Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/UMrXq7Ojday-Pg92nAs7S7dI1J4.roa
File: UMrXq7Ojday-Pg92nAs7S7dI1J4.roa (raw, json)
Hash identifier: kA7OWsBfErFg1IE/ZhosniKB8jN90REiFIpeRXwlc+E=
Subject key identifier: 50:CA:D7:AB:B3:A3:75:AC:BE:3E:0F:76:9C:0B:3B:4B:B7:48:D4:9E
Certificate issuer: /CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Certificate serial: 183D65CC
Authority key identifier: 4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/UMrXq7Ojday-Pg92nAs7S7dI1J4.roa
Signing time: Sat 01 Jan 2022 06:02:18 +0000
ROA not before: Sat 01 Jan 2022 06:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60119
IP address blocks: 5.129.177.0/24 maxlen: 24
5.129.176.0/22 maxlen: 22
5.129.176.0/24 maxlen: 24
5.129.179.0/24 maxlen: 24
5.129.178.0/24 maxlen: 24
5.129.183.0/24 maxlen: 24
5.129.182.0/23 maxlen: 23
5.129.182.0/24 maxlen: 24
5.129.191.0/24 maxlen: 24
5.129.189.0/24 maxlen: 24
5.129.188.0/22 maxlen: 22
5.129.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406676940 (0x183d65cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Validity
Not Before: Jan 1 06:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50cad7abb3a375acbe3e0f769c0b3b4bb748d49e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:df:3a:1e:1e:4a:81:f8:c2:b0:c7:17:ab:
b7:c3:29:7a:0e:e6:fa:0d:60:eb:a3:74:2b:4b:49:
fb:3e:49:98:40:13:da:ec:9c:b3:cf:b9:80:1c:11:
e5:40:25:af:aa:27:84:8d:cd:98:0c:da:3d:c9:02:
b7:b4:45:7f:1c:45:af:01:68:c9:6f:71:04:bf:2b:
ee:e6:2f:ec:23:98:61:3e:8e:da:28:97:42:2c:3d:
73:b7:52:3e:e6:a4:b0:b7:b1:b4:01:9a:4d:17:01:
72:bb:fe:c9:18:44:30:81:ed:b2:c7:3b:35:a4:bf:
95:81:c7:a3:f2:a9:1a:cb:dd:5c:bf:e7:f9:bb:03:
60:6f:1d:4c:d1:ba:e9:21:7d:c4:7c:bf:9b:7c:d7:
a7:9e:97:74:9c:92:ee:42:02:c2:a2:62:05:bb:83:
e7:16:3c:8f:7b:72:2c:75:5f:95:bb:95:e0:5c:4d:
87:4e:de:16:43:af:f9:ea:15:f6:76:66:46:d2:6b:
59:d8:ab:d5:87:6a:82:17:71:71:35:32:22:39:fb:
1c:c7:c8:22:5a:c5:3c:20:17:d8:18:b8:a4:1b:85:
70:84:9d:66:e3:f1:99:37:d1:15:05:d8:1b:75:e9:
04:b3:5f:76:59:89:a8:59:63:83:8c:7a:33:5e:ef:
9a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CA:D7:AB:B3:A3:75:AC:BE:3E:0F:76:9C:0B:3B:4B:B7:48:D4:9E
X509v3 Authority Key Identifier:
keyid:4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/UMrXq7Ojday-Pg92nAs7S7dI1J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/Tds9zfXmvuCYJcN787i98otvtZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.129.176.0/22
5.129.182.0/23
5.129.188.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d7:c2:21:80:10:ed:3a:6f:ad:c7:9d:ab:52:c9:8c:fd:30:
d4:81:67:02:a5:51:8d:dc:86:66:c2:9d:ef:34:fc:a2:dc:37:
01:7a:ea:0c:a7:6e:57:77:29:91:77:6f:fe:53:f0:20:0b:6d:
be:fc:c5:bd:f5:2e:20:5f:25:36:d6:16:5c:e4:3c:2f:43:56:
e0:3d:29:6d:10:f7:52:e2:94:80:a5:1c:b5:1e:d1:61:c2:23:
07:a8:68:83:99:93:0f:51:50:4d:09:60:1d:88:9c:73:45:45:
b4:7c:2d:1a:42:3e:78:7c:79:7e:cc:a0:b6:8c:42:fd:fe:7c:
6d:92:fa:05:ad:a1:85:e0:1c:e6:7f:35:67:d6:51:c8:0f:39:
cf:2f:56:01:07:73:32:2f:4a:22:9f:20:c9:e2:fb:bd:7f:07:
07:96:69:ce:dd:52:9b:12:7c:cb:a7:4a:c4:af:fe:b8:84:61:
e2:52:0c:4d:6d:ca:0d:3c:63:49:38:6a:98:ea:d1:28:ac:3c:
8c:fe:72:08:e3:82:51:63:08:70:f7:e3:e6:24:7c:f9:07:c1:
0e:af:07:4a:21:c5:e1:32:46:ea:9a:de:8b:32:d1:88:64:99:
98:97:c3:14:91:5f:51:a9:8c:93:c5:d0:0f:ea:ba:c8:20:06:
2d:30:99:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org