Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5Fbo6uqwSkE-WxgTxmPsj3kJZwo.roa
File: 5Fbo6uqwSkE-WxgTxmPsj3kJZwo.roa (raw, json)
Hash identifier: kBh++pPw1gnnzUFtrx/3EP2oHHjSsoEC1HwhxIX0PVE=
Subject key identifier: E4:56:E8:EA:EA:B0:4A:41:3E:5B:18:13:C6:63:EC:8F:79:09:67:0A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0184623CD17D715A1A4A4D23E44DF3BABA01
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5Fbo6uqwSkE-WxgTxmPsj3kJZwo.roa
Signing time: Thu 10 Nov 2022 15:51:03 +0000
ROA not before: Thu 10 Nov 2022 15:51:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 103.75.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:3c:d1:7d:71:5a:1a:4a:4d:23:e4:4d:f3:ba:ba:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Nov 10 15:51:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e456e8eaeab04a413e5b1813c663ec8f7909670a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:82:12:52:78:c8:9d:d1:31:bc:c3:62:33:e5:
95:11:3d:b3:2f:aa:f0:4b:8e:ca:c9:e5:e8:51:a9:
65:e7:47:c0:7b:d1:ef:ff:ea:d9:25:2f:b9:80:55:
21:cc:98:9b:ad:28:48:31:51:81:54:d0:3a:ae:9b:
0e:e7:b3:bc:25:b0:33:be:77:0c:4f:50:f4:ec:cc:
57:02:c1:f0:32:ac:47:90:72:b1:fd:a8:44:75:f2:
f7:89:af:a5:07:35:1a:af:ea:bd:2a:6d:f7:ea:09:
10:02:79:f5:89:23:41:96:14:8f:34:90:3e:08:ff:
05:75:ce:09:31:c1:82:8a:7b:c3:a7:ba:68:91:32:
8c:16:45:c0:bd:98:90:70:2e:3a:1b:90:77:82:65:
9b:77:97:25:1c:94:ac:4b:c3:a8:91:9b:22:2c:ad:
a8:d7:cf:d9:9f:df:fa:6f:74:8f:92:36:30:5e:6a:
1a:62:3b:60:d3:b1:05:8b:4b:ad:d0:86:a7:41:ab:
5c:bb:6c:82:9b:f2:06:4a:7b:c8:ae:b6:86:dd:e9:
4a:38:6b:4a:3b:c5:b6:d7:78:ef:de:57:b0:ca:24:
55:e7:8c:f0:44:c7:79:3f:ca:df:6a:a0:0d:28:f1:
6c:27:91:6e:45:90:03:74:9a:5d:5a:29:6a:03:b1:
d3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:56:E8:EA:EA:B0:4A:41:3E:5B:18:13:C6:63:EC:8F:79:09:67:0A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5Fbo6uqwSkE-WxgTxmPsj3kJZwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.75.71.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3c:a3:ef:21:3d:68:80:18:f7:5e:6e:39:bc:fc:0e:81:c4:
de:ea:fc:18:73:90:18:7a:51:b3:b4:32:4d:fb:2c:44:11:60:
10:09:60:ab:93:fd:dc:3e:c7:33:d4:57:e3:3e:04:d4:65:8a:
d5:7a:3f:c1:32:4f:8e:34:34:6f:e9:91:2e:59:32:36:0c:ef:
11:7d:1e:99:ae:14:7d:1f:1b:42:e5:47:46:cc:9c:f0:8f:b0:
4f:d5:f5:6e:d5:68:c2:ee:d2:63:51:51:a6:c6:a4:82:73:13:
fd:94:1e:ed:83:3b:53:78:78:0e:9c:64:f1:2a:11:6e:2b:d9:
e4:55:1b:94:f4:85:dc:c5:8c:86:76:ce:35:25:e9:cf:6f:25:
af:49:bd:95:bc:ef:54:4d:87:7e:3d:e0:1e:93:03:12:ba:60:
62:d4:c2:2b:67:82:e6:d8:af:cd:af:61:ba:99:9f:11:f1:93:
2c:34:4b:0e:6d:b4:80:68:fd:37:8c:94:00:bc:9e:82:00:87:
0e:5e:b0:2f:dd:95:82:a2:df:b7:77:0c:58:4a:2e:f2:d4:e2:
95:77:6d:93:01:70:66:4d:aa:b3:e1:2d:6d:87:58:2a:c0:c3:
be:ac:b3:42:ca:1c:05:b7:7e:9d:96:00:54:ba:28:56:09:ee:
3f:24:16:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org