Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/5y4UTWn4GU5N9LTARbjb44KzxoQ.roa
File: 5y4UTWn4GU5N9LTARbjb44KzxoQ.roa (raw, json)
Hash identifier: RcRsM1E/Dn8Zw60lC2A17L6R2QCWVqXRJBP+kS/sDm4=
Subject key identifier: E7:2E:14:4D:69:F8:19:4E:4D:F4:B4:C0:45:B8:DB:E3:82:B3:C6:84
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 02046E0B
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/5y4UTWn4GU5N9LTARbjb44KzxoQ.roa
Signing time: Sat 01 Jan 2022 05:03:54 +0000
ROA not before: Sat 01 Jan 2022 05:03:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211289
IP address blocks: 5.181.52.0/24 maxlen: 24
2a05:3447::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33844747 (0x2046e0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jan 1 05:03:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e72e144d69f8194e4df4b4c045b8dbe382b3c684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c2:e5:71:9f:90:9b:d7:7c:40:99:7f:e7:f3:
20:49:52:86:48:4e:39:1b:fa:2c:a6:a8:51:87:a3:
ef:c2:07:8d:a9:39:82:3c:40:0d:a6:39:ae:ef:91:
e5:25:b7:f6:38:aa:66:27:6c:b3:b8:c5:9b:44:a5:
23:76:74:66:26:01:b6:8e:ba:eb:9a:c4:95:34:61:
de:f6:5a:4b:1d:4d:31:7a:e4:a4:41:8b:d3:6d:c4:
64:b7:43:cf:dc:d4:b0:bb:06:15:b2:aa:df:d5:85:
c3:39:f2:f4:06:cd:5a:1a:8e:14:c4:9c:ae:46:74:
e0:2d:de:f8:3c:fd:4e:df:7d:6a:51:3f:28:cd:0d:
75:9c:1b:07:e5:61:c8:6e:bc:c4:42:ff:95:cd:70:
dd:71:f4:72:7d:14:c1:5c:bd:01:65:16:2e:71:96:
88:c0:d5:a3:e6:61:42:85:da:8d:64:6b:ef:dc:e1:
02:3a:f6:3f:e8:ca:7b:28:9f:90:37:ff:66:70:2f:
4a:2d:09:8a:3b:ce:67:2c:1c:bb:d4:24:7e:1e:3a:
2b:47:f0:0a:75:72:2b:e4:48:eb:a4:d3:2c:4b:6c:
a5:58:b3:73:79:ae:af:61:e0:dd:81:a9:a5:84:06:
29:c2:af:a4:00:28:33:92:48:60:b7:49:1e:5d:a0:
ff:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2E:14:4D:69:F8:19:4E:4D:F4:B4:C0:45:B8:DB:E3:82:B3:C6:84
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/5y4UTWn4GU5N9LTARbjb44KzxoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.52.0/24
IPv6:
2a05:3447::/32
Signature Algorithm: sha256WithRSAEncryption
36:e8:8f:df:ec:81:1e:00:e3:1e:8f:c0:28:60:b2:6b:c5:f4:
89:57:15:a5:03:da:49:74:ce:3e:e5:09:25:4f:83:99:11:d0:
4e:1d:7d:31:32:68:c0:eb:6f:13:eb:83:1f:95:ad:8c:45:30:
6f:db:b9:b2:79:62:38:fb:90:f1:5b:9d:7d:a4:0c:9b:81:44:
7f:15:e7:b8:5e:82:d4:2d:32:9a:31:36:07:62:cd:5f:59:72:
ed:7e:8e:88:94:40:80:89:3f:08:a1:8a:74:f4:d9:8f:f9:bc:
ea:fb:d7:0e:90:a1:01:29:5a:9b:6d:48:08:24:9f:4f:c2:fa:
bc:a5:12:6f:ea:a1:45:a2:9f:8b:84:df:f8:e5:bc:b2:2a:1e:
b9:7e:66:bd:ab:ef:94:84:ce:03:10:75:fb:7a:8f:b3:19:99:
ad:2a:72:1d:e0:b9:91:e1:5e:eb:cb:98:fd:5b:4a:d1:4a:3b:
0e:dc:18:06:c4:84:16:b2:68:53:b7:1c:40:71:6f:b5:cc:17:
9c:b5:bd:6d:18:fc:6c:21:3e:51:89:86:c1:85:13:08:e0:51:
15:0b:4c:52:f4:c6:ae:54:a4:05:2e:96:d4:3c:4c:da:f1:ad:
bc:15:74:8b:06:43:e2:86:99:f9:2f:2c:ac:c8:ed:c8:7d:6a:
e1:10:39:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:57 2024 by rpki-client on console-ams.rpki-client.org