Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/3O2ko2pGtczidv7Ddgktjl6TsR4.roa
File: 3O2ko2pGtczidv7Ddgktjl6TsR4.roa (raw, json)
Hash identifier: Yvwf1fqDxoRdHHe2JgV/5Cfr0DrgZwKOpdQpYNwE3J4=
Subject key identifier: DC:ED:A4:A3:6A:46:B5:CC:E2:76:FE:C3:76:09:2D:8E:5E:93:B1:1E
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 09AC4055
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/3O2ko2pGtczidv7Ddgktjl6TsR4.roa
Signing time: Sun 08 May 2022 14:12:15 +0000
ROA not before: Sun 08 May 2022 14:12:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 5.182.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162283605 (0x9ac4055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: May 8 14:12:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dceda4a36a46b5cce276fec376092d8e5e93b11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ab:66:27:b1:09:e0:ee:3d:e7:02:4c:62:2b:
ce:a3:32:e3:fd:94:c5:db:62:79:a8:71:ac:d7:d4:
4a:db:a9:7b:93:81:37:68:63:16:c3:b1:a4:f5:fc:
03:f4:fd:ac:1c:40:c5:a7:15:1e:75:1f:32:11:12:
79:b3:18:8c:42:f3:89:a5:74:cf:95:6e:e2:d8:62:
c8:45:e9:82:02:d3:9e:3d:8d:99:5c:d7:87:82:93:
51:55:86:b7:7d:4c:8e:65:60:7d:53:6e:b0:21:68:
b7:fe:ef:32:af:f5:26:9b:73:13:f9:c7:86:13:5f:
5a:1e:01:ce:b1:a4:8f:ca:db:4d:dd:e2:9b:a4:07:
98:f3:44:70:f5:0d:4f:e7:9b:1a:c7:28:ec:8b:79:
2b:1b:00:85:f3:78:1b:20:04:13:0f:cd:91:95:82:
52:68:24:cc:4e:b7:f1:ab:79:ca:5a:dd:ca:4a:db:
fd:d3:72:03:c3:ae:47:c8:3f:1a:92:9b:77:8b:f3:
3a:8b:47:e2:ed:03:69:ce:d7:45:e1:66:fc:ff:39:
36:2e:71:2f:f0:1f:bd:0c:99:df:0a:c9:e1:4a:1b:
b8:0a:50:9f:7e:c0:79:8f:8c:db:ab:fb:ba:8c:f1:
c5:3f:b6:d0:0a:c7:ce:df:98:2d:27:c4:2b:c2:90:
1c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:ED:A4:A3:6A:46:B5:CC:E2:76:FE:C3:76:09:2D:8E:5E:93:B1:1E
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/3O2ko2pGtczidv7Ddgktjl6TsR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.152.0/24
Signature Algorithm: sha256WithRSAEncryption
12:e9:4e:e8:92:be:9b:9a:65:ee:06:ac:3b:76:f5:66:42:eb:
ec:83:8d:60:69:29:56:76:71:30:a9:c6:84:1b:37:1f:cb:4c:
dc:49:22:f8:8e:04:77:5c:35:8f:bf:7f:3f:c0:89:ba:75:4d:
aa:de:e8:10:52:9c:36:99:1e:15:32:da:4a:d1:f8:6a:26:fc:
a6:13:35:40:02:0b:4e:58:43:2c:e0:27:98:05:9e:19:ac:f9:
4d:3b:03:d1:8e:9e:28:f5:7c:64:d6:00:c6:54:60:8e:a5:28:
39:38:95:cf:35:cf:a1:81:1e:fa:76:ec:12:90:25:b8:f8:be:
3b:38:14:c9:bd:58:ee:8e:44:39:15:6b:bb:c4:d3:fe:64:53:
9b:55:c1:60:25:10:eb:24:11:5f:17:e7:bd:80:38:3d:4a:f4:
0a:13:73:65:fb:c8:df:c4:cc:c7:40:5d:d3:ba:8b:95:e0:0b:
dd:ab:6f:f1:84:b3:61:80:36:f1:9a:f4:62:1b:b6:a1:e1:43:
80:d7:2e:78:26:1c:6b:8d:c3:d0:f8:32:8d:98:08:7f:4c:e2:
45:02:54:32:2d:18:15:95:86:fd:70:d2:10:72:9c:19:f6:29:
e1:2b:9f:83:87:c0:d9:fd:4d:6d:36:01:80:f9:cc:ab:b4:bd:
36:24:be:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org