Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/X5E_f9ZX6RFi-XJfOxdLee0Wutc.roa
File: X5E_f9ZX6RFi-XJfOxdLee0Wutc.roa (raw, json)
Hash identifier: Ons2aq1O047GObHyuUTc6FSyPUjY8NeoMPeBrHupJK8=
Subject key identifier: 5F:91:3F:7F:D6:57:E9:11:62:F9:72:5F:3B:17:4B:79:ED:16:BA:D7
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 0703985A
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/X5E_f9ZX6RFi-XJfOxdLee0Wutc.roa
Signing time: Sat 01 Jan 2022 09:57:43 +0000
ROA not before: Sat 01 Jan 2022 09:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13639
IP address blocks: 156.114.20.0/24 maxlen: 24
156.114.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117676122 (0x703985a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Jan 1 09:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f913f7fd657e91162f9725f3b174b79ed16bad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:2a:b2:8e:2d:0d:18:70:17:e8:28:b6:57:
6e:2d:59:81:1c:0a:c2:7d:4e:e8:a9:07:d9:7d:be:
5f:c5:24:ca:01:4e:e5:a1:67:83:6d:bd:b5:51:95:
8f:85:70:e3:8c:42:b6:d4:d5:1c:94:94:53:84:8b:
16:42:b7:a8:c6:03:ac:f1:f6:d7:14:f2:20:29:8c:
d9:dc:77:12:6f:98:00:ed:fb:59:bb:cb:95:1b:d7:
e6:a7:61:1f:95:7b:04:8e:0a:0a:6e:3b:0b:ab:af:
f0:78:cf:fb:00:02:65:a1:04:8e:d3:7d:14:ff:2b:
98:1f:4c:21:56:01:c8:a5:b1:a6:05:ab:30:6e:3f:
9f:75:99:56:be:68:0b:10:a4:82:d1:e5:26:12:95:
1e:7a:f7:be:05:4f:84:c3:a3:c1:8b:50:7b:f5:b8:
a0:73:9f:4f:c4:68:49:36:df:17:93:7d:0c:b2:2c:
e8:13:53:0b:6a:66:ef:21:1d:e4:d5:51:9e:74:19:
75:af:06:7f:b9:b4:63:4d:06:59:7a:9f:93:c8:7f:
f4:44:42:d7:45:39:50:45:ce:41:ab:96:74:a4:29:
08:03:65:cb:e7:9d:ed:b0:73:fb:db:61:7d:ce:d4:
b7:53:2c:7e:0c:3f:75:60:69:bd:30:d1:45:23:83:
f0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:91:3F:7F:D6:57:E9:11:62:F9:72:5F:3B:17:4B:79:ED:16:BA:D7
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/X5E_f9ZX6RFi-XJfOxdLee0Wutc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.114.20.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:e5:10:66:c1:c0:f6:66:e9:7c:fd:f9:1d:18:5c:f8:fc:4f:
d8:f9:82:5c:98:87:a0:37:8c:ed:ae:76:29:ba:33:df:9a:87:
b5:ec:bc:95:1b:d0:7e:48:1e:19:8f:4c:75:c5:1c:46:f5:08:
04:bb:05:3a:38:1c:e2:09:e0:ec:f8:fb:63:55:4b:4e:8a:e0:
1f:4d:47:a4:27:6d:8c:49:41:fc:4a:a4:30:a6:aa:61:c0:d7:
95:87:35:63:d9:ab:4f:9b:f7:72:8e:14:3e:56:90:6e:c6:9e:
2d:fb:73:dc:43:c5:5a:dd:43:5c:23:13:af:2e:89:b5:67:68:
50:dc:61:04:d5:e4:24:f6:3b:29:3f:3d:69:8a:a2:09:82:7c:
4b:e4:be:96:91:81:2c:9f:47:98:0d:ec:09:2c:fa:86:07:86:
3a:09:a0:cc:60:1a:30:42:38:dd:fd:ec:5d:8d:5b:95:c5:06:
a0:37:c9:98:05:fc:e9:86:44:e4:3c:e3:77:7a:68:cd:14:cf:
9a:53:56:e1:b9:d3:25:49:80:27:a7:c0:72:cf:b1:dd:0c:5f:
ca:3a:a9:af:57:2c:c5:cd:a1:76:1f:64:d1:ef:e5:35:5e:ee:
e7:8a:71:3d:6d:e7:29:65:83:88:9f:a4:2b:54:e6:99:be:b3:
2f:2f:9b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:22 2024 by rpki-client on console-fra.rpki-client.org