Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3fa36d-8faf-4bdc-ad9e-013c1f01edb9/1/5sIS-QRmCzPnmCho2JfhK5QO7pU.roa
File: 5sIS-QRmCzPnmCho2JfhK5QO7pU.roa (raw, json)
Hash identifier: vt+7PVe192yJdqJ49Q1dvVlYAUha9DECjKafUBBr7tU=
Subject key identifier: E6:C2:12:F9:04:66:0B:33:E7:98:28:68:D8:97:E1:2B:94:0E:EE:95
Certificate issuer: /CN=0830bc34b8f4fcbc2bf523bbdbe9a044a2445fbe
Certificate serial: 06B7C4A3
Authority key identifier: 08:30:BC:34:B8:F4:FC:BC:2B:F5:23:BB:DB:E9:A0:44:A2:44:5F:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDC8NLj0_Lwr9SO72-mgRKJEX74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3fa36d-8faf-4bdc-ad9e-013c1f01edb9/1/5sIS-QRmCzPnmCho2JfhK5QO7pU.roa
Signing time: Sat 01 Jan 2022 11:03:57 +0000
ROA not before: Sat 01 Jan 2022 11:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32787
IP address blocks: 185.48.80.0/22 maxlen: 24
5.154.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112706723 (0x6b7c4a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0830bc34b8f4fcbc2bf523bbdbe9a044a2445fbe
Validity
Not Before: Jan 1 11:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6c212f904660b33e7982868d897e12b940eee95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:62:ea:33:91:25:d9:1e:5e:e9:d2:04:80:ed:
38:4b:81:2d:85:64:2a:24:7c:7f:af:eb:cf:81:c6:
60:e9:af:a1:3a:56:5a:9c:31:da:d8:db:9c:04:23:
3d:d8:9b:c8:07:b6:34:f2:d6:d3:45:22:d3:d8:0b:
c9:0c:60:42:a9:72:be:c2:1e:15:93:36:c7:aa:c8:
5b:07:31:1f:90:bf:32:73:87:6d:21:1f:9a:2c:d9:
bc:ba:2d:bf:b5:4d:d7:e4:77:4d:b9:48:96:96:f7:
41:c7:35:04:37:b7:62:23:da:23:f7:b4:c7:22:59:
f8:17:2a:3e:8a:2b:57:aa:5b:03:26:93:a8:9e:70:
86:cb:97:38:18:8b:e6:d5:24:d4:7f:bf:aa:86:68:
4b:0b:e2:94:a2:9a:51:6e:0e:61:48:88:59:75:49:
82:f0:16:6e:1d:d6:43:fc:e0:33:71:d7:39:e9:1e:
d9:e5:c7:91:fa:97:b2:b7:60:bf:3e:9e:19:8c:78:
a0:a9:6c:ed:b5:70:5a:4d:42:7d:89:94:76:82:90:
a2:51:94:b4:3b:17:28:5f:8a:83:c9:86:ed:7e:9f:
92:17:e3:a2:9c:36:72:7e:07:4d:fa:17:76:93:12:
85:c4:20:73:d8:df:80:b5:98:5a:53:67:5f:e5:01:
db:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C2:12:F9:04:66:0B:33:E7:98:28:68:D8:97:E1:2B:94:0E:EE:95
X509v3 Authority Key Identifier:
keyid:08:30:BC:34:B8:F4:FC:BC:2B:F5:23:BB:DB:E9:A0:44:A2:44:5F:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDC8NLj0_Lwr9SO72-mgRKJEX74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3fa36d-8faf-4bdc-ad9e-013c1f01edb9/1/5sIS-QRmCzPnmCho2JfhK5QO7pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3fa36d-8faf-4bdc-ad9e-013c1f01edb9/1/CDC8NLj0_Lwr9SO72-mgRKJEX74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.244.0/22
185.48.80.0/22
Signature Algorithm: sha256WithRSAEncryption
28:fe:c5:c7:1c:20:05:26:6c:a6:6c:ea:01:b2:34:49:87:a8:
79:04:bc:2b:0d:e1:f6:3a:ad:32:d2:34:1a:bc:8b:fa:32:d4:
b7:b2:0f:b0:90:57:b5:c4:8d:ba:75:52:9d:ec:27:20:a2:fb:
75:ab:20:c3:88:47:38:48:28:2e:1f:77:22:0b:dc:dc:76:a4:
db:05:1b:44:95:e7:11:a0:c8:4e:48:25:12:79:2d:cb:a0:9f:
a6:2f:a8:4e:62:97:24:7f:40:29:e4:98:2f:22:2d:70:61:ae:
c9:39:50:b0:84:97:76:23:ad:b2:c4:bd:df:7d:30:62:ae:d7:
c2:6e:65:07:9c:0b:23:69:28:dc:61:27:31:a9:39:73:21:9c:
ea:df:3c:d1:44:2e:74:85:e2:ff:fc:e6:90:50:16:b2:50:e0:
6c:70:1c:94:6f:74:8f:e4:9f:a1:2d:d0:41:47:83:b2:80:c4:
e5:aa:51:4e:d3:20:13:56:3a:60:ac:60:cd:15:2c:01:03:10:
f8:71:24:e8:1a:ba:67:53:1c:38:78:e3:fd:b9:c1:0b:5b:86:
b1:90:a5:73:61:2a:0f:6e:b3:a5:fe:00:bd:67:91:71:e2:1c:
78:2b:4f:69:66:2b:21:2e:78:b9:b7:f9:24:52:84:19:40:24:
65:5f:6a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:21 2024 by rpki-client on console-fra.rpki-client.org