Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5w6vQTkjg3zY860a7bD8Y4TVctU.roa
File: 5w6vQTkjg3zY860a7bD8Y4TVctU.roa (raw, json)
Hash identifier: DDU1BR2g1sJlE8lvuzXXYIkdkDDV2H+9E4fod173gDA=
Subject key identifier: E7:0E:AF:41:39:23:83:7C:D8:F3:AD:1A:ED:B0:FC:63:84:D5:72:D5
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018B677E5B4EC28E1E031E564738020A212D
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5w6vQTkjg3zY860a7bD8Y4TVctU.roa
Signing time: Wed 25 Oct 2023 15:40:16 +0000
ROA not before: Wed 25 Oct 2023 15:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 82.206.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:7e:5b:4e:c2:8e:1e:03:1e:56:47:38:02:0a:21:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Oct 25 15:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e70eaf413923837cd8f3ad1aedb0fc6384d572d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:12:f7:a9:8f:d0:98:f4:11:93:be:b6:ea:87:
ad:31:3a:f1:79:35:f3:9b:4d:01:5b:85:e9:a9:68:
c1:ef:7c:4a:c6:97:d4:cb:43:41:93:1c:55:56:aa:
39:51:4a:a0:b8:aa:b8:49:26:51:e2:67:87:5b:03:
02:b0:4d:28:20:3b:65:ec:2c:b8:3e:67:05:cf:83:
e6:e4:0a:4b:fc:09:24:e0:d5:ee:de:0c:c2:5f:3e:
8a:4f:cc:29:d8:28:6c:ef:3a:66:e2:a9:40:33:c9:
11:50:95:da:0e:22:f4:ff:f8:aa:96:51:33:17:1f:
b9:8f:95:c8:e2:55:a8:08:db:e2:a9:f8:39:d5:e2:
fd:13:4d:96:15:c1:50:3d:85:e3:37:01:e9:c8:6e:
9b:58:33:8a:72:33:b2:06:ca:3a:e8:26:02:af:e4:
4f:47:e0:80:a2:ea:c1:e8:12:da:72:e1:42:8e:47:
3b:0c:3b:fd:2c:7a:ee:3f:80:12:75:af:a1:2e:73:
89:37:8b:6d:dd:61:dc:c0:41:1e:fa:6f:a7:05:39:
dc:f4:72:a1:e4:53:ab:1e:81:3e:8e:df:d9:2d:5c:
aa:cc:f5:80:90:11:1b:ae:15:57:15:e7:99:ed:e1:
b6:39:30:e5:20:e7:08:69:1c:cc:3c:ea:ee:6d:6d:
5a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0E:AF:41:39:23:83:7C:D8:F3:AD:1A:ED:B0:FC:63:84:D5:72:D5
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/5w6vQTkjg3zY860a7bD8Y4TVctU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.48.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:af:e6:e8:1a:1f:e6:f9:b6:4f:02:2d:f6:f8:37:98:12:c2:
c3:b7:47:1a:39:31:f3:5a:47:83:a6:b8:0b:12:13:7c:44:7d:
c3:8b:a8:c0:91:ff:75:65:ad:b2:c0:0a:3a:9f:76:84:f3:ef:
45:53:80:01:62:58:a7:7b:c3:c0:ba:13:d6:a2:fc:fc:9a:52:
5c:b8:ac:14:4c:c5:26:3b:7c:ff:b5:33:59:3c:cc:a2:72:59:
d7:fb:e5:a7:27:22:4b:b5:81:4a:b4:99:90:a6:3e:d2:03:95:
c6:62:50:52:bf:c3:9f:97:3d:00:6c:ea:67:02:22:82:cf:2f:
f4:d0:81:63:63:1e:93:3b:80:9a:aa:3b:e4:a0:63:e8:eb:b2:
aa:56:22:d6:88:6d:1e:99:2d:3a:8c:56:70:8b:df:9b:3d:e5:
ba:43:b9:c0:af:37:bb:af:24:23:cc:3f:b7:9c:ee:9d:d0:1e:
ef:ea:01:07:a3:a8:cd:6a:90:38:a4:38:49:bd:b8:6e:44:14:
93:13:a8:46:a2:71:5e:14:b0:06:f9:b7:b7:18:12:19:5b:41:
70:33:9f:93:b2:a2:1e:3a:17:16:00:57:86:67:79:dd:55:07:
87:f6:16:58:1f:7a:2c:c6:e3:71:7e:f5:56:e1:c1:02:ec:27:
55:79:14:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:37 2025 by rpki-client