Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Rz17tAltivSRvjnhe3O6Qe_d3PY.roa
File: Rz17tAltivSRvjnhe3O6Qe_d3PY.roa (raw, json)
Hash identifier: g+rBwyBrvFQUj/y6TSur6BqlquT0z9K/NKEzQDR3K7U=
Subject key identifier: 47:3D:7B:B4:09:6D:8A:F4:91:BE:39:E1:7B:73:BA:41:EF:DD:DC:F6
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 0183F532967E95D55EF5A4BE26F86275F05F
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Rz17tAltivSRvjnhe3O6Qe_d3PY.roa
Signing time: Thu 20 Oct 2022 11:41:16 +0000
ROA not before: Thu 20 Oct 2022 11:41:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 5.175.60.0/24 maxlen: 24
5.175.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:32:96:7e:95:d5:5e:f5:a4:be:26:f8:62:75:f0:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Oct 20 11:41:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=473d7bb4096d8af491be39e17b73ba41efdddcf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f0:57:65:8d:0b:04:c0:6d:19:ef:da:f0:2e:
7b:8a:7c:f2:63:be:9d:f3:fb:17:31:df:3c:be:f5:
83:cf:64:46:fd:5b:cf:08:03:78:25:42:5d:13:88:
ab:22:c1:38:73:47:32:22:c7:24:8a:1a:fc:bb:c8:
a4:8f:d7:99:99:56:4c:61:53:e7:62:3a:86:15:48:
a8:d2:2f:77:1d:1e:98:b2:10:2d:9f:5d:5f:e2:b2:
02:44:bd:1d:3d:5b:91:de:ce:1b:65:92:e3:0d:ae:
03:96:24:df:62:cf:81:10:ee:2c:3d:a4:96:5a:31:
59:f8:2d:cd:61:e0:1a:3f:f6:b5:e5:8f:60:07:58:
b3:91:a3:66:a2:9f:06:85:c8:07:b4:e8:85:97:fa:
60:76:48:2d:d2:f1:8f:80:e2:4b:cc:c6:15:d9:81:
f9:75:45:6d:a1:bb:18:da:73:d0:42:f0:d1:b7:f7:
7e:8a:d0:c7:d9:38:ef:3a:4d:be:6d:3e:94:5f:b8:
8b:ee:2f:c1:ac:e3:3b:ab:30:e4:0a:63:8e:64:45:
0c:e9:87:f5:53:03:5d:d3:14:1e:69:3e:87:2c:86:
f4:b5:28:f9:67:05:eb:a6:47:49:02:7e:3b:bd:6c:
57:92:ce:9a:43:c9:a4:79:ac:08:15:ec:f6:1c:ee:
2a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3D:7B:B4:09:6D:8A:F4:91:BE:39:E1:7B:73:BA:41:EF:DD:DC:F6
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/Rz17tAltivSRvjnhe3O6Qe_d3PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.60.0/24
5.175.62.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d5:b6:19:0d:67:f6:c2:f3:d5:9b:0c:73:b3:47:9a:30:dd:
f5:ae:2c:23:d1:e4:e2:f0:cd:7a:a2:7b:00:c9:54:58:4b:c3:
92:9c:51:a9:e6:54:92:8d:68:02:2f:9a:20:86:fb:1a:ee:5b:
28:e8:bf:0b:bb:5c:fd:e5:f9:f6:80:2a:b6:42:28:8b:22:8c:
6e:23:88:de:fb:ee:aa:87:b7:b4:a9:a9:25:26:93:ee:41:45:
39:45:f5:69:05:e0:30:09:58:c5:69:b1:0f:00:68:32:94:a9:
6a:5c:f9:72:2c:64:ab:93:80:08:82:b3:81:b3:eb:d6:3b:c2:
22:40:ab:ca:8a:15:4d:34:db:e4:10:6d:6d:a6:31:3c:60:fe:
fd:62:8c:ae:1c:f0:d8:9d:39:78:0f:b3:63:63:5c:7c:1f:9b:
49:df:2d:62:77:9a:64:3c:16:40:0b:eb:88:6c:9b:0e:a0:80:
06:f1:d1:3d:cc:c2:d4:80:41:95:c2:fc:5f:23:1f:f3:20:8b:
c4:2c:6a:ea:a7:82:03:f0:14:3f:e1:cc:0b:ce:78:9c:e9:55:
b3:6b:cc:83:c9:60:0f:1e:c8:07:35:b9:3d:ce:15:c7:a6:aa:
a1:2b:21:69:65:a7:1e:8e:de:0d:9a:80:1a:1e:37:d9:15:4c:
10:bd:17:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:16 2024 by rpki-client on console-ams.rpki-client.org