Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XPzNuHMhnPGK6YspngMOnPOILaA.roa
File: XPzNuHMhnPGK6YspngMOnPOILaA.roa (raw, json)
Hash identifier: 7AGcrLKmMheYGjvCdQk5uWax1wpz3naPaTY96R2OGUw=
Subject key identifier: 5C:FC:CD:B8:73:21:9C:F1:8A:E9:8B:29:9E:03:0E:9C:F3:88:2D:A0
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D6AF6D
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XPzNuHMhnPGK6YspngMOnPOILaA.roa
Signing time: Sat 01 Jan 2022 13:04:03 +0000
ROA not before: Sat 01 Jan 2022 13:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52356
IP address blocks: 181.41.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64401261 (0x3d6af6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cfccdb873219cf18ae98b299e030e9cf3882da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f9:3a:b7:f3:50:7f:82:30:d7:10:62:fa:36:
e1:6e:b2:ad:20:3a:ef:2b:b9:21:b2:ef:4a:c7:e5:
27:2b:65:52:52:f8:8c:09:cf:6a:60:90:59:ed:07:
bb:40:eb:2e:ca:cf:69:d5:24:6b:97:43:04:e0:c5:
00:9d:8e:04:1f:f8:7d:12:00:28:eb:16:7a:d0:39:
4c:02:44:06:6e:81:c9:8b:9f:cd:e3:c9:4c:5f:ac:
1e:bd:ad:83:cf:b3:ef:2c:14:08:3f:33:39:6c:3c:
d5:2a:71:0e:99:1a:12:63:02:51:c6:15:b2:a9:8c:
1b:1d:0c:22:3d:61:0b:a6:28:fa:2a:3a:4c:0c:c9:
9d:d8:fc:5a:94:fe:8c:68:2a:1a:10:fb:4c:17:07:
ec:b5:57:1a:99:e7:f0:5d:19:64:4c:1b:2c:1c:b1:
6e:4e:db:a5:66:ac:e0:31:f4:24:70:5b:73:88:c3:
ed:cd:07:41:5f:ea:4c:86:78:4f:a6:f0:c6:d6:09:
8c:2f:3e:8e:98:82:3c:48:d2:f0:d6:4c:b3:d3:4d:
5f:d6:3b:5e:e0:c5:05:40:a8:9c:d6:e9:f7:5e:7e:
e0:a7:7c:7d:4f:cc:8b:e2:58:e9:58:01:2f:50:7f:
3d:ee:d8:72:17:87:cc:a4:2c:20:29:ea:96:1e:76:
dc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FC:CD:B8:73:21:9C:F1:8A:E9:8B:29:9E:03:0E:9C:F3:88:2D:A0
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XPzNuHMhnPGK6YspngMOnPOILaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.154.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1d:08:e2:cc:d5:ad:18:c6:4e:1c:e3:e3:dd:f4:77:31:4c:
03:cf:c9:0a:8c:25:a5:d4:53:26:8b:75:b4:37:0b:04:40:75:
db:e7:34:c3:16:91:04:ab:2b:02:a5:e4:53:3e:51:65:ec:7a:
6d:f2:05:8a:44:56:ab:f4:8f:8f:4d:bb:2e:eb:1c:ed:21:43:
22:9c:45:46:6e:6e:a0:59:46:25:fb:7d:4b:1c:46:3f:2c:f3:
20:c9:d3:fd:b3:fb:af:e1:f4:a8:cd:45:9b:7e:84:51:c9:ff:
5b:2f:64:06:d2:c0:2e:51:8b:86:f0:8f:61:bd:e4:88:b9:03:
c0:33:f1:e8:f9:bd:a8:9c:97:c9:50:3a:00:35:ad:d5:83:95:
4d:58:ba:96:92:b9:10:d3:42:d9:ba:4c:24:30:70:b0:f7:12:
d1:d4:f6:32:0e:35:57:b1:68:b8:63:d8:32:c2:91:91:19:ae:
a1:7e:5a:bb:dc:9b:65:30:e4:7b:51:ef:a5:01:e1:a6:cc:fc:
c3:2f:8d:a3:a2:b9:bd:ac:10:d7:88:93:75:a4:5d:a3:bb:2e:
01:23:e5:eb:10:50:1e:6c:89:b4:f4:bd:84:5a:64:84:2c:c0:
c3:2a:91:17:96:6c:8d:05:60:cb:4a:0d:a3:5e:6a:50:9a:a2:
c8:7f:55:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org