Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/uvK0CrHz6zIHVCI-RTM_FoicAWc.roa
File: uvK0CrHz6zIHVCI-RTM_FoicAWc.roa (raw, json)
Hash identifier: YqH9d0l/kQu6tqD9olH+pZ+ZIcvD8PQmLtN2ztp9OPw=
Subject key identifier: BA:F2:B4:0A:B1:F3:EB:32:07:54:22:3E:45:33:3F:16:88:9C:01:67
Certificate issuer: /CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Certificate serial: 183C1064
Authority key identifier: 4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/uvK0CrHz6zIHVCI-RTM_FoicAWc.roa
Signing time: Sat 01 Jan 2022 06:02:18 +0000
ROA not before: Sat 01 Jan 2022 06:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50923
IP address blocks: 5.129.232.0/21 maxlen: 21
5.129.240.0/20 maxlen: 20
5.129.240.0/21 maxlen: 21
5.129.248.0/21 maxlen: 21
5.129.192.0/19 maxlen: 19
5.129.192.0/21 maxlen: 21
5.129.192.0/20 maxlen: 20
5.129.200.0/21 maxlen: 21
5.129.208.0/20 maxlen: 20
5.129.208.0/21 maxlen: 21
5.129.216.0/21 maxlen: 21
5.129.0.0/16 maxlen: 16
5.129.224.0/21 maxlen: 21
5.129.224.0/20 maxlen: 20
5.129.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406589540 (0x183c1064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddb3dcdf5e6bee09825c37bf3b8bdf28b6fb593
Validity
Not Before: Jan 1 06:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=baf2b40ab1f3eb320754223e45333f16889c0167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:91:36:26:69:b9:2a:f3:b9:ee:90:a8:a5:c9:
6f:9b:83:93:f8:c5:74:fa:28:ad:58:31:ac:f6:65:
9e:26:cc:8d:10:01:7b:b1:92:0b:2c:23:5a:38:78:
2c:7b:b3:25:ec:57:67:c8:d4:be:11:d2:89:16:09:
3a:8a:38:3b:88:89:be:94:77:8e:02:25:bb:23:72:
fa:1a:50:79:e6:39:a1:7c:86:af:b6:5b:c2:1c:09:
0a:37:95:4a:c1:5f:e9:10:82:ac:78:01:b6:62:b0:
a7:49:a0:99:94:46:25:13:ba:4a:2d:ab:a1:0f:06:
8a:8d:ad:b4:3e:bb:10:8c:f6:8d:09:58:ab:79:75:
42:73:22:1c:16:d4:f6:89:e5:92:5f:d7:22:f5:30:
2a:8f:d8:9a:2f:31:7e:31:60:43:a3:70:af:22:be:
71:87:f2:a5:74:e8:43:71:7f:c3:24:9f:81:5d:c3:
b5:52:33:b4:86:37:15:c7:ea:e4:66:7d:70:65:5c:
bf:6d:1f:95:70:0c:70:e5:1b:ae:79:a5:85:72:86:
3b:cb:17:18:39:96:31:f0:0e:31:67:dd:bd:5e:a3:
d6:46:00:ea:cb:74:32:4e:9b:6e:4a:97:71:e4:92:
d4:00:6d:c7:f1:f5:76:4b:e5:c1:a4:f6:81:a4:f5:
34:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F2:B4:0A:B1:F3:EB:32:07:54:22:3E:45:33:3F:16:88:9C:01:67
X509v3 Authority Key Identifier:
keyid:4D:DB:3D:CD:F5:E6:BE:E0:98:25:C3:7B:F3:B8:BD:F2:8B:6F:B5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tds9zfXmvuCYJcN787i98otvtZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/uvK0CrHz6zIHVCI-RTM_FoicAWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/790cee-d54e-4598-8bc1-2170c5c1d3ed/1/Tds9zfXmvuCYJcN787i98otvtZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:73:42:60:9c:d1:f5:e9:ac:d6:0d:6c:ac:99:83:a4:91:96:
c2:49:35:2f:7f:85:21:88:14:88:fd:75:bf:aa:e5:da:3f:6d:
ae:25:d8:7a:8b:62:41:dc:3c:64:23:75:55:7b:b8:b7:b6:78:
71:9d:4d:1a:18:67:aa:4a:3b:96:cb:45:a6:29:47:c4:d0:75:
09:85:c5:0c:61:58:27:5c:9f:39:b1:b2:3e:3f:d0:19:90:8a:
a7:25:7f:2e:ad:c1:34:f2:ac:6f:b0:63:55:8a:d2:a7:72:ea:
bc:87:cf:4b:61:a5:a8:b5:93:d5:9e:bf:fb:a1:7a:0e:ce:d8:
56:76:76:0a:8c:fe:79:69:d4:a3:c3:03:3a:d3:25:61:37:6b:
cd:92:24:cd:c0:3f:7a:5c:06:08:44:f9:81:53:a4:ca:60:1d:
4c:8e:92:d6:58:24:22:13:27:40:05:0f:2c:53:c9:12:17:39:
dc:10:4b:37:0d:15:ce:7a:cb:74:f1:19:bd:25:48:d0:6b:d7:
62:11:e8:00:42:34:ac:3b:66:58:23:6d:ca:8d:41:5b:89:f9:
a5:c4:76:1e:15:77:91:60:51:95:09:46:03:8c:42:36:2c:3f:
20:fe:cf:66:ff:60:59:3c:5b:f1:e6:24:e0:10:63:4d:8f:93:
47:7d:8d:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org