Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/YLgL5OC7nR2XD2_GJmXMLuLk-Sk.roa
File: YLgL5OC7nR2XD2_GJmXMLuLk-Sk.roa (raw, json)
Hash identifier: 1pDqxJGNGQHDCkgKh+H/1uoKtHz6VtZvnAu+hjS4R0E=
Subject key identifier: 60:B8:0B:E4:E0:BB:9D:1D:97:0F:6F:C6:26:65:CC:2E:E2:E4:F9:29
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 0574D44E
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/YLgL5OC7nR2XD2_GJmXMLuLk-Sk.roa
Signing time: Wed 04 May 2022 08:09:59 +0000
ROA not before: Wed 04 May 2022 08:09:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209447
IP address blocks: 5.253.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91542606 (0x574d44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: May 4 08:09:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60b80be4e0bb9d1d970f6fc62665cc2ee2e4f929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:62:27:ed:bd:90:80:59:37:3b:07:04:56:80:
66:be:7f:80:ba:1a:29:a3:66:ee:be:b3:ec:5e:8c:
b6:f1:0d:c9:45:f4:37:b8:8d:3a:93:4f:b0:b4:7e:
9e:49:2c:9c:32:11:ea:0c:9e:0b:25:29:6a:2f:14:
00:93:ef:f7:4b:fe:a6:ec:b6:25:5f:55:33:35:7f:
8c:f0:66:7e:bd:2b:62:5b:27:62:93:c3:95:d1:be:
c4:3f:8f:68:ee:a2:19:67:3d:4f:f2:db:17:06:5d:
5d:22:1e:b1:56:45:5a:fd:c2:29:21:29:20:31:5d:
6c:f5:e5:73:88:3e:81:7f:e9:65:7f:8c:ed:3b:1d:
4d:68:1c:7d:29:ba:fc:71:fa:ec:cc:50:d7:4e:cc:
43:07:0c:63:36:9c:b8:fc:e3:8d:8d:25:ee:5e:1a:
52:32:3d:e8:0f:5c:41:35:0f:00:67:47:3b:b8:75:
2b:d6:26:e1:87:da:39:40:8a:78:ad:1b:d5:8e:7f:
07:ad:21:75:9e:95:6c:18:89:a2:60:60:e1:74:21:
0d:b3:d5:31:25:0d:f9:60:49:ba:57:91:0c:77:fc:
97:42:2c:99:ac:71:69:56:ec:50:9d:3f:e3:28:01:
cd:d2:59:78:83:cd:13:6f:0f:87:18:f4:14:1e:3b:
14:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B8:0B:E4:E0:BB:9D:1D:97:0F:6F:C6:26:65:CC:2E:E2:E4:F9:29
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/YLgL5OC7nR2XD2_GJmXMLuLk-Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.168.0/22
Signature Algorithm: sha256WithRSAEncryption
60:84:60:f2:a0:76:b0:d6:30:9c:62:b2:ef:1e:04:6b:4a:be:
46:c8:6d:ee:22:a8:74:06:dc:48:65:bc:a4:47:3b:e8:f6:70:
58:b4:c0:47:1e:92:c0:92:18:f7:73:61:bc:58:83:da:fb:78:
1b:17:8f:d5:36:f2:3d:ff:40:d2:47:ea:ba:d8:6b:18:d2:d8:
90:f1:ad:9b:e2:97:df:a6:18:45:6b:25:00:d8:47:45:43:39:
fa:6c:93:e1:81:1b:3e:85:ca:68:06:70:f0:95:76:1d:ef:d4:
05:e3:f6:bc:9a:ee:e9:45:f7:c3:e8:d0:b9:a1:2a:44:dd:eb:
d5:00:25:ae:5b:22:0d:90:1e:f9:71:a8:aa:4b:3d:6a:e0:ec:
64:62:21:a3:80:af:31:02:a9:f0:29:43:c9:b4:9a:13:c3:83:
80:6e:1e:b8:f9:b0:4c:34:c4:cd:6d:69:6e:b8:61:86:26:4d:
f0:8b:49:b7:c0:71:85:ea:15:1b:59:81:06:e7:94:1c:e9:d1:
06:4a:2c:44:96:28:66:7d:ff:9d:ac:82:76:06:1f:85:a7:03:
f2:a5:17:63:c8:3f:6f:97:e8:09:e8:02:12:e1:52:4d:51:3b:
d7:88:d6:6a:75:1d:d6:7e:ea:af:56:fb:28:fa:fc:e8:45:f2:
2b:b8:1d:7d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBXTUTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWJlMDJkZWEwYTA4NmU5ODgwZjU2NGM4Njg3MmJiYzU5N2NjNjcyMB4XDTIyMDUw
NDA4MDk1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjBiODBiZTRlMGJi
OWQxZDk3MGY2ZmM2MjY2NWNjMmVlMmU0ZjkyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO1iJ+29kIBZNzsHBFaAZr5/gLoaKaNm7r6z7F6MtvENyUX0
N7iNOpNPsLR+nkksnDIR6gyeCyUpai8UAJPv90v+puy2JV9VMzV/jPBmfr0rYlsn
YpPDldG+xD+PaO6iGWc9T/LbFwZdXSIesVZFWv3CKSEpIDFdbPXlc4g+gX/pZX+M
7TsdTWgcfSm6/HH67MxQ107MQwcMYzacuPzjjY0l7l4aUjI96A9cQTUPAGdHO7h1
K9Ym4YfaOUCKeK0b1Y5/B60hdZ6VbBiJomBg4XQhDbPVMSUN+WBJuleRDHf8l0Is
maxxaVbsUJ0/4ygBzdJZeIPNE28Phxj0FB47FGECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRguAvk4LudHZcPb8YmZcwu4uT5KTAfBgNVHSMEGDAWgBQpvgLeoKCG6YgP
VkyGhyu8WXzGcjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tiNEMzcUNnaHVtSUQxWk1ob2NydkZsOHhuSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGEvZWExY2ZmLWFlOGYtNDcxOS04OWIzLTAwM2ExNTY4YmYzZi8x
L1lMZ0w1T0M3blIyWEQyX0dKbVhNTHVMay1Tay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEv
ZWExY2ZmLWFlOGYtNDcxOS04OWIzLTAwM2ExNTY4YmYzZi8xL0tiNEMzcUNnaHVt
SUQxWk1ob2NydkZsOHhuSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgX9qDANBgkqhkiG9w0BAQsFAAOC
AQEAYIRg8qB2sNYwnGKy7x4Ea0q+Rsht7iKodAbcSGW8pEc76PZwWLTARx6SwJIY
93NhvFiD2vt4GxeP1TbyPf9A0kfquthrGNLYkPGtm+KX36YYRWslANhHRUM5+myT
4YEbPoXKaAZw8JV2He/UBeP2vJru6UX3w+jQuaEqRN3r1QAlrlsiDZAe+XGoqks9
auDsZGIho4CvMQKp8ClDybSaE8ODgG4euPmwTDTEzW1pbrhhhiZN8ItJt8BxheoV
G1mBBueUHOnRBkosRJYoZn3/nayCdgYfhacD8qUXY8g/b5foCegCEuFSTVE714jW
anUd1n7qr1b7KPr86EXyK7gdfQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:21 2023 by rpki-client on console-ams.rpki-client.org