Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/w1idPKLhK2DWv6XGgGlxxqJeS5Y.roa
File: w1idPKLhK2DWv6XGgGlxxqJeS5Y.roa (raw, json)
Hash identifier: yo3+1FSA5MV1S82Jun6H/vQEAQq89eSZLZD1dBxkVTU=
Subject key identifier: C3:58:9D:3C:A2:E1:2B:60:D6:BF:A5:C6:80:69:71:C6:A2:5E:4B:96
Certificate issuer: /CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Certificate serial: 0872976C
Authority key identifier: 7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/w1idPKLhK2DWv6XGgGlxxqJeS5Y.roa
Signing time: Sat 01 Jan 2022 14:02:44 +0000
ROA not before: Sat 01 Jan 2022 14:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 5.252.10.0/23 maxlen: 23
5.252.8.0/23 maxlen: 23
5.252.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141727596 (0x872976c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9126732c2f0193bc3de4e8d3abc15f4baed62d
Validity
Not Before: Jan 1 14:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3589d3ca2e12b60d6bfa5c6806971c6a25e4b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7c:87:08:4c:fc:5a:94:67:ab:2e:2a:37:15:
18:c0:1f:1b:7b:fa:55:5e:44:2d:5e:00:e1:5e:74:
91:b1:f8:a6:3d:21:8d:6d:df:9c:73:7a:ab:0a:4f:
bf:a7:36:5c:7c:4b:ca:ac:e2:b9:88:0f:00:1d:47:
e1:c8:4b:a9:ef:d9:4e:7a:f8:68:26:36:69:33:69:
ec:b7:23:e3:7a:99:ee:e9:c0:ae:ea:eb:84:66:93:
59:67:0a:a1:11:10:32:80:70:1b:2e:98:19:91:21:
07:65:b1:f4:7e:4c:c8:b7:a2:70:63:87:9d:21:22:
d2:40:c2:4c:6a:6a:03:5e:bb:d5:31:95:63:c9:55:
61:10:ef:c2:6e:cd:85:a5:c1:b7:bb:d7:bd:c0:bc:
c6:9b:33:08:c4:ea:68:5b:1d:91:4c:cc:c9:a9:da:
82:9a:5b:98:5f:fb:b2:cd:27:fc:f6:56:74:c0:66:
e5:43:74:50:9a:a3:6b:06:cd:59:c7:e5:82:fb:27:
b2:ed:21:ad:07:61:36:ae:5e:6f:f2:25:a7:84:98:
83:05:c3:eb:a5:2f:c9:c7:ed:da:f6:48:58:15:2d:
a6:f3:bc:a5:d6:9e:c7:11:74:37:88:65:88:e8:0d:
87:57:43:da:56:fd:03:1a:a8:09:27:4d:ec:9a:2b:
83:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:58:9D:3C:A2:E1:2B:60:D6:BF:A5:C6:80:69:71:C6:A2:5E:4B:96
X509v3 Authority Key Identifier:
keyid:7C:91:26:73:2C:2F:01:93:BC:3D:E4:E8:D3:AB:C1:5F:4B:AE:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJEmcywvAZO8PeTo06vBX0uu1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/w1idPKLhK2DWv6XGgGlxxqJeS5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/94632e-99d3-4c21-b67d-d6b730266e76/1/fJEmcywvAZO8PeTo06vBX0uu1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.8.0/22
Signature Algorithm: sha256WithRSAEncryption
33:dc:f2:89:a8:6d:9f:c6:8d:36:09:e0:ca:a6:36:d2:f3:ab:
43:d5:75:78:12:ee:a9:56:57:af:bf:06:97:e8:3c:b3:95:50:
99:a1:5f:0c:2c:49:4f:5e:42:61:be:89:76:e2:f1:64:0d:5c:
d0:26:c6:4e:2c:8b:ea:5b:8d:29:9c:a2:48:0d:2a:db:11:33:
64:94:7a:cd:27:0c:f4:f6:7e:3c:6e:e7:15:3d:28:50:9a:94:
69:c1:40:4e:a1:ff:8c:34:2e:5f:1b:ad:7e:d3:ef:fd:fc:3e:
9f:c0:1f:97:39:6f:f2:a3:f9:82:06:8c:78:10:28:d3:6c:a5:
f6:e8:54:e7:0e:f4:e2:b1:26:03:76:9d:d7:e3:56:0d:6d:87:
07:5f:2e:34:e6:e9:ad:70:35:87:b7:da:63:09:a4:d4:a6:22:
db:26:19:27:38:d2:e2:02:6a:b7:73:10:f8:b9:e6:d0:e4:23:
2e:25:62:4d:98:d8:55:47:ca:23:82:87:e2:8b:17:ef:d9:0a:
9f:1e:3b:1d:0e:01:00:cf:2a:f2:b6:0d:e3:7e:fd:67:73:ea:
64:4b:92:d6:9c:1e:d1:ee:d3:1c:24:6c:82:fa:1a:8d:a4:b1:
92:cf:73:2e:3d:4f:c2:a6:85:eb:02:2d:4c:80:fa:dc:4e:0b:
93:37:7d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:50 2024 by rpki-client on console-fra.rpki-client.org