Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/b8aeef-6889-4614-b7fc-5c75c3f421f5/1/1-FigeuUjh6UQigtm-HthT7fLW2I.roa
File: 1-FigeuUjh6UQigtm-HthT7fLW2I.roa (raw, json)
Hash identifier: rgct0zndbXcD9roV/FN3uINwxk9yP2uyEO54zaVvECs=
Subject key identifier: F8:58:A0:7A:E5:23:87:A5:10:8A:0B:66:F8:7B:61:4F:B7:CB:5B:62
Certificate issuer: /CN=c7554fd3e13b4a50c1d87482a7437b81c63e9951
Certificate serial: 056C088A
Authority key identifier: C7:55:4F:D3:E1:3B:4A:50:C1:D8:74:82:A7:43:7B:81:C6:3E:99:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VP0-E7SlDB2HSCp0N7gcY-mVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/b8aeef-6889-4614-b7fc-5c75c3f421f5/1/1-FigeuUjh6UQigtm-HthT7fLW2I.roa
Signing time: Sat 01 Jan 2022 05:58:53 +0000
ROA not before: Sat 01 Jan 2022 05:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208957
IP address blocks: 5.182.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90966154 (0x56c088a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7554fd3e13b4a50c1d87482a7437b81c63e9951
Validity
Not Before: Jan 1 05:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f858a07ae52387a5108a0b66f87b614fb7cb5b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:07:4c:c6:b8:13:8b:b9:6e:c6:dc:46:3c:
84:58:d0:d3:85:23:80:4e:08:a1:01:5d:c5:af:cf:
39:87:e2:40:dd:b5:ef:a8:16:d4:1e:7d:88:87:30:
5b:c5:20:bb:b8:40:30:9a:bf:3b:fa:35:08:2d:65:
72:8c:17:4f:e8:28:c0:6f:5d:ec:54:9d:bf:64:38:
58:0b:42:0f:08:06:ff:aa:3e:ba:fa:a9:6c:4e:de:
c5:22:f7:13:89:2f:2a:35:2e:17:09:8e:7e:3e:cf:
b7:7b:d2:68:76:94:a4:d2:23:d8:e6:27:a5:43:ba:
26:f6:54:30:70:58:a7:c8:5b:b6:9c:29:46:21:5b:
c3:53:1e:a0:a2:72:ae:11:c7:55:05:f1:32:d1:ac:
2d:dc:8a:ce:df:64:de:50:0b:88:93:34:a5:90:39:
a6:bc:0b:93:57:80:8c:0d:16:6d:46:38:d3:a6:30:
f1:ab:c5:1c:cb:4c:21:6b:1a:18:36:e4:48:d0:3a:
5a:50:98:19:60:b7:2d:d3:f8:d2:7e:1e:4b:c8:e3:
cd:91:8e:a2:d2:21:33:0a:66:54:93:8b:c9:de:84:
d9:ff:d0:66:14:05:25:05:55:c5:58:7b:d2:11:bf:
a3:80:b4:1a:42:2b:9f:b8:4c:b0:da:f1:0c:fd:0e:
2e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:58:A0:7A:E5:23:87:A5:10:8A:0B:66:F8:7B:61:4F:B7:CB:5B:62
X509v3 Authority Key Identifier:
keyid:C7:55:4F:D3:E1:3B:4A:50:C1:D8:74:82:A7:43:7B:81:C6:3E:99:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VP0-E7SlDB2HSCp0N7gcY-mVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b8aeef-6889-4614-b7fc-5c75c3f421f5/1/1-FigeuUjh6UQigtm-HthT7fLW2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b8aeef-6889-4614-b7fc-5c75c3f421f5/1/x1VP0-E7SlDB2HSCp0N7gcY-mVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.168.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:6f:8f:f3:54:17:bc:64:36:65:e9:70:da:8c:b4:86:03:4d:
17:12:0a:f8:d8:79:9f:67:cd:c4:94:52:f3:a8:86:a3:18:f5:
23:2f:6c:9f:44:a4:69:fe:15:ac:67:2c:19:ec:bd:70:74:aa:
ff:64:c3:35:23:90:0b:8b:b8:2b:06:a0:aa:8b:75:30:a5:f5:
bd:c9:ee:3f:7b:40:60:a3:3c:8a:3f:10:60:b1:54:a5:5d:d3:
5b:8d:dc:6d:70:ff:a7:5e:4c:4d:fa:b8:61:73:73:a7:55:ad:
96:50:7b:05:b9:7e:26:1f:f7:c9:1a:37:87:47:64:b8:22:37:
fd:17:32:e4:40:3d:f8:ff:5c:9c:8f:23:41:b5:f3:24:1d:6d:
e7:3f:5d:ff:ed:12:04:a4:5f:4e:ec:5b:0e:26:26:7f:4a:57:
09:90:b7:c0:7d:07:c9:47:fc:45:20:72:16:4f:20:9e:5b:b1:
ca:b3:1b:f6:ca:31:cd:8d:ce:0e:71:93:7a:da:44:d3:54:6c:
c2:d6:76:b5:9d:fe:2d:47:b3:86:8e:78:35:20:16:7e:48:74:
78:38:7d:91:65:4f:b7:f3:9a:29:c5:22:58:7d:cb:10:d3:0f:
7e:69:f8:55:d7:a9:2f:fa:77:a2:ee:88:d6:28:58:b8:69:2b:
cd:61:d7:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org