Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5c0fd2-6743-4682-967b-5f15beafa9b1/1/4ArSNykRLdzwYiIRSXQ296t_ZJ8.roa
File: 4ArSNykRLdzwYiIRSXQ296t_ZJ8.roa (raw, json)
Hash identifier: 2v9qDXeWyN0Q2uruXkRL38JbpDbQLieoNKan81VsRqk=
Subject key identifier: E0:0A:D2:37:29:11:2D:DC:F0:62:22:11:49:74:36:F7:AB:7F:64:9F
Certificate issuer: /CN=3c86ec321e72fd46c98dcc0cd7c70bcad557d59c
Certificate serial: 091A0925
Authority key identifier: 3C:86:EC:32:1E:72:FD:46:C9:8D:CC:0C:D7:C7:0B:CA:D5:57:D5:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PIbsMh5y_UbJjcwM18cLytVX1Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5c0fd2-6743-4682-967b-5f15beafa9b1/1/4ArSNykRLdzwYiIRSXQ296t_ZJ8.roa
Signing time: Sat 01 Jan 2022 13:01:59 +0000
ROA not before: Sat 01 Jan 2022 13:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209097
IP address blocks: 5.182.144.0/22 maxlen: 24
2a0e:5c00::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152701221 (0x91a0925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c86ec321e72fd46c98dcc0cd7c70bcad557d59c
Validity
Not Before: Jan 1 13:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e00ad23729112ddcf0622211497436f7ab7f649f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:31:44:1e:f4:7d:90:be:ac:76:95:b3:8e:
f5:65:96:c3:0e:d8:c0:91:5e:a1:49:84:6d:2b:c5:
0b:56:83:77:2e:b2:26:6b:35:6a:7b:43:30:2b:47:
81:61:68:c9:7d:0e:9a:e0:36:86:ce:dc:7c:c8:31:
15:0b:d4:21:5c:ce:54:fc:92:52:2f:a2:ef:85:ac:
6a:87:9f:e3:94:c3:ee:08:87:e1:16:0a:48:ff:41:
83:76:2d:a5:62:98:1a:ab:ac:c7:86:d1:b1:e1:76:
04:43:73:59:28:dc:3b:af:f1:93:51:9d:ac:34:e3:
a1:0a:f7:de:eb:7d:31:bc:9d:dc:ef:b9:a3:d5:24:
b0:86:13:28:ea:16:dd:8c:12:74:e6:98:df:d6:d0:
3a:84:a5:a8:1e:1a:d1:82:a5:58:f3:6f:49:21:e7:
99:dc:d2:a7:be:14:63:01:9d:08:26:a5:fc:97:e1:
de:a8:9e:db:11:04:5e:87:27:a6:ae:4e:3b:29:f7:
24:07:0e:15:a0:e5:9d:8e:bb:a6:55:3d:92:db:0e:
c1:0c:bc:87:48:97:de:f3:62:32:74:49:fd:f6:79:
ee:92:c2:4c:f7:aa:3d:b6:81:e1:04:64:27:55:ef:
33:cb:08:66:69:8f:e6:ab:89:44:41:26:ce:f1:d2:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0A:D2:37:29:11:2D:DC:F0:62:22:11:49:74:36:F7:AB:7F:64:9F
X509v3 Authority Key Identifier:
keyid:3C:86:EC:32:1E:72:FD:46:C9:8D:CC:0C:D7:C7:0B:CA:D5:57:D5:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PIbsMh5y_UbJjcwM18cLytVX1Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5c0fd2-6743-4682-967b-5f15beafa9b1/1/4ArSNykRLdzwYiIRSXQ296t_ZJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5c0fd2-6743-4682-967b-5f15beafa9b1/1/PIbsMh5y_UbJjcwM18cLytVX1Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.144.0/22
IPv6:
2a0e:5c00::/29
Signature Algorithm: sha256WithRSAEncryption
1c:7d:91:bc:6f:eb:b6:b2:5b:94:a8:5c:a3:72:54:5a:4d:01:
ee:f9:fb:a2:74:b5:1d:f4:36:e9:3d:09:e6:a2:df:9c:24:6c:
ff:3b:29:bf:1d:78:3c:60:a7:78:69:41:3f:14:7b:d6:9a:b8:
30:6d:f7:94:8d:69:07:54:91:f5:33:51:d0:70:1a:ee:ab:2b:
07:6a:39:1c:61:2a:dc:0c:fb:9c:66:28:00:71:ea:78:ec:c4:
41:aa:63:87:a5:e6:b6:e2:ec:d9:8f:dc:47:e7:80:ed:e7:2c:
9b:16:06:81:e3:65:a9:3a:05:f3:ed:ff:ca:b7:1e:54:e9:6c:
bc:15:08:2c:8b:16:de:7a:f4:87:0b:21:e3:51:e9:47:aa:a4:
a1:80:7e:89:01:4b:c7:0c:6d:94:b2:1d:14:d1:5d:40:3b:20:
65:23:5c:61:ab:b0:98:d5:9c:d4:0c:b3:97:fd:c8:45:bf:b9:
61:58:cb:3f:cb:4f:99:f0:3f:7b:8f:58:23:a3:1c:be:d5:06:
52:46:25:36:ae:54:7b:d6:f1:57:17:09:3a:b6:0b:8d:74:57:
fb:c9:3c:52:c4:1a:50:ea:2f:be:44:30:36:a5:b6:a3:cf:e4:
d9:10:6f:54:c3:01:6f:f8:8e:a8:3a:df:7c:aa:70:51:97:3c:
e3:27:13:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-ams.rpki-client.org