Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/dNy8ZTa7JIwUv6uXsHD4qRuTROM.roa
File: dNy8ZTa7JIwUv6uXsHD4qRuTROM.roa (raw, json)
Hash identifier: EGzAtyRg8jC+OwlBriLiMLNw8oeyWXLh+yWto9PnR9M=
Subject key identifier: 74:DC:BC:65:36:BB:24:8C:14:BF:AB:97:B0:70:F8:A9:1B:93:44:E3
Certificate issuer: /CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Certificate serial: 0426AEB5
Authority key identifier: 2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/dNy8ZTa7JIwUv6uXsHD4qRuTROM.roa
Signing time: Sat 01 Jan 2022 12:06:23 +0000
ROA not before: Sat 01 Jan 2022 12:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56547
IP address blocks: 5.201.172.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69643957 (0x426aeb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f6a434c4b5d239c4e6e41b7e585c8d58f8995ab
Validity
Not Before: Jan 1 12:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74dcbc6536bb248c14bfab97b070f8a91b9344e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:33:8c:b5:1b:0a:6f:47:24:50:21:f5:4e:ea:
29:23:3d:9f:1a:ab:5f:71:1f:fe:ce:4d:c5:72:ef:
33:43:23:f3:8d:48:16:9a:b9:ae:dc:71:56:49:ec:
ca:eb:6d:70:ed:7f:ea:9a:64:21:78:84:e5:21:cc:
5f:f0:5a:7e:33:6d:1e:f1:f3:b6:50:c0:42:74:4e:
fe:ec:07:39:12:73:f1:86:e7:e2:17:97:c3:20:39:
03:2e:1e:db:9b:42:ed:ce:b5:56:2b:95:75:3e:85:
bd:e7:dd:9a:99:3c:46:54:b2:a7:4f:fd:04:d3:3a:
50:ae:ff:4c:85:af:e3:89:49:c9:3c:fd:16:76:19:
0f:5d:29:eb:6d:c4:0b:04:a6:a2:61:45:f3:8b:d9:
81:38:da:1c:92:3b:43:27:34:06:52:fb:ec:66:18:
95:03:90:ad:11:30:6f:98:85:92:e4:b9:cd:2d:e5:
61:21:da:24:a4:05:7b:9a:69:05:3c:25:00:cd:15:
df:23:9d:3c:1d:54:cb:d2:73:9d:1d:fb:fd:2c:38:
0c:9d:fc:0c:a9:ed:df:28:ef:06:de:62:8c:4a:e2:
7e:8b:6f:7a:dd:7d:45:d5:2b:ab:0d:de:b2:77:be:
96:59:a2:45:df:74:f0:94:85:4f:03:5e:6c:1d:b7:
7a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DC:BC:65:36:BB:24:8C:14:BF:AB:97:B0:70:F8:A9:1B:93:44:E3
X509v3 Authority Key Identifier:
keyid:2F:6A:43:4C:4B:5D:23:9C:4E:6E:41:B7:E5:85:C8:D5:8F:89:95:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2pDTEtdI5xObkG35YXI1Y-Jlas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/dNy8ZTa7JIwUv6uXsHD4qRuTROM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/98abe5-bd01-464f-96ab-40b6d67fcd94/1/L2pDTEtdI5xObkG35YXI1Y-Jlas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.172.0/23
Signature Algorithm: sha256WithRSAEncryption
16:11:23:e3:33:00:7b:b1:33:74:00:23:1a:89:69:8f:c7:d1:
6c:51:5c:0e:e1:4b:c3:02:ec:76:63:5c:21:71:31:6d:20:24:
cc:30:cd:ad:01:21:17:d6:97:c4:b6:c2:53:a5:03:be:01:13:
ae:aa:4a:1f:e0:2c:4e:27:f2:e6:52:15:d6:20:2c:ad:b3:ad:
44:6a:5f:73:0b:de:b7:72:db:ba:37:ed:17:04:f6:87:d1:a5:
25:c7:5b:1f:6c:96:1b:c5:f0:af:50:33:b3:d7:bc:e6:4a:c9:
fc:10:f2:a4:95:cf:80:27:f5:fe:5e:92:29:83:ce:df:04:44:
c9:d6:04:e0:4c:a9:a0:84:7e:ef:23:ed:0c:eb:89:0c:c0:de:
fd:f1:72:d5:fa:52:34:e6:23:d3:27:63:38:ca:be:02:a7:9c:
37:e7:f2:21:f0:04:4c:ec:8e:be:27:43:28:a7:9e:bf:0e:fd:
05:5f:8b:83:5e:05:aa:f2:3b:da:c0:31:71:b6:09:e4:de:05:
d1:ff:d5:0c:b7:f9:a1:c3:de:ea:a5:b9:45:7c:b6:7b:86:c7:
16:e0:56:0c:19:be:0d:ab:75:a1:bd:d1:5a:f8:99:0a:c3:b3:
5a:85:8b:68:8c:65:0c:83:8a:2e:2c:40:fc:db:9d:60:e8:f2:
03:2a:88:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org