Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5UuHcBLAlTtYTI_xk-t6fe-Fzfc.roa
File: 5UuHcBLAlTtYTI_xk-t6fe-Fzfc.roa (raw, json)
Hash identifier: wXh7uzpzKxT+rKMtu2/bLqhR9/oxio+wJfwjBSrQ2p4=
Subject key identifier: E5:4B:87:70:12:C0:95:3B:58:4C:8F:F1:93:EB:7A:7D:EF:85:CD:F7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27E0B84F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5UuHcBLAlTtYTI_xk-t6fe-Fzfc.roa
Signing time: Sat 01 Jan 2022 16:09:01 +0000
ROA not before: Sat 01 Jan 2022 16:09:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59525
IP address blocks: 146.120.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669038671 (0x27e0b84f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e54b877012c0953b584c8ff193eb7a7def85cdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:da:d0:3f:9b:76:b0:13:fa:68:e7:44:08:58:
c4:ae:79:f5:a2:af:cf:e8:81:88:4d:f0:d5:16:91:
ec:4a:3a:fa:75:93:f1:95:6d:e7:a5:38:ce:54:bf:
b3:ba:f1:a5:8e:82:6f:3b:c3:8d:96:08:fd:ba:55:
03:4e:7a:08:61:e1:ca:9e:ca:cd:55:b8:63:52:d9:
1e:c0:d3:5a:7f:d3:c3:fd:13:e9:61:73:36:1e:0d:
6d:e2:74:a8:c8:1c:d2:bd:4e:9f:4f:9e:35:e1:84:
c2:a9:a2:9f:64:ef:56:2c:ed:c5:61:d1:57:f5:69:
18:6e:fe:82:98:08:d3:67:83:77:4f:8d:f5:8d:f3:
fd:b1:af:4b:de:97:2f:54:34:18:41:0d:74:92:1a:
36:5d:83:51:3f:aa:72:f5:86:50:ec:cb:01:ed:65:
3b:95:c3:95:33:5b:de:95:e4:bf:d3:9f:a5:56:6c:
53:0d:dd:10:9d:6f:ec:37:67:2d:0c:96:f6:39:d1:
59:ee:a7:52:cb:1e:7a:52:bd:1e:aa:20:a8:f2:3a:
10:1b:58:ea:a0:27:66:bf:8c:78:6e:e5:a7:9f:9a:
6a:11:d5:3c:c8:28:d1:89:ad:db:d1:db:bf:d3:59:
d4:0b:7e:6e:c5:2b:f6:71:bb:70:a9:d9:43:c0:e8:
b4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4B:87:70:12:C0:95:3B:58:4C:8F:F1:93:EB:7A:7D:EF:85:CD:F7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5UuHcBLAlTtYTI_xk-t6fe-Fzfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.109.0/24
Signature Algorithm: sha256WithRSAEncryption
00:86:d1:08:5e:36:bf:bc:65:c1:b4:d6:55:b8:a9:9e:b6:38:
9e:a6:7e:91:7c:3a:65:9c:a7:ed:d2:9e:e9:07:d1:6b:d9:90:
da:d0:ef:26:db:ba:26:2f:38:b9:85:fd:5f:af:7c:f2:2c:ce:
0c:eb:76:79:15:19:9e:88:bf:48:80:ec:c5:a3:d7:39:0b:2f:
7c:04:7d:f4:7a:31:64:55:dc:ec:97:d6:59:cb:ce:cc:19:6e:
29:bc:25:5e:88:c7:ca:32:af:69:e9:76:fd:3e:ff:09:ac:66:
ca:9a:e1:37:26:84:73:ac:0c:e3:ec:a7:3d:a4:7e:78:d4:8b:
76:ed:1c:e2:33:a3:be:26:f0:cd:ba:81:61:f5:df:fe:8e:e8:
9a:cf:6e:0d:ae:72:71:b0:b3:3c:c0:e5:e0:6f:02:7d:0b:9c:
49:b9:27:a0:d9:4f:b4:da:0e:de:73:c1:1d:8c:82:95:19:e6:
ef:48:61:02:46:43:df:c9:e8:b5:e1:0c:b3:4e:4a:3e:a7:f2:
dc:a0:09:38:94:9c:d2:5d:82:98:5e:78:f9:cb:c3:cb:b3:24:
c1:9d:2d:bf:9c:4a:45:ac:e1:ea:71:71:8e:64:8e:8a:92:17:
ba:ee:f2:80:ec:b8:90:d2:5d:70:51:fa:9a:c3:aa:1c:08:19:
7e:14:a3:6e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEJ+C4TzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDkwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU0Yjg3NzAxMmMw
OTUzYjU4NGM4ZmYxOTNlYjdhN2RlZjg1Y2RmNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOja0D+bdrAT+mjnRAhYxK559aKvz+iBiE3w1RaR7Eo6+nWT
8ZVt56U4zlS/s7rxpY6CbzvDjZYI/bpVA056CGHhyp7KzVW4Y1LZHsDTWn/Tw/0T
6WFzNh4NbeJ0qMgc0r1On0+eNeGEwqmin2TvViztxWHRV/VpGG7+gpgI02eDd0+N
9Y3z/bGvS96XL1Q0GEENdJIaNl2DUT+qcvWGUOzLAe1lO5XDlTNb3pXkv9OfpVZs
Uw3dEJ1v7DdnLQyW9jnRWe6nUsseelK9HqogqPI6EBtY6qAnZr+MeG7lp5+aahHV
PMgo0Ymt29Hbv9NZ1At+bsUr9nG7cKnZQ8DotAMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTlS4dwEsCVO1hMj/GT63p974XN9zAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
LzVVdUhjQkxBbFR0WVRJX3hrLXQ2ZmUtRnpmYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJJ4bTANBgkqhkiG9w0BAQsFAAOC
AQEAAIbRCF42v7xlwbTWVbipnrY4nqZ+kXw6ZZyn7dKe6QfRa9mQ2tDvJtu6Ji84
uYX9X6988izODOt2eRUZnoi/SIDsxaPXOQsvfAR99HoxZFXc7JfWWcvOzBluKbwl
XojHyjKvael2/T7/CaxmyprhNyaEc6wM4+ynPaR+eNSLdu0c4jOjvibwzbqBYfXf
/o7oms9uDa5ycbCzPMDl4G8CfQucSbknoNlPtNoO3nPBHYyClRnm70hhAkZD38no
teEMs05KPqfy3KAJOJSc0l2CmF54+cvDy7MkwZ0tv5xKRazh6nFxjmSOipIXuu7y
gOy4kNJdcFH6msOqHAgZfhSjbg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org