Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/HN0sypKiJR3LA9PdERhLT3V8sSw.roa
File: HN0sypKiJR3LA9PdERhLT3V8sSw.roa (raw, json)
Hash identifier: lLbdZnPIx+nGvLIn9nV02FzL3jaPZNg0ypda0EVzfTI=
Subject key identifier: 1C:DD:2C:CA:92:A2:25:1D:CB:03:D3:DD:11:18:4B:4F:75:7C:B1:2C
Certificate issuer: /CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Certificate serial: 02E7D982
Authority key identifier: 52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/HN0sypKiJR3LA9PdERhLT3V8sSw.roa
Signing time: Tue 17 May 2022 13:47:29 +0000
ROA not before: Tue 17 May 2022 13:47:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209072
IP address blocks: 5.183.140.0/22 maxlen: 22
5.183.143.0/24 maxlen: 24
5.183.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48748930 (0x2e7d982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529fbab5171a5cb22f6c54f10b3a2cb6db51723e
Validity
Not Before: May 17 13:47:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cdd2cca92a2251dcb03d3dd11184b4f757cb12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:0a:ce:3e:93:da:00:14:1f:a8:d7:95:0b:
d2:00:9e:48:f1:75:be:99:21:72:6c:92:28:fd:c3:
1d:ae:54:18:48:49:93:05:28:e5:26:44:6f:b1:ee:
e6:ac:7d:ac:78:31:4d:0b:17:39:97:ef:bf:ce:46:
77:3c:ea:d8:ec:dd:4a:2a:e4:3c:28:06:2f:7c:5f:
34:22:0f:bc:74:07:15:5a:95:73:b6:6a:f6:62:af:
ec:13:1a:05:33:f6:89:dd:ff:11:6b:fd:eb:42:ce:
34:d1:35:28:22:c8:a6:94:25:68:f2:00:f4:a1:50:
46:1a:f7:c7:14:92:84:f1:97:95:2b:c0:7f:8b:84:
41:28:a5:56:00:f5:b1:5f:1d:b2:58:d9:64:36:bd:
bf:f3:9c:ff:fb:ee:16:bc:9a:ca:5f:e7:4f:22:a3:
92:e4:02:58:fd:67:45:61:c0:8f:66:4b:68:64:42:
8d:0c:78:9b:59:8f:5d:ca:5b:6a:10:b3:d5:70:71:
3c:c9:e0:f6:37:c0:77:53:a5:03:db:b2:4a:dc:c2:
2d:25:f6:81:2f:78:f6:a2:2f:41:d4:64:c5:7e:02:
04:4f:3e:f5:60:40:ac:0b:5f:41:77:fa:43:87:75:
c8:18:d2:97:19:93:46:37:4e:51:9b:9a:a6:9e:8a:
e4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DD:2C:CA:92:A2:25:1D:CB:03:D3:DD:11:18:4B:4F:75:7C:B1:2C
X509v3 Authority Key Identifier:
keyid:52:9F:BA:B5:17:1A:5C:B2:2F:6C:54:F1:0B:3A:2C:B6:DB:51:72:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Up-6tRcaXLIvbFTxCzostttRcj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/HN0sypKiJR3LA9PdERhLT3V8sSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/5289c4-02b5-465e-8cbd-773732652f4f/1/Up-6tRcaXLIvbFTxCzostttRcj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.140.0/22
Signature Algorithm: sha256WithRSAEncryption
