Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/ezaC5POn6hOHr0iKNht5MtMNod8.roa
File: ezaC5POn6hOHr0iKNht5MtMNod8.roa (raw, json)
Hash identifier: HVSrp0JopQGVCglcjx6qD/b54TvjW/p36DFql49GktA=
Subject key identifier: 7B:36:82:E4:F3:A7:EA:13:87:AF:48:8A:36:1B:79:32:D3:0D:A1:DF
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 019C4027
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/ezaC5POn6hOHr0iKNht5MtMNod8.roa
Signing time: Sat 01 Jan 2022 06:56:19 +0000
ROA not before: Sat 01 Jan 2022 06:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211285
IP address blocks: 5.183.24.0/23 maxlen: 24
5.183.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27017255 (0x19c4027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Jan 1 06:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b3682e4f3a7ea1387af488a361b7932d30da1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:f9:49:c8:dd:db:1d:d8:03:0b:f1:a7:c2:
32:45:77:8a:8f:09:9c:00:bf:45:09:de:83:15:12:
93:9d:3c:dd:b5:05:bb:57:40:64:a4:5e:38:fe:2c:
57:e2:96:52:a8:70:24:34:a1:a8:86:ee:ed:df:5c:
ca:77:0b:75:d7:62:4f:86:db:51:73:d7:7a:da:86:
f9:a9:48:57:bb:2d:65:eb:f1:d1:58:17:c5:34:ff:
3d:67:33:1c:18:19:37:f5:57:19:a5:76:7f:d0:20:
51:dd:53:74:92:42:84:b5:0c:43:38:3a:8f:ee:20:
31:15:ad:92:68:d3:b5:7b:14:0a:25:11:31:12:7a:
4a:c0:9b:d7:7b:b5:39:00:9c:0e:22:43:83:31:b4:
5c:5c:8e:aa:65:67:82:2f:89:32:b9:f3:4a:85:15:
a2:a6:53:dc:ae:01:00:7a:19:bb:21:e6:94:f2:a2:
fb:e8:16:97:c0:df:41:13:1c:eb:45:fd:ea:b1:f4:
0b:18:fc:08:93:56:16:ab:67:97:42:db:74:ec:c3:
3a:c5:8d:f9:98:64:47:60:2b:84:18:4c:4a:9d:97:
94:f5:64:5e:58:66:93:78:ec:30:f2:8b:ce:70:3f:
5b:66:3f:30:b8:23:29:82:a0:a4:36:2e:80:31:fc:
fe:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:36:82:E4:F3:A7:EA:13:87:AF:48:8A:36:1B:79:32:D3:0D:A1:DF
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/ezaC5POn6hOHr0iKNht5MtMNod8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.24.0/22
Signature Algorithm: sha256WithRSAEncryption
88:5e:7e:bd:71:47:9b:29:f4:b6:9a:94:15:5d:28:53:6e:1b:
52:f7:2d:0b:b9:ba:74:03:97:f8:ec:b6:4c:af:ac:30:bf:d1:
ad:6f:2b:86:91:53:7b:8e:4f:cf:7b:6c:0f:4c:89:bb:37:d2:
de:c3:88:05:10:f1:f0:57:de:6c:88:e6:bc:d0:17:fd:d7:84:
0b:85:2e:2a:81:24:c9:55:57:d9:23:d3:59:5d:54:ef:47:a8:
06:90:76:d9:07:89:e9:e0:63:42:05:7d:5b:50:c8:01:8e:ba:
2c:48:c1:83:8d:9b:c9:50:85:6a:65:52:97:89:58:d4:1d:d2:
dc:07:10:d6:2a:76:55:fe:40:eb:94:7f:16:34:50:00:55:23:
39:31:75:27:c2:d4:93:b6:c0:5f:61:23:1a:10:cd:19:f1:96:
b8:a2:88:22:2d:6a:b0:45:38:05:af:87:83:ff:21:44:cd:a5:
e4:e4:c4:c9:db:21:f5:67:c5:96:96:1d:a8:0f:33:35:99:d3:
fe:67:19:ad:83:6b:16:e3:48:2b:cb:05:71:c2:e6:04:24:6d:
91:3f:dc:74:ff:02:7c:4b:8a:05:77:39:c5:76:7a:5f:03:6d:
47:6f:50:96:e3:49:b3:9a:89:c5:02:0d:8f:ca:13:a8:24:ba:
42:13:0d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:47 2025 by rpki-client