Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/H-LFWBrPmiL_Q8ck4BqYkf5B6ic.roa
File: H-LFWBrPmiL_Q8ck4BqYkf5B6ic.roa (raw, json)
Hash identifier: rE1L+Ucl99vzam/RnKWKzq2NH4KR3IAs6l03F9djQ+A=
Subject key identifier: 1F:E2:C5:58:1A:CF:9A:22:FF:43:C7:24:E0:1A:98:91:FE:41:EA:27
Certificate issuer: /CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Certificate serial: 023E523E
Authority key identifier: 25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/H-LFWBrPmiL_Q8ck4BqYkf5B6ic.roa
Signing time: Sat 01 Jan 2022 07:04:23 +0000
ROA not before: Sat 01 Jan 2022 07:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60134
IP address blocks: 149.62.182.0/24 maxlen: 24
5.158.82.0/24 maxlen: 24
5.158.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37638718 (0x23e523e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25ae551af0bb5d7977ea73f6896f25f1eca28f9d
Validity
Not Before: Jan 1 07:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fe2c5581acf9a22ff43c724e01a9891fe41ea27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3b:e6:67:a5:c1:c7:67:2a:8a:8c:61:f0:69:
32:ad:d0:16:f6:d2:d6:ba:e9:49:ca:77:23:2f:f2:
c8:1f:34:b6:0c:64:57:85:0b:cd:da:74:e5:05:f8:
7e:b8:7e:9c:99:eb:30:25:72:fd:9e:1f:2f:44:f8:
02:33:40:44:b4:cb:2c:2c:a7:1f:d5:1f:21:14:48:
e8:65:a6:f9:84:b0:9e:e0:86:4c:2f:8e:17:30:1a:
8d:00:e4:f2:b5:af:ed:9b:7e:98:65:70:27:bb:0e:
4a:4f:1d:ae:83:a7:e1:02:9b:15:36:ae:2e:ba:b5:
57:dc:3d:7a:91:16:4b:93:8f:f8:d4:90:19:68:f9:
5d:35:94:2c:a7:a2:93:49:e4:93:b4:1f:20:d4:ca:
c9:8d:bb:b5:4e:ff:28:c3:16:32:a5:63:c0:bd:ec:
a3:a2:89:50:fe:81:ff:ff:cb:58:97:84:08:2c:f2:
76:8b:91:2a:c2:d0:80:ad:55:e9:10:81:1f:f5:6a:
34:f7:ca:e9:49:24:f3:4a:b0:28:e3:5e:7e:06:e1:
72:42:e3:fb:f7:58:0b:9e:2b:75:2e:d5:8e:fc:b0:
75:d0:8e:50:23:df:a4:2a:22:15:b1:88:24:79:e7:
f6:66:98:1b:e7:09:a4:21:87:71:9c:d0:98:92:ae:
c4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E2:C5:58:1A:CF:9A:22:FF:43:C7:24:E0:1A:98:91:FE:41:EA:27
X509v3 Authority Key Identifier:
keyid:25:AE:55:1A:F0:BB:5D:79:77:EA:73:F6:89:6F:25:F1:EC:A2:8F:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ja5VGvC7XXl36nP2iW8l8eyij50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/H-LFWBrPmiL_Q8ck4BqYkf5B6ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/42f81b-c42c-4254-abb9-2142f8fb676e/1/Ja5VGvC7XXl36nP2iW8l8eyij50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.82.0/24
5.158.86.0/24
149.62.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:89:b6:94:8e:a1:a6:8f:03:34:10:ae:aa:6b:d4:c4:e0:bf:
bf:72:80:a1:bb:a0:36:05:1c:cb:b4:69:c3:ac:b9:a5:f8:40:
12:ea:a3:26:0b:6d:ce:c2:52:2f:9b:88:a6:a5:49:0c:9a:b4:
49:65:5c:bc:76:6b:38:1c:d7:27:61:09:70:a5:45:c6:71:bf:
73:29:47:2d:b2:e1:ed:b1:3a:e1:67:df:b4:d6:ce:64:9f:a6:
01:dc:f5:ed:dd:a5:72:29:4a:e1:17:05:0f:a3:29:ab:64:2e:
17:0d:e2:40:6c:5b:4a:3a:8f:9b:76:06:e9:c9:73:11:db:04:
83:fa:9c:44:d2:25:c5:6a:37:da:38:d4:63:ce:98:ff:4e:ef:
af:da:b0:6a:1a:f6:9b:11:0e:0b:f0:f1:7c:78:e6:86:2f:00:
aa:80:11:1c:05:be:a0:bc:29:72:d2:91:16:dc:34:c7:0f:68:
58:b0:4b:d5:c6:c7:71:ef:c6:28:35:e8:3e:ae:35:e0:2e:c0:
4c:a9:55:9c:12:f7:a9:2e:3d:c3:87:a3:f3:58:2a:1c:7d:65:
3e:d0:2a:94:0b:6a:d1:2a:fd:c3:73:43:27:23:e7:c6:7c:dc:
55:e6:7e:bf:be:0f:b4:db:12:59:64:00:89:73:21:c0:65:6d:
d0:c6:9e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:39 2024 by rpki-client on console-ams.rpki-client.org