Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/rUnkJeuXzCh2y-I-vwbM0rzyEAg.roa
File: rUnkJeuXzCh2y-I-vwbM0rzyEAg.roa (raw, json)
Hash identifier: 6Gidh/3luuZ+EX1HiTBPnpBeS1hGo0rh4Hji+HFi2y4=
Subject key identifier: AD:49:E4:25:EB:97:CC:28:76:CB:E2:3E:BF:06:CC:D2:BC:F2:10:08
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0EAC5721
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/rUnkJeuXzCh2y-I-vwbM0rzyEAg.roa
Signing time: Thu 14 Apr 2022 20:00:02 +0000
ROA not before: Thu 14 Apr 2022 20:00:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 5.182.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246175521 (0xeac5721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Apr 14 20:00:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad49e425eb97cc2876cbe23ebf06ccd2bcf21008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:58:a6:67:f6:d2:f7:9d:18:54:de:fb:b6:5a:
b8:82:d3:91:25:50:f3:f3:42:6d:9c:fe:2a:61:50:
51:e2:00:76:d6:dd:25:ce:d9:e9:76:d6:9e:47:4a:
45:8b:6f:13:31:f2:38:e6:ce:9c:95:59:33:4b:f5:
e0:d1:06:c6:1f:5d:d9:3e:7f:fe:d1:70:60:bd:5c:
57:84:51:0c:06:50:9b:47:02:4c:b7:02:cd:91:95:
aa:49:2e:c2:a8:bc:3e:08:26:6e:17:fd:0f:9f:c3:
aa:16:24:69:8b:45:18:12:93:4b:20:bb:be:59:dd:
01:4d:e4:c3:df:47:0c:23:df:ff:91:23:33:b4:64:
7e:55:63:6b:ff:5a:66:8e:bc:ef:ae:6e:94:df:9e:
ee:6d:32:22:6c:3c:63:ac:7b:59:4c:ac:f5:f6:07:
a2:bf:51:69:bd:56:0c:5c:a5:c5:b7:ca:bb:79:33:
76:11:b7:ab:16:f3:f4:da:f7:b9:e4:83:83:33:c8:
3b:e4:96:17:03:78:63:e3:f2:53:58:21:13:aa:e5:
4f:1a:02:13:ac:46:a9:88:12:03:91:f4:0c:56:a9:
2b:02:6b:10:9f:ef:94:09:e7:6c:ef:7a:96:54:da:
13:04:28:ed:27:6c:20:30:42:7e:7c:c4:c4:e3:df:
6a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:49:E4:25:EB:97:CC:28:76:CB:E2:3E:BF:06:CC:D2:BC:F2:10:08
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/rUnkJeuXzCh2y-I-vwbM0rzyEAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
Signature Algorithm: sha256WithRSAEncryption
87:db:ac:58:43:81:87:95:f1:6d:d2:01:cd:b1:d9:92:14:e6:
bf:8d:cf:a4:2f:bc:4d:0d:47:6d:bc:6e:71:eb:c2:d7:89:f8:
21:f9:85:01:64:b8:cf:0a:26:62:18:46:80:c8:85:55:26:a8:
72:b7:b5:02:90:9c:fb:94:cf:ec:41:4a:4f:c4:cc:d2:f6:c0:
9a:c1:dc:6b:ba:e1:4a:b2:e2:ef:c0:81:c8:d1:f9:9d:64:b2:
56:74:67:98:c9:5c:7d:97:dc:78:3c:7f:3b:1c:7a:0d:21:ef:
b1:b1:79:c3:51:4f:56:ed:b5:e7:4d:45:10:11:6c:3c:44:fd:
37:6a:47:57:11:6a:e8:61:6f:6f:e9:34:81:ab:e2:0d:8c:7d:
e6:73:5a:a8:6d:d5:42:54:f0:2e:8e:21:ce:6f:9c:94:93:9e:
d7:25:b2:34:65:87:e3:22:78:a8:c7:70:9f:5f:34:82:2c:9b:
9a:59:5f:bc:cf:22:41:5c:cd:af:25:cd:7f:44:f2:51:e8:b3:
e8:8a:bd:ae:4a:66:ad:92:43:3c:a1:18:90:39:ae:d0:79:9d:
c0:8b:89:9b:34:37:f1:e9:82:e3:dd:8c:b7:f2:d3:c3:02:7d:
a5:78:e5:58:c8:84:27:a4:5f:3d:16:49:a7:9e:8d:a9:b3:50:
98:23:1b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org