Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/6y9yv1_lXWplAhqeymqf3nYaZrk.roa
File: 6y9yv1_lXWplAhqeymqf3nYaZrk.roa (raw, json)
Hash identifier: 1bhyOQkB2yB9OYzkJVYaSbG9dVcoPMHApkrRJtqNWhw=
Subject key identifier: EB:2F:72:BF:5F:E5:5D:6A:65:02:1A:9E:CA:6A:9F:DE:76:1A:66:B9
Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Certificate serial: 03505BD0
Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/6y9yv1_lXWplAhqeymqf3nYaZrk.roa
Signing time: Sat 01 Jan 2022 12:54:48 +0000
ROA not before: Sat 01 Jan 2022 12:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209301
IP address blocks: 5.253.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55598032 (0x3505bd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Validity
Not Before: Jan 1 12:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb2f72bf5fe55d6a65021a9eca6a9fde761a66b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:48:35:9a:2b:c7:43:c1:8f:ae:04:cc:1c:
7e:de:dd:16:ea:58:f1:93:93:e6:a1:d7:dc:19:46:
0d:2a:9d:01:a7:ed:4a:52:c4:49:13:fb:da:27:df:
f8:90:f8:02:20:f8:05:52:72:47:d9:68:e9:8a:39:
45:ee:d7:0d:f3:f4:eb:3e:8b:d2:a0:c4:fd:48:d9:
62:23:ef:91:48:de:bd:c5:ab:35:d4:c0:23:5a:cc:
1e:4f:be:54:0a:32:bd:61:65:6b:5d:0c:2e:19:44:
01:6a:d0:59:9a:aa:61:57:6a:10:08:fe:fe:3b:43:
54:a5:34:3d:2c:9a:8a:45:39:3c:57:7a:c5:aa:db:
5b:6c:2a:40:9c:0c:42:04:67:8f:51:12:33:61:d6:
01:05:2c:7b:5d:57:e1:c1:f2:fb:5b:10:ec:98:be:
1b:cd:1d:fe:6b:bc:73:c9:66:0c:cc:ed:f0:8c:17:
5f:9e:e5:a7:4f:8f:6f:cf:67:27:85:38:e1:28:a7:
0b:ee:7d:c7:52:a5:08:b3:2a:8c:e3:2c:f7:bd:dd:
b0:67:a1:da:23:3f:12:d4:19:86:68:12:5c:0e:3f:
30:d1:1e:29:7c:24:75:fa:a4:64:31:a3:6e:e1:86:
3d:d3:f0:cc:b7:c5:83:c0:12:ae:cb:6f:a2:47:6f:
6a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2F:72:BF:5F:E5:5D:6A:65:02:1A:9E:CA:6A:9F:DE:76:1A:66:B9
X509v3 Authority Key Identifier:
keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/6y9yv1_lXWplAhqeymqf3nYaZrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.48.0/22
Signature Algorithm: sha256WithRSAEncryption
39:0f:1e:ae:55:f4:54:14:4a:82:b5:0b:87:94:1c:13:04:68:
d9:44:a9:c7:7f:f6:7c:12:1e:96:ff:fa:0f:45:c3:f5:24:f9:
e6:60:4f:38:4a:93:f0:93:c1:6d:e4:bd:b2:0a:48:6b:4b:dc:
ea:21:0b:07:44:95:a8:4e:10:7e:bc:38:99:bc:54:50:cf:59:
c0:0b:6e:19:ee:bc:8d:68:ba:df:96:1b:63:fa:da:0e:e8:ab:
2e:3b:25:54:0f:00:b9:32:35:d8:a2:f4:e7:a3:00:aa:b5:7c:
c6:0a:d7:54:eb:b9:f8:0b:15:e6:d0:11:a4:0a:85:fb:a0:c1:
96:37:04:01:33:79:d6:38:73:3b:89:4a:a7:f6:4c:c3:a4:be:
6b:28:ac:f0:71:81:5f:78:4d:db:02:d8:d5:38:10:0f:3c:64:
69:61:0d:c1:4a:52:24:ba:c7:0d:db:75:bc:e5:9c:12:6a:57:
f6:96:8c:8f:31:37:0b:9f:2f:d7:85:80:ad:15:40:25:3a:4a:
85:c3:9c:6d:a7:14:6f:21:07:14:be:33:1a:8f:e9:2f:5f:eb:
c5:23:27:c3:8d:c6:4e:22:0c:38:f4:f6:24:56:a5:c7:8e:79:
dd:d1:01:fe:f7:d4:c1:e2:d2:13:84:2c:af:92:36:2a:e8:dd:
de:b1:5b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org