Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/6t3RCABNSziY6pppjnLrEDSRDyY.roa
File: 6t3RCABNSziY6pppjnLrEDSRDyY.roa (raw, json)
Hash identifier: QFFeg3Lhc6+HLKW8lhllPOWsVamDrFhfmZ7JKNy/x1o=
Subject key identifier: EA:DD:D1:08:00:4D:4B:38:98:EA:9A:69:8E:72:EB:10:34:91:0F:26
Certificate issuer: /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Certificate serial: 424A5F5E
Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/6t3RCABNSziY6pppjnLrEDSRDyY.roa
Signing time: Sat 01 Jan 2022 01:50:49 +0000
ROA not before: Sat 01 Jan 2022 01:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31400
IP address blocks: 5.132.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112170334 (0x424a5f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Validity
Not Before: Jan 1 01:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaddd108004d4b3898ea9a698e72eb1034910f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:20:19:ed:11:88:33:a0:f1:59:30:d8:99:78:
ba:26:2d:cc:47:38:61:d4:4f:79:1f:61:83:c6:01:
10:56:d9:03:cf:44:0c:7a:d0:b3:94:14:a8:a7:39:
f4:85:a0:78:34:7f:1c:b2:5e:ee:e8:24:e0:10:1c:
b5:70:b2:15:23:86:1b:eb:54:ce:df:92:52:6e:d6:
db:fd:ab:fa:c4:89:dc:e7:5d:08:b4:50:12:f8:41:
27:3f:c4:b8:ba:f5:45:68:f6:a1:a7:cc:0b:4e:37:
27:74:49:0a:fe:e9:0e:8f:62:6c:f0:f3:e3:d5:71:
22:18:47:f4:5d:10:3d:30:08:1e:2a:31:7e:b7:d0:
c8:60:a7:60:94:79:65:77:50:f7:01:d0:3e:66:d2:
26:2b:3a:a5:29:d8:44:f7:35:ed:6b:84:0c:55:2f:
13:b4:a4:f6:76:9c:af:35:94:53:f3:0f:d0:6d:5e:
15:ad:c6:30:8a:5e:a6:f2:2a:f8:f9:02:0d:7d:2b:
2c:51:19:03:bd:37:4a:3f:57:2a:d0:f3:31:05:ba:
ac:92:85:b2:90:46:35:95:c9:b7:14:cd:be:f6:08:
f2:19:41:a3:21:f4:9b:b7:66:09:63:14:78:ae:13:
47:c5:bd:ad:ef:b4:2f:73:11:e3:ef:c1:30:91:dc:
99:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DD:D1:08:00:4D:4B:38:98:EA:9A:69:8E:72:EB:10:34:91:0F:26
X509v3 Authority Key Identifier:
keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/6t3RCABNSziY6pppjnLrEDSRDyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.132.158.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8b:90:60:ec:38:57:57:d0:50:fd:9f:59:79:ff:d6:74:98:
d3:72:ac:93:70:53:93:3d:91:b4:b4:52:56:9b:ac:11:02:fe:
2b:0a:28:01:a5:37:0f:8a:a8:31:d1:ec:f3:1f:c9:0a:92:7a:
b1:9a:35:56:ec:cf:d8:c4:48:a9:fa:72:59:7a:94:a7:42:81:
15:91:bf:b4:2d:41:a7:76:40:f3:9a:07:c5:27:b7:62:7d:79:
bd:7b:43:52:6f:1e:9e:a6:0d:b9:83:78:b5:d2:e7:10:b2:d8:
8c:9e:29:92:14:d2:43:cd:05:3c:35:01:59:e9:31:6b:aa:0e:
30:7d:d2:d0:23:de:34:3c:b5:8b:14:2c:f3:e3:ff:e7:80:58:
72:32:42:6c:84:c8:6b:db:17:db:3d:c1:55:1b:71:1a:33:e6:
c7:9b:c5:99:70:d7:71:45:2b:59:66:7c:48:da:de:ea:a1:8f:
ec:c7:37:37:15:c0:78:a7:d2:2a:a9:ff:37:d2:7c:a3:13:95:
41:83:5c:a9:83:78:05:48:7a:02:ef:bc:68:1d:8c:86:4e:35:
15:ef:8d:37:0e:fa:64:75:02:e0:9d:9f:34:a0:de:86:9a:67:
00:de:b9:14:29:c3:30:4c:45:23:42:f8:4f:62:c8:45:23:35:
7e:40:df:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:13 2023 by rpki-client on console-fra.rpki-client.org