Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/xFzEhM5vjGLmTxb-TFHos66oPIQ.roa
File: xFzEhM5vjGLmTxb-TFHos66oPIQ.roa (raw, json)
Hash identifier: aH5hrBCjIcy07+VAoifwq4xbN2ri1OdG9pToKNmva/M=
Subject key identifier: C4:5C:C4:84:CE:6F:8C:62:E6:4F:16:FE:4C:51:E8:B3:AE:A8:3C:84
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018216660FF5BE38E932F6C0756CDD2986C9
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/xFzEhM5vjGLmTxb-TFHos66oPIQ.roa
Signing time: Tue 19 Jul 2022 12:19:23 +0000
ROA not before: Tue 19 Jul 2022 12:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19120
IP address blocks: 5.180.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:66:0f:f5:be:38:e9:32:f6:c0:75:6c:dd:29:86:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jul 19 12:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c45cc484ce6f8c62e64f16fe4c51e8b3aea83c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:22:31:32:f4:ed:91:23:05:70:72:a4:f3:a0:
5d:0f:7f:31:3a:fe:28:f2:38:d6:5f:1c:5c:39:9e:
4e:07:9e:05:01:dd:98:40:32:9a:27:d6:e6:42:e1:
43:50:89:6b:44:fd:f7:ac:e8:a8:e5:ea:e1:e0:da:
df:71:d2:eb:ec:6f:80:a3:51:47:f3:40:31:ed:b8:
fc:ae:05:15:8b:75:f8:93:14:bb:c9:78:d7:ed:b9:
74:73:38:ac:63:67:1e:45:54:41:67:b6:89:17:a6:
0e:83:0b:68:c0:9e:f7:97:78:a2:20:95:13:fe:05:
57:e3:03:b2:b5:98:33:fe:68:11:df:e2:fe:ba:7c:
94:46:32:48:ff:6c:aa:70:32:62:29:3d:13:57:db:
bd:44:3d:bd:08:b8:9d:e0:49:d2:7c:6e:62:0a:34:
08:60:fd:67:94:9c:aa:1d:00:a9:d5:1f:af:85:1f:
44:4e:70:7d:94:4c:df:a8:2a:c9:2a:67:78:36:78:
b4:c9:ef:82:b1:19:09:0d:79:8f:76:ef:90:18:d3:
46:ea:49:5e:61:88:2a:88:2f:1b:8c:ea:4c:fc:19:
e6:1d:d3:b3:49:0b:1c:31:b2:ce:bc:83:af:5c:33:
93:74:02:91:66:06:2e:8a:fd:64:e9:0c:18:c0:9c:
da:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5C:C4:84:CE:6F:8C:62:E6:4F:16:FE:4C:51:E8:B3:AE:A8:3C:84
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/xFzEhM5vjGLmTxb-TFHos66oPIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:d0:69:69:e8:d7:c9:3e:1f:3b:0d:55:4b:49:eb:86:5e:db:
c8:7d:36:8c:45:33:51:ed:bb:81:6d:8f:da:b4:ff:24:13:63:
8b:dd:21:d1:24:bd:62:32:56:55:29:df:21:e2:5e:f8:5a:76:
38:37:4a:32:c4:cf:10:9d:ee:37:54:55:61:39:03:52:bc:76:
e4:90:e5:ce:30:0c:c9:80:88:2c:6a:71:f3:15:d2:33:7d:90:
e9:0f:b8:58:ef:4d:06:c1:f5:a6:21:87:23:c0:60:bd:cf:d2:
e7:01:4e:0d:cf:e0:c4:84:fb:a1:f3:05:02:48:68:48:77:87:
55:43:02:40:06:b8:9d:b3:73:dc:7f:18:cb:60:9c:37:5d:72:
6c:d6:9d:b2:54:cd:1e:15:93:68:ff:8a:51:fb:5c:36:f6:db:
3e:fd:e6:eb:5d:bc:7a:61:23:8e:36:1d:6a:6b:98:8e:be:cd:
79:e3:90:18:0b:d8:ad:20:4e:31:33:f3:68:53:f4:9e:aa:78:
de:ba:54:08:82:42:00:d9:a0:aa:81:44:d9:8d:aa:f0:ab:a3:
b3:fc:18:02:5a:c7:a9:12:b4:45:e1:20:98:cd:0a:eb:df:9a:
2d:38:49:ef:10:cd:4a:b0:49:61:b8:3d:ae:1a:79:30:c9:5e:
86:ca:35:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org