Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ad0d6d-f949-46db-981f-b38d7f709d70/1/g5AP469wS6eOt69J2VTMzNjNR5M.roa
File: g5AP469wS6eOt69J2VTMzNjNR5M.roa (raw, json)
Hash identifier: EP+JN9QyHmsPF79v3XATiTNGQqNufwNXQ9yzRUcK3B8=
Subject key identifier: 83:90:0F:E3:AF:70:4B:A7:8E:B7:AF:49:D9:54:CC:CC:D8:CD:47:93
Certificate issuer: /CN=b0beed6ede9eb285bd2a6abb985adcdbe8f2779a
Certificate serial: 069B63CA
Authority key identifier: B0:BE:ED:6E:DE:9E:B2:85:BD:2A:6A:BB:98:5A:DC:DB:E8:F2:77:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL7tbt6esoW9Kmq7mFrc2-jyd5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ad0d6d-f949-46db-981f-b38d7f709d70/1/g5AP469wS6eOt69J2VTMzNjNR5M.roa
Signing time: Sat 01 Jan 2022 13:06:51 +0000
ROA not before: Sat 01 Jan 2022 13:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43174
IP address blocks: 131.117.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110846922 (0x69b63ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0beed6ede9eb285bd2a6abb985adcdbe8f2779a
Validity
Not Before: Jan 1 13:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83900fe3af704ba78eb7af49d954ccccd8cd4793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9d:08:d9:9e:7d:24:c7:a6:4a:f1:ce:ff:ae:
fb:ae:5b:a0:5e:9f:42:bb:e3:fb:15:5a:7a:53:8a:
41:1d:db:72:ec:e1:57:21:4a:93:a4:bd:41:b2:1f:
c3:ee:b7:39:ab:b2:a3:fb:48:01:3a:3d:b9:e1:ce:
9b:33:79:fe:b2:04:34:50:ba:50:28:c6:46:e1:06:
a1:23:31:e7:f8:ae:e3:ce:98:ed:11:a7:c0:29:44:
72:6f:29:f8:61:f2:4e:c2:c6:66:d7:c1:37:2f:7c:
06:39:d4:cb:b3:7c:9d:4f:37:90:2e:4b:73:6e:73:
5c:02:aa:04:0b:0a:3a:b4:7a:8f:59:03:92:d7:80:
5d:0f:e5:88:e8:f5:b4:de:7d:2d:bc:fe:a3:1a:62:
e5:68:52:fd:c2:ac:41:c9:bd:07:4b:2b:ca:53:c9:
ab:3e:60:d0:dd:07:b0:1b:cc:31:9d:e5:c3:9f:5b:
80:71:29:98:32:d3:c1:ee:07:c1:fa:00:86:62:b4:
e5:13:de:ae:07:e0:4f:a4:a7:cc:e6:88:ba:68:f6:
fd:fd:2b:5c:95:56:4d:8d:b4:f4:44:23:5d:53:59:
55:3c:61:15:d8:f0:00:7a:d8:5a:45:4c:33:45:cd:
ad:6f:4e:20:05:d1:0a:fe:45:c4:03:e4:77:b0:bb:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:90:0F:E3:AF:70:4B:A7:8E:B7:AF:49:D9:54:CC:CC:D8:CD:47:93
X509v3 Authority Key Identifier:
keyid:B0:BE:ED:6E:DE:9E:B2:85:BD:2A:6A:BB:98:5A:DC:DB:E8:F2:77:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL7tbt6esoW9Kmq7mFrc2-jyd5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ad0d6d-f949-46db-981f-b38d7f709d70/1/g5AP469wS6eOt69J2VTMzNjNR5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ad0d6d-f949-46db-981f-b38d7f709d70/1/sL7tbt6esoW9Kmq7mFrc2-jyd5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.117.200.0/21
Signature Algorithm: sha256WithRSAEncryption
79:08:29:fc:0a:94:4d:bf:0f:b2:8c:ba:42:06:01:bd:ca:e4:
d6:e2:18:8a:36:f4:1f:f2:7b:6c:d2:e3:aa:1f:0c:1e:bc:e6:
e8:5b:7a:d6:6e:10:4c:48:0e:51:a4:94:f4:25:0d:64:2d:f2:
5b:d9:6e:ee:60:34:57:02:aa:4a:9b:a2:1d:66:6f:58:a5:a3:
c4:d0:03:57:ea:38:b6:16:a9:37:82:6a:e2:9e:e5:27:b4:ca:
77:e5:80:32:5b:40:08:17:3b:2e:14:31:fd:c9:3c:0e:82:34:
eb:05:f1:86:be:c9:1f:f3:54:28:3d:57:44:a3:1e:e4:8e:23:
99:b0:cf:9c:49:b0:59:14:cf:d1:7f:ad:92:6f:cf:ed:9d:ca:
ef:d4:c9:92:78:bf:16:56:ee:51:e2:bc:ad:0e:7f:f9:10:e4:
e2:34:1d:13:20:83:45:ab:03:65:8f:9d:9c:ae:0a:bb:44:22:
ae:9e:f5:0b:26:85:bc:3c:30:71:7f:b3:fc:52:13:1e:a4:d4:
eb:b0:96:5e:cf:84:a6:9f:be:8e:ef:c4:ec:f2:66:4d:7e:b9:
88:6c:11:c5:06:5b:63:11:1f:9a:64:0f:3e:fd:5d:ab:a7:51:
89:47:3b:00:7a:ea:bf:c0:3f:65:24:38:be:aa:b7:8a:bf:4a:
fd:0f:56:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org