Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/L7OBA6NThGj-jSDeT3gZPA5mbAs.roa
File: L7OBA6NThGj-jSDeT3gZPA5mbAs.roa (raw, json)
Hash identifier: x6aDUfWfr272CkM+jxfovk1Kk2dWPa6hYYy8dr5duM0=
Subject key identifier: 2F:B3:81:03:A3:53:84:68:FE:8D:20:DE:4F:78:19:3C:0E:66:6C:0B
Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Certificate serial: 0A45610B
Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/L7OBA6NThGj-jSDeT3gZPA5mbAs.roa
Signing time: Thu 02 Jun 2022 07:18:21 +0000
ROA not before: Thu 02 Jun 2022 07:18:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8796
IP address blocks: 5.183.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172318987 (0xa45610b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Validity
Not Before: Jun 2 07:18:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb38103a3538468fe8d20de4f78193c0e666c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:45:f8:b7:84:99:06:5d:2d:a6:28:d1:8d:56:
b7:93:08:a0:b9:76:cf:cf:ef:6b:ba:4f:c6:b8:01:
d1:ec:d6:8a:7c:a6:05:80:7e:7f:61:11:12:ee:e3:
bd:0a:dc:fa:76:25:dc:7f:94:92:86:f3:4e:d7:99:
8c:07:fe:20:a3:bc:80:3d:f0:b4:bf:78:b7:9a:46:
0a:14:71:71:12:6d:7c:87:3b:46:87:5a:4e:5a:16:
6f:92:c5:1e:fa:b7:ca:5d:11:72:ea:db:31:bc:cf:
99:dd:f3:ee:41:ec:00:f7:03:e9:0d:95:7d:ad:aa:
d8:66:4d:8b:67:6d:e3:8c:ca:de:a2:22:21:f1:07:
50:64:0b:16:a7:2a:9c:9d:f5:03:b1:3f:a3:aa:92:
cf:ee:a8:8b:3c:0b:19:5c:3d:f7:e6:03:09:a4:79:
6f:8d:10:66:3c:ea:cd:e7:69:2c:dd:73:85:10:0a:
a5:d1:a1:de:62:59:5d:8f:af:21:16:21:37:28:3c:
bf:95:22:22:84:e4:69:f9:79:e7:c9:c5:c3:99:f5:
48:e5:1f:4c:be:0c:38:07:73:6a:b5:23:13:cb:5d:
c3:2c:c8:8a:61:f1:80:30:33:9d:5c:d3:03:72:0e:
e5:0b:92:cf:68:02:a5:da:09:42:3a:91:56:6c:dc:
e0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B3:81:03:A3:53:84:68:FE:8D:20:DE:4F:78:19:3C:0E:66:6C:0B
X509v3 Authority Key Identifier:
keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/L7OBA6NThGj-jSDeT3gZPA5mbAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.80.0/22
Signature Algorithm: sha256WithRSAEncryption
14:54:82:ae:d9:aa:68:a8:c0:da:96:a0:95:08:54:34:5f:2e:
94:bf:98:f8:d3:0d:6b:4a:11:9a:63:1b:08:1b:de:2f:2e:be:
50:43:a3:09:1b:38:92:e1:53:97:c8:bc:3d:c2:99:43:c5:f4:
42:7f:02:f5:18:6f:b7:3a:5f:28:cd:7d:e5:e1:b8:da:a2:dc:
d4:ab:35:83:bf:7c:e9:2f:65:79:7e:33:9d:e8:61:62:05:2a:
f8:7d:69:99:0f:16:42:4f:d6:93:30:c5:09:5c:98:64:c1:07:
db:e7:0a:63:6e:4a:ca:d3:dd:fa:cf:ca:3e:cf:f8:b9:9a:52:
e5:43:e1:40:6c:eb:ce:30:e3:d7:02:c4:0c:8b:31:e6:c7:75:
ba:f0:4b:a1:d4:90:fc:18:4f:c6:42:2d:1e:e1:45:ad:f9:0e:
4f:af:14:40:90:65:19:67:65:c7:85:96:aa:65:2b:10:8d:a1:
e8:53:4c:cc:ea:fd:c9:98:84:cf:32:74:e0:3f:77:29:0a:8b:
e6:4e:f8:54:90:e6:62:46:1d:b6:1d:1e:cc:ca:82:83:e2:26:
cd:fd:f1:15:c8:9b:3a:e7:45:90:cf:f3:76:22:32:74:a6:8c:
1e:ee:f2:3b:4c:5a:81:03:05:6f:84:5a:f0:4f:0d:46:28:ce:
6d:b3:2b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-fra.rpki-client.org