Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/85fd31-fe91-4389-ab67-3651e40f1436/1/A5Oqw9EAE1vpgT3lO6SYMvWASJc.roa
File: A5Oqw9EAE1vpgT3lO6SYMvWASJc.roa (raw, json)
Hash identifier: hraPkIqDjns7ujVMqQYkTMkC6zxrs1Qo5T2Ysvs5xX8=
Subject key identifier: 03:93:AA:C3:D1:00:13:5B:E9:81:3D:E5:3B:A4:98:32:F5:80:48:97
Certificate issuer: /CN=4b9f31e7352a8707b98c6d27348e8bc493d1a9af
Certificate serial: 12B344DA
Authority key identifier: 4B:9F:31:E7:35:2A:87:07:B9:8C:6D:27:34:8E:8B:C4:93:D1:A9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S58x5zUqhwe5jG0nNI6LxJPRqa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/85fd31-fe91-4389-ab67-3651e40f1436/1/A5Oqw9EAE1vpgT3lO6SYMvWASJc.roa
Signing time: Sat 01 Jan 2022 06:59:32 +0000
ROA not before: Sat 01 Jan 2022 06:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199181
IP address blocks: 5.158.64.0/20 maxlen: 21
77.39.128.0/19 maxlen: 20
185.142.68.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 313738458 (0x12b344da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9f31e7352a8707b98c6d27348e8bc493d1a9af
Validity
Not Before: Jan 1 06:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0393aac3d100135be9813de53ba49832f5804897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ab:cd:e2:ba:ab:e6:30:84:c6:cf:a1:2a:6a:
0e:29:e7:a6:0a:d3:08:b5:9c:40:ba:dc:23:45:77:
7e:4d:b1:fc:0a:f2:ff:cf:09:ef:25:69:80:d1:d4:
1e:f3:d4:e6:55:5b:6f:42:53:1b:74:e4:8d:b0:bb:
4b:6b:00:33:04:78:23:3a:a5:77:f1:39:ae:fb:d7:
dd:73:ee:a4:34:63:88:5c:ea:b9:15:f6:53:8b:af:
f8:59:06:d9:5f:a5:6a:52:5d:15:9d:8e:0f:57:00:
19:bb:21:84:25:1a:80:c5:69:0a:a8:58:f5:82:15:
90:72:01:49:48:c6:33:ef:f5:ee:57:db:db:6d:52:
4e:70:ab:9a:52:fa:d5:ad:89:a5:b3:18:9c:85:19:
18:59:4e:70:a7:5a:4c:c1:f8:3e:d5:57:0f:75:d3:
54:5e:26:b3:6d:13:ea:de:52:8e:15:4d:13:14:5d:
2c:7c:f1:79:cc:2a:82:dd:df:94:41:40:4b:97:b4:
8c:fb:f8:19:ca:aa:38:0d:4c:11:6f:ea:44:c7:ac:
59:1d:04:d8:0f:64:02:7f:d6:71:b2:54:05:e2:5e:
4f:ba:f3:d2:5f:1d:75:18:b5:84:6b:86:3e:c5:c4:
94:e4:d1:11:0c:c5:17:d9:25:2e:54:45:23:64:da:
c7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:93:AA:C3:D1:00:13:5B:E9:81:3D:E5:3B:A4:98:32:F5:80:48:97
X509v3 Authority Key Identifier:
keyid:4B:9F:31:E7:35:2A:87:07:B9:8C:6D:27:34:8E:8B:C4:93:D1:A9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S58x5zUqhwe5jG0nNI6LxJPRqa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/85fd31-fe91-4389-ab67-3651e40f1436/1/A5Oqw9EAE1vpgT3lO6SYMvWASJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/85fd31-fe91-4389-ab67-3651e40f1436/1/S58x5zUqhwe5jG0nNI6LxJPRqa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.64.0/20
77.39.128.0/19
185.142.68.0/22
Signature Algorithm: sha256WithRSAEncryption
85:c7:76:33:59:96:1c:ba:a7:2c:aa:e4:99:5a:73:00:e2:e2:
c7:ac:0b:44:3a:9d:04:76:0d:6f:06:70:40:50:91:0f:6b:35:
38:14:94:d3:3c:6e:1a:2b:66:9c:74:aa:a6:bd:5d:b8:11:47:
78:87:7d:81:92:13:db:d7:c3:22:bb:d3:ca:37:6a:8e:64:da:
05:52:5f:db:8f:1f:49:05:75:0d:80:da:e4:51:70:ae:fc:ab:
31:1d:9f:09:f7:fa:0c:0b:90:47:24:54:c6:8d:ac:f5:4d:27:
6d:6f:53:a1:01:56:40:d3:25:10:9b:9d:38:7f:3a:86:d3:c6:
be:f4:05:40:55:d9:91:4b:13:65:15:ee:a5:48:c2:0b:84:76:
1d:f2:f4:07:67:95:60:cf:e9:dd:3c:60:e1:ae:08:33:00:47:
da:c6:b9:be:1b:4a:b4:af:f7:d5:16:25:3d:85:8e:f0:58:2b:
ac:2d:56:8f:a9:93:a7:71:ee:d9:9b:96:f1:ca:80:69:d2:17:
91:4b:10:92:2b:66:5d:d9:46:ed:3d:92:0a:ef:04:8b:1a:3e:
24:5a:05:4c:38:74:81:31:7c:5b:7e:51:9f:7b:bf:e5:af:da:
31:40:b1:99:e9:a6:2b:be:43:bf:99:19:dc:7d:d1:c0:a9:bc:
0f:88:5a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:40 2024 by rpki-client on console-fra.rpki-client.org