Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/eqoA9hCN2fILjDrj7fEK86txzl0.roa
File: eqoA9hCN2fILjDrj7fEK86txzl0.roa (raw, json)
Hash identifier: SUoACPg29/CMmDdJ7LKhWceKejB3hnQ/ixrHlvvUoRg=
Subject key identifier: 7A:AA:00:F6:10:8D:D9:F2:0B:8C:3A:E3:ED:F1:0A:F3:AB:71:CE:5D
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 04F1999B
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/eqoA9hCN2fILjDrj7fEK86txzl0.roa
Signing time: Sat 01 Jan 2022 14:59:20 +0000
ROA not before: Sat 01 Jan 2022 14:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209441
IP address blocks: 5.253.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82942363 (0x4f1999b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Jan 1 14:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aaa00f6108dd9f20b8c3ae3edf10af3ab71ce5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:21:75:23:00:e4:13:e1:8a:96:b9:9c:f1:46:
e0:e1:55:a1:d9:3a:48:52:f6:51:be:47:0d:98:e7:
c0:8c:70:81:37:44:a8:4f:5e:d3:23:8c:21:f7:88:
4f:58:59:fd:5c:4a:36:18:7c:07:c2:bd:9c:f2:4b:
5f:c4:60:e9:cc:e9:97:4d:e8:6e:f3:91:de:ac:2b:
0d:10:c6:ae:c8:3e:47:7f:7c:10:b5:4f:87:65:cd:
9b:64:52:6b:bd:67:0a:99:af:1a:5d:37:d4:51:86:
87:12:bb:60:f0:25:9a:44:9a:64:88:dc:53:9f:c5:
af:e9:30:1c:fa:b2:ee:cf:f6:78:61:a0:e0:dc:47:
2f:7c:90:47:48:97:2c:c4:89:de:63:37:0c:81:f7:
bf:08:d9:46:07:9b:e6:80:da:fb:a1:61:36:93:80:
fe:e8:0c:ce:3e:21:8b:58:56:2a:1b:9a:78:20:46:
03:49:ac:09:7c:c2:ec:5e:06:a2:3e:68:cd:9c:33:
b6:47:e6:8d:d4:6f:64:91:cf:7e:1b:ec:27:09:2f:
59:35:39:83:0c:58:7d:18:74:c9:a1:69:f4:58:25:
92:78:86:a5:c6:ac:77:31:16:1a:78:fe:a8:24:74:
04:1c:f3:26:bb:2a:53:a2:11:c7:b8:6b:8f:bf:bf:
0c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AA:00:F6:10:8D:D9:F2:0B:8C:3A:E3:ED:F1:0A:F3:AB:71:CE:5D
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/eqoA9hCN2fILjDrj7fEK86txzl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.220.0/22
Signature Algorithm: sha256WithRSAEncryption
75:cf:ee:6d:2f:0e:6b:9a:2e:78:4d:a9:98:eb:6e:00:69:ff:
d0:02:be:51:02:22:6e:ae:2c:7e:ca:79:e3:9e:91:a5:10:d5:
ca:64:07:41:b1:5d:cf:21:b7:b3:2e:70:3a:97:02:91:f7:17:
47:a6:13:1b:b9:82:1f:f7:8b:fe:04:df:88:93:45:d2:fa:9b:
ce:4c:90:e4:ca:f6:0c:a0:2a:f9:67:03:0d:36:8c:c8:c5:4b:
15:2d:96:c1:4e:1a:a3:70:c2:ac:d0:d2:65:fb:b9:b9:9f:49:
f2:e5:ac:68:10:91:ca:d8:35:4d:5d:87:62:b5:b8:6f:55:3c:
7e:27:c6:af:51:e0:58:a9:1b:0b:a6:14:d9:ed:1c:4a:1a:d6:
d9:1b:6b:71:eb:cb:3d:6e:22:43:7a:cb:3e:f3:de:27:52:2d:
9f:44:45:1a:e8:6a:99:6e:3c:d7:87:8b:af:42:e6:ad:2e:33:
36:8b:f8:ff:6a:13:a7:8a:d4:8c:6f:b2:2d:1c:1c:56:81:40:
8e:5a:7d:cf:55:8e:4c:be:89:54:f9:57:d1:43:ed:9e:a1:2b:
7a:05:40:63:77:7e:d0:e5:e9:f0:4a:53:a1:33:e4:8a:7a:09:
c2:21:cf:9a:8c:f8:dd:e3:d0:5f:45:24:ea:ee:da:ea:a6:f6:
00:73:05:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:13 2023 by rpki-client on console-ams.rpki-client.org