6a:2b:7a:ab:33:a2:76:1d:58:95:ca:50:
ac:a1:8f:e3:3f:60:36:67:1d:2f:69:7e:b4:7a:d8:08:3c:ac:
2d:89:44:62:07:6a:b8:58:c1:a7:93:7f:63:02:76:85:27:88:
ab:27:4d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org