Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EkXg3x8BjbdTg8cg9r7pYiN97tw.roa
File: EkXg3x8BjbdTg8cg9r7pYiN97tw.roa (raw, json)
Hash identifier: /jZJXbGburTOJD59i12mdAkcWxf/U4CKzrNpF6exJxI=
Subject key identifier: 12:45:E0:DF:1F:01:8D:B7:53:83:C7:20:F6:BE:E9:62:23:7D:EE:DC
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018240AAABA34E89A92491C60B99BAA099A8
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EkXg3x8BjbdTg8cg9r7pYiN97tw.roa
Signing time: Wed 27 Jul 2022 17:18:23 +0000
ROA not before: Wed 27 Jul 2022 17:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44222
IP address blocks: 5.182.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:aa:ab:a3:4e:89:a9:24:91:c6:0b:99:ba:a0:99:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 27 17:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1245e0df1f018db75383c720f6bee962237deedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:db:36:f2:fa:3e:b0:b5:d2:d0:98:f8:5c:3d:
7d:ce:95:c1:ca:66:c4:2c:44:70:1f:91:b1:52:d6:
8f:8e:47:7f:e9:7b:88:0f:95:53:78:f7:af:86:c3:
ae:5a:71:1d:6b:c6:64:11:ea:93:07:ff:88:96:2f:
e2:a9:37:87:90:ea:e7:36:20:33:14:13:12:0c:8e:
bb:8e:ba:84:58:6e:4a:13:ab:51:54:a4:46:77:13:
42:36:8c:52:d9:f9:a7:b0:57:6f:e3:cc:f6:d5:78:
9a:8c:ba:45:c5:78:1e:07:88:1f:a4:ed:b4:e0:25:
a7:57:e5:7a:97:3c:c4:18:9b:02:fe:08:2a:c8:b3:
68:5b:2a:2f:37:8c:8f:2f:02:4a:ce:33:75:9f:11:
c0:32:9f:66:18:8d:eb:b8:d4:71:fd:ea:32:b7:cb:
1f:0b:97:6e:7d:bd:e9:01:fb:0d:7a:9f:a6:25:a9:
6d:3c:20:42:1b:89:00:d5:92:48:2c:85:b7:05:f3:
61:a9:ee:c8:69:5d:f2:7b:08:0c:02:bf:2a:77:f5:
bf:10:b5:16:70:08:c9:3f:bd:2f:55:d0:e2:36:45:
6f:1d:a1:6e:d6:fe:bc:32:d1:3f:23:d7:82:54:18:
03:b9:85:d3:32:15:f8:e6:86:e1:eb:03:a3:8b:8b:
c6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:45:E0:DF:1F:01:8D:B7:53:83:C7:20:F6:BE:E9:62:23:7D:EE:DC
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EkXg3x8BjbdTg8cg9r7pYiN97tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:7b:16:e5:3b:56:9f:d6:aa:bf:93:5a:26:c5:cb:75:a4:62:
4d:a5:23:b8:52:f6:f1:3c:94:23:8d:70:ca:31:83:a6:65:d2:
99:b9:c5:65:fe:f7:3b:3c:b1:b3:9c:39:6e:07:3b:82:ee:a2:
c0:21:74:f6:b9:cb:15:40:f7:52:90:38:ab:5d:2a:dc:67:24:
3b:9d:73:69:c7:8b:38:ed:ff:d5:5e:f0:ba:b1:f4:8a:f3:6e:
4c:87:09:7a:dd:d4:02:0b:3c:df:3b:44:3a:2c:c8:ab:a5:5a:
19:02:90:98:e9:d0:82:d1:87:ca:ed:f3:8b:9d:ac:8e:db:c7:
d2:fa:75:83:3b:d1:f6:be:a6:b7:fb:25:f5:8d:fc:9e:e2:f9:
80:57:91:66:82:ad:44:0f:67:8a:e2:f7:8d:d0:e3:7e:71:9c:
db:41:c9:4a:cd:99:ed:4d:19:07:17:7f:a3:0d:d9:18:0d:93:
16:5c:b2:45:b3:58:b5:72:d0:e0:9c:87:c8:87:5c:80:fd:56:
30:f3:6e:eb:a1:45:c4:6d:be:3d:4d:ec:6e:37:49:3d:1b:1d:
f6:47:bf:6a:3d:32:3b:ed:27:a2:dc:e2:c5:c8:91:37:38:98:
af:b3:c2:b5:6b:4c:52:c4:69:e6:3c:19:41:0f:0a:45:ea:4a:
c8:c6:24:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:23 2024 by rpki-client on console-fra.rpki-client.org