Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/eSe6BPSbmLHAOpH5GbBwginkUgY.roa
File: eSe6BPSbmLHAOpH5GbBwginkUgY.roa (raw, json)
Hash identifier: 7QhptLkhdhlmKJCh1TS+N8MjuQYxCULlV8CqfdeAHGQ=
Subject key identifier: 79:27:BA:04:F4:9B:98:B1:C0:3A:91:F9:19:B0:70:82:29:E4:52:06
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 0B37327C
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/eSe6BPSbmLHAOpH5GbBwginkUgY.roa
Signing time: Wed 22 Jun 2022 10:33:32 +0000
ROA not before: Wed 22 Jun 2022 10:33:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204774
IP address blocks: 5.154.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188166780 (0xb37327c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jun 22 10:33:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7927ba04f49b98b1c03a91f919b0708229e45206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:79:6a:f0:71:95:6a:ba:9d:1c:b8:51:15:8d:
80:e9:71:b6:f2:1b:38:75:d3:cd:31:f6:04:c9:ec:
6e:1a:e1:9f:f5:9d:73:98:75:fd:ca:b4:e2:5e:20:
40:6c:1a:58:5f:e5:db:93:9d:df:d5:fa:bc:a3:cb:
51:01:58:09:c3:ee:72:9f:63:af:fb:3e:0d:37:75:
14:6f:6e:b4:4c:49:89:33:4b:e1:02:48:02:af:bb:
95:b8:1b:6e:96:34:51:66:83:98:6e:51:c6:24:6a:
75:db:92:e8:51:b0:8e:21:53:30:0a:4d:dc:8b:fa:
20:46:71:4d:5e:2e:9b:f9:c2:89:50:dc:2d:94:17:
11:57:b1:4c:49:de:7e:65:d1:e8:c6:e8:5d:a3:db:
cb:34:b2:24:0b:62:0b:25:b1:66:2c:76:95:36:72:
5e:6a:26:c6:5e:30:01:60:62:dc:60:75:e3:51:cf:
a8:e1:61:d4:df:b0:3e:bd:66:96:6c:b4:4f:32:a1:
91:37:ff:d9:56:db:76:c6:13:24:91:22:5f:02:f0:
4b:d6:11:9a:2a:cb:f8:60:56:13:3f:32:a3:85:dd:
1e:50:72:59:5d:57:c0:ea:df:1a:31:72:2b:8c:92:
66:cf:b1:b7:cb:24:f4:c6:4a:ba:61:8b:8b:de:56:
ca:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:27:BA:04:F4:9B:98:B1:C0:3A:91:F9:19:B0:70:82:29:E4:52:06
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/eSe6BPSbmLHAOpH5GbBwginkUgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.75.0/24
Signature Algorithm: sha256WithRSAEncryption
53:7d:de:0f:8b:63:ad:e7:19:21:6e:3d:18:8a:a3:98:f7:dd:
15:95:b1:4b:0b:ba:a4:8e:5c:a1:15:06:00:07:1b:4e:55:1a:
b7:85:bb:15:74:97:16:f0:5e:65:b6:b2:aa:2f:a1:5a:36:4a:
88:50:72:02:87:02:f6:d8:b0:12:b8:5d:56:1f:9d:7c:35:d2:
ee:89:87:f4:a0:5f:14:aa:bb:11:d6:2b:45:cf:ca:6c:87:fb:
36:d3:ff:94:e6:a7:5f:a2:7b:44:e9:0e:64:b2:f1:10:24:f9:
5a:f7:45:5a:ae:ed:4f:56:fb:8a:59:8b:68:b3:bc:81:e1:4d:
e6:ca:ae:90:f9:ff:8a:4b:ab:dd:51:ad:a2:d0:e9:54:9d:06:
dd:9a:25:e9:a5:ab:04:8b:04:fc:0a:8f:c1:a4:22:b0:89:9b:
6f:3d:99:13:1b:85:39:d8:2d:7f:a4:9d:34:48:94:b0:80:8f:
97:9f:8f:5a:0d:af:dd:c6:10:48:7b:bb:38:d0:db:71:26:da:
79:b0:4c:98:22:d1:dd:da:61:c3:75:f6:37:4b:9a:83:4c:c4:
fa:bc:be:45:67:6e:e8:16:8b:96:7a:21:32:70:94:0e:81:c8:
47:ef:9b:76:f3:4f:89:fc:5e:4e:47:e3:cc:a8:cf:90:01:af:
10:52:dc:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:06 2025 by rpki-client