Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/dVPjx4N6PI3LrAmc-3yPbKCc0pU.roa
File: dVPjx4N6PI3LrAmc-3yPbKCc0pU.roa (raw, json)
Hash identifier: FXKcc0EsHF62bjieJmI3NaPempBI7jLTJQnCstqfTYY=
Subject key identifier: 75:53:E3:C7:83:7A:3C:8D:CB:AC:09:9C:FB:7C:8F:6C:A0:9C:D2:95
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 0188FE415D3F10B7C996A9E5085D14A9D16C
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/dVPjx4N6PI3LrAmc-3yPbKCc0pU.roa
Signing time: Tue 27 Jun 2023 19:07:56 +0000
ROA not before: Tue 27 Jun 2023 19:07:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199264
IP address blocks: 5.42.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fe:41:5d:3f:10:b7:c9:96:a9:e5:08:5d:14:a9:d1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jun 27 19:07:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7553e3c7837a3c8dcbac099cfb7c8f6ca09cd295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:c9:48:d9:0b:75:72:e0:26:57:5b:8b:43:
6a:ea:59:89:bf:e7:b2:3b:ce:0a:7e:47:19:00:67:
76:02:cc:fc:1a:2e:12:7d:34:43:ab:f3:2f:f7:bb:
6a:70:e1:b9:d9:23:2d:4c:9b:37:55:44:00:0b:c0:
c6:36:d1:15:e8:b8:52:ab:ed:e3:31:a3:ff:7d:18:
78:2e:0d:df:f4:df:11:51:f0:ca:2b:cc:4b:a0:77:
dd:23:ba:b3:b9:1e:4d:e5:ab:4c:53:cb:ff:0a:c0:
c1:85:c0:b4:a4:bf:7c:ed:94:41:0b:ea:6d:db:6d:
71:bf:f7:3a:af:79:10:74:e8:21:f6:38:e7:6b:e1:
d4:eb:63:8b:9a:6f:58:08:ec:d4:68:61:bd:43:96:
00:c6:f8:b4:19:e1:36:af:4e:e3:86:31:b7:a7:27:
c2:33:c6:56:0d:c1:20:00:34:d8:11:b3:39:19:76:
8d:93:42:d7:0a:ed:30:db:b0:5a:1f:1b:ce:a7:dd:
a9:8c:d4:49:79:cd:08:bd:68:6c:4e:dd:c9:99:55:
b7:61:82:ad:f8:fa:dc:76:d5:88:9d:91:5c:90:24:
76:83:4a:83:b8:80:9e:6a:7e:eb:6a:2c:f1:3a:b3:
8e:0a:05:42:30:b3:fe:a8:63:d0:62:ee:c2:e7:69:
db:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:53:E3:C7:83:7A:3C:8D:CB:AC:09:9C:FB:7C:8F:6C:A0:9C:D2:95
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/dVPjx4N6PI3LrAmc-3yPbKCc0pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.69.0/24
Signature Algorithm: sha256WithRSAEncryption
20:73:8d:5c:f5:b1:84:30:a8:c8:54:45:b1:27:5f:b3:5d:9a:
02:dd:64:a3:27:e6:1a:80:1d:98:28:e1:b7:53:29:79:35:89:
2b:a7:3a:06:fc:76:6f:5d:20:68:7e:35:c1:03:38:62:89:84:
7f:a7:09:ed:16:ab:61:9c:a4:72:28:aa:59:78:52:6a:90:78:
0a:4e:1f:fa:ce:fa:19:20:eb:53:87:b3:f1:0b:2c:38:1f:91:
ca:37:ae:6d:06:08:70:ca:e4:d3:55:e0:ba:ca:ab:eb:2b:2b:
a1:bb:85:df:9f:ed:6f:c3:89:b0:aa:40:9b:f6:bc:17:02:75:
a9:54:38:08:72:92:63:e0:96:27:4a:63:4c:85:7d:d2:54:bc:
15:2d:72:84:95:7c:43:8f:4f:75:5a:d8:6b:b3:97:05:a6:bd:
bb:10:4d:47:41:92:d7:66:3a:e8:2a:c7:50:10:c0:2b:f3:ab:
05:68:f4:9e:69:6a:e8:aa:82:0a:e8:dc:16:f5:0b:dd:95:99:
67:3d:6b:50:90:43:60:3a:cc:95:06:16:75:df:bc:31:42:b9:
b8:55:8b:89:2c:0f:26:e6:48:69:d4:8f:e7:c3:34:01:99:a2:
b1:a2:b2:0b:6a:18:82:09:b4:6b:34:56:67:e3:56:66:e7:fa:
9f:8a:f1:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYj+QV0/ELfJlqnlCF0UqdFsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MDYyZjVkZGIxOGY5NmQ3ODQ5MmIzNTM4ZDc3NDVjYzQ3
MTRhMjYwHhcNMjMwNjI3MTkwNzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTUzZTNjNzgzN2EzYzhkY2JhYzA5OWNmYjdjOGY2Y2EwOWNkMjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+fJSNkLdXLgJldbi0Nq6lmJv+ey
O84KfkcZAGd2Asz8Gi4SfTRDq/Mv97tqcOG52SMtTJs3VUQAC8DGNtEV6LhSq+3j
MaP/fRh4Lg3f9N8RUfDKK8xLoHfdI7qzuR5N5atMU8v/CsDBhcC0pL987ZRBC+pt
221xv/c6r3kQdOgh9jjna+HU62OLmm9YCOzUaGG9Q5YAxvi0GeE2r07jhjG3pyfC
M8ZWDcEgADTYEbM5GXaNk0LXCu0w27BaHxvOp92pjNRJec0IvWhsTt3JmVW3YYKt
+PrcdtWInZFckCR2g0qDuICean7raizxOrOOCgVCMLP+qGPQYu7C52nbDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVT48eDejyNy6wJnPt8j2ygnNKVMB8GA1UdIwQY
MBaAFJYGL13bGPlteEkrNTjXdFzEcUomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGdZdlhkc1ktVzE0U1NzMU9OZDBYTVJ4U2lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lMDU5NzUtZGE4ZS00NjBiLTllYmIt
M2ZjYjVmM2YzYzU5LzEvZFZQang0TjZQSTNMckFtYy0zeVBiS0NjMHBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9lMDU5NzUtZGE4ZS00NjBiLTllYmItM2ZjYjVmM2YzYzU5
LzEvbGdZdlhkc1ktVzE0U1NzMU9OZDBYTVJ4U2lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSpFMA0G
CSqGSIb3DQEBCwUAA4IBAQAgc41c9bGEMKjIVEWxJ1+zXZoC3WSjJ+YagB2YKOG3
Uyl5NYkrpzoG/HZvXSBofjXBAzhiiYR/pwntFqthnKRyKKpZeFJqkHgKTh/6zvoZ
IOtTh7PxCyw4H5HKN65tBghwyuTTVeC6yqvrKyuhu4Xfn+1vw4mwqkCb9rwXAnWp
VDgIcpJj4JYnSmNMhX3SVLwVLXKElXxDj091Wthrs5cFpr27EE1HQZLXZjroKsdQ
EMAr86sFaPSeaWroqoIK6NwW9QvdlZlnPWtQkENgOsyVBhZ137wxQrm4VYuJLA8m
5khp1I/nwzQBmaKxorILahiCCbRrNFZn41Zm5/qfivGB
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:03 2025 by rpki-client