30:87:2f:f5:be:37:ed:8b:00:63:82:c2:11:6c:a4:97:73:5d:
40:f8:07:00:72:df:97:95:23:28:7e:5e:8a:18:3b:7b:53:be:
b7:8d:9f:c5:e0:b5:66:9d:ff:e8:49:7b:0c:98:20:02:62:78:
5e:04:0e:c7:8b:90:0b:ab:57:a2:98:03:51:fd:17:8e:04:4d:
b0:bb:08:4c:5d:d7:97:88:e3:d5:b4:e8:91:2e:65:21:e4:3d:
21:4f:21:e1:9f:fa:52:67:2e:7b:09:81:20:44:b8:41:85:80:
4a:62:6d:f6:b6:17:6a:8a:57:a1:58:eb:0a:2c:2a:0d:ff:83:
e7:d5:96:99:d8:15:60:e0:99:dc:f1:80:d4:2d:c5:92:85:ac:
1a:cf:16:cd:49:c7:79:6c:62:aa:bb:2b:0a:bb:42:21:49:3f:
3c:db:1a:64:e9:19:66:4b:d6:6e:10:f0:20:2a:64:50:6b:cf:
5f:ce:9b:48:b8:2a:72:57:70:d8:dc:ae:04:12:0c:21:8d:b0:
a3:8a:24:24:68:04:8a:78:2b:76:fd:3d:18:90:d0:44:5a:f1:
e9:3e:3d:86:e2:2e:21:31:4c:3e:84:62:e6:b9:30:e3:22:08:
ff:f7:01:29:6b:ce:55:a5:33:9a:01:8d:34:d2:9f:0f:f9:5c:
63:d1:8e:d8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAufZgjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjlmYmFiNTE3MWE1Y2IyMmY2YzU0ZjEwYjNhMmNiNmRiNTE3MjNlMB4XDTIyMDUx
NzEzNDcyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWNkZDJjY2E5MmEy
MjUxZGNiMDNkM2RkMTExODRiNGY3NTdjYjEyYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKLPCs4+k9oAFB+o15UL0gCeSPF1vpkhcmySKP3DHa5UGEhJ
kwUo5SZEb7Hu5qx9rHgxTQsXOZfvv85Gdzzq2OzdSirkPCgGL3xfNCIPvHQHFVqV
c7Zq9mKv7BMaBTP2id3/EWv960LONNE1KCLIppQlaPIA9KFQRhr3xxSShPGXlSvA
f4uEQSilVgD1sV8dsljZZDa9v/Oc//vuFryayl/nTyKjkuQCWP1nRWHAj2ZLaGRC
jQx4m1mPXcpbahCz1XBxPMng9jfAd1OlA9uyStzCLSX2gS949qIvQdRkxX4CBE8+
9WBArAtfQXf6Q4d1yBjSlxmTRjdOUZuapp6K5LkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQc3SzKkqIlHcsD090RGEtPdXyxLDAfBgNVHSMEGDAWgBRSn7q1Fxpcsi9s
VPELOiy221FyPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VwLTZ0UmNhWExJdmJGVHhDem9zdHR0UmNqNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNTI4OWM0LTAyYjUtNDY1ZS04Y2JkLTc3MzczMjY1MmY0Zi8x
L0hOMHN5cEtpSlIzTEE5UGRFUmhMVDNWOHNTdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
NTI4OWM0LTAyYjUtNDY1ZS04Y2JkLTc3MzczMjY1MmY0Zi8xL1VwLTZ0UmNhWExJ
dmJGVHhDem9zdHR0UmNqNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAgW3jDANBgkqhkiG9w0BAQsFAAOC
AQEAMIcv9b437YsAY4LCEWykl3NdQPgHAHLfl5UjKH5eihg7e1O+t42fxeC1Zp3/
6El7DJggAmJ4XgQOx4uQC6tXopgDUf0XjgRNsLsITF3Xl4jj1bTokS5lIeQ9IU8h
4Z/6UmcuewmBIES4QYWASmJt9rYXaopXoVjrCiwqDf+D59WWmdgVYOCZ3PGA1C3F
koWsGs8WzUnHeWxiqrsrCrtCIUk/PNsaZOkZZkvWbhDwICpkUGvPX86bSLgqcldw
2NyuBBIMIY2wo4okJGgEingrdv09GJDQRFrx6T49huIuITFMPoRi5rkw4yII//cB
KWvOVaUzmgGNNNKfD/lcY9GO2A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org