Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E8V5JtR-0LzmdEBgHOBP4TYYbSs.roa
File: E8V5JtR-0LzmdEBgHOBP4TYYbSs.roa (raw, json)
Hash identifier: ZZVQM1fsr0iPqlonOCx14sIQGQ3VFNKqJCdmC/epAi4=
Subject key identifier: 13:C5:79:26:D4:7E:D0:BC:E6:74:40:60:1C:E0:4F:E1:36:18:6D:2B
Certificate issuer: /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Certificate serial: 437FED46
Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E8V5JtR-0LzmdEBgHOBP4TYYbSs.roa
Signing time: Thu 19 May 2022 07:56:51 +0000
ROA not before: Thu 19 May 2022 07:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 5.132.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1132457286 (0x437fed46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Validity
Not Before: May 19 07:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13c57926d47ed0bce67440601ce04fe136186d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:01:56:16:2b:87:c9:b0:cf:f8:17:ef:9c:cb:
94:65:fa:74:af:ef:7d:05:58:f5:01:7c:76:a4:c1:
f3:99:70:86:db:b4:27:73:02:f8:ad:32:30:ef:02:
f9:d4:ab:5c:a3:88:75:3c:e8:48:d8:9f:2c:fe:82:
bf:cf:4a:f9:a7:01:f6:5b:aa:01:3c:fc:74:b2:23:
f8:0e:69:a6:88:1f:a6:f2:cb:1f:a3:64:e7:7a:c0:
20:a1:a4:a6:4a:63:e5:bc:b3:0e:5b:2b:67:d1:72:
b2:a1:43:a6:b8:96:52:1d:e0:ef:20:34:35:90:ca:
c6:9c:f8:33:36:05:63:d7:ae:02:0c:16:24:57:59:
29:83:a0:0d:9d:02:8c:5b:c2:76:cc:00:a0:cb:db:
d9:c2:b4:04:94:fb:5c:a8:89:c7:c2:21:98:aa:41:
3e:96:08:1f:e7:62:7b:06:5c:c5:f2:16:af:97:cb:
62:13:44:63:42:d4:65:6e:46:4a:aa:d7:d2:d3:ba:
91:24:ac:6f:5c:e5:16:58:1c:8d:87:66:f4:fb:a9:
b5:93:6a:49:77:e9:64:44:38:c8:57:1c:49:50:cb:
b5:38:87:38:34:2a:cc:ee:75:00:77:93:3a:2e:3f:
43:a5:d6:60:53:b1:ee:1c:42:82:f4:8b:4e:79:00:
5a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C5:79:26:D4:7E:D0:BC:E6:74:40:60:1C:E0:4F:E1:36:18:6D:2B
X509v3 Authority Key Identifier:
keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/E8V5JtR-0LzmdEBgHOBP4TYYbSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.132.158.0/24
Signature Algorithm: sha256WithRSAEncryption
35:63:21:9b:79:a9:20:be:7b:3d:64:3d:4f:18:7c:75:77:1d:
6a:31:d3:03:35:df:db:2b:5d:93:52:13:ab:2a:93:a8:96:c3:
36:49:d7:38:be:57:12:ea:cb:c0:17:fb:a3:4f:77:b5:b9:74:
9a:ca:9b:ab:d4:3e:2c:51:8f:6e:b4:1e:80:fe:ee:a4:5c:f2:
4a:6c:25:fb:30:6c:dc:c7:f2:c6:c6:8e:61:57:12:d9:fb:3c:
6a:68:f3:49:78:74:9e:a9:01:d2:11:64:04:62:ea:77:86:74:
37:b5:cb:88:2e:ea:c6:af:aa:4b:8a:0f:7e:a0:33:ca:4c:c3:
36:d8:e3:f6:8b:03:9f:19:16:29:17:1e:3c:e7:1f:3d:cf:08:
2d:6c:08:4b:ee:38:d6:e3:8a:81:1b:4e:29:43:9f:31:5c:9b:
6a:03:21:92:00:1e:af:bf:dc:d0:aa:53:7c:b7:d7:8c:32:20:
05:96:3a:e6:0d:50:7c:0f:b4:56:87:26:ca:af:20:ec:39:c0:
d9:d1:44:94:88:a8:d4:bc:d9:a5:db:d4:6c:db:7e:59:69:e1:
09:ff:da:85:b0:9b:a3:58:ee:a8:b6:80:f3:cc:0c:8e:8c:17:
55:41:c6:e1:e2:64:fe:8d:86:aa:84:ad:c5:8c:09:bb:07:9f:
3a:e4:c5:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEQ3/tRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZTRhMjAyMGI4MmQwMjk0ZTkwYTJkNmIyYzBmMjhkMTE3M2I2NDY1MB4XDTIyMDUx
OTA3NTY1MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTNjNTc5MjZkNDdl
ZDBiY2U2NzQ0MDYwMWNlMDRmZTEzNjE4NmQyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEBVhYrh8mwz/gX75zLlGX6dK/vfQVY9QF8dqTB85lwhtu0
J3MC+K0yMO8C+dSrXKOIdTzoSNifLP6Cv89K+acB9luqATz8dLIj+A5ppogfpvLL
H6Nk53rAIKGkpkpj5byzDlsrZ9FysqFDpriWUh3g7yA0NZDKxpz4MzYFY9euAgwW
JFdZKYOgDZ0CjFvCdswAoMvb2cK0BJT7XKiJx8IhmKpBPpYIH+diewZcxfIWr5fL
YhNEY0LUZW5GSqrX0tO6kSSsb1zlFlgcjYdm9PuptZNqSXfpZEQ4yFccSVDLtTiH
ODQqzO51AHeTOi4/Q6XWYFOx7hxCgvSLTnkAWsECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQTxXkm1H7QvOZ0QGAc4E/hNhhtKzAfBgNVHSMEGDAWgBQeSiAguC0ClOkK
LWssDyjRFztkZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hrb2dJTGd0QXBUcENpMXJMQThvMFJjN1pHVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGMvNGM0OGJiLTM2NmMtNDFmNS05YjJkLTUzMDQ0MGM0ZmEyOS8x
L0U4VjVKdFItMEx6bWRFQmdIT0JQNFRZWWJTcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGMv
NGM0OGJiLTM2NmMtNDFmNS05YjJkLTUzMDQ0MGM0ZmEyOS8xL0hrb2dJTGd0QXBU
cENpMXJMQThvMFJjN1pHVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAWEnjANBgkqhkiG9w0BAQsFAAOC
AQEANWMhm3mpIL57PWQ9Txh8dXcdajHTAzXf2ytdk1ITqyqTqJbDNknXOL5XEurL
wBf7o093tbl0msqbq9Q+LFGPbrQegP7upFzySmwl+zBs3MfyxsaOYVcS2fs8amjz
SXh0nqkB0hFkBGLqd4Z0N7XLiC7qxq+qS4oPfqAzykzDNtjj9osDnxkWKRcePOcf
Pc8ILWwIS+441uOKgRtOKUOfMVybagMhkgAer7/c0KpTfLfXjDIgBZY65g1QfA+0
Vocmyq8g7DnA2dFElIio1LzZpdvUbNt+WWnhCf/ahbCbo1juqLaA88wMjowXVUHG
4eJk/o2GqoStxYwJuwefOuTFng==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-ams.rpki-client.org