Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/DLYXCt6mg6IVCU3FrY__SIed4Wc.roa
File: DLYXCt6mg6IVCU3FrY__SIed4Wc.roa (raw, json)
Hash identifier: Nb7D5M8fzs8jWtOUFLnEm5n4cXleQ6OH3WOI7mBA3R0=
Subject key identifier: 0C:B6:17:0A:DE:A6:83:A2:15:09:4D:C5:AD:8F:FF:48:87:9D:E1:67
Certificate issuer: /CN=5bb1c57055c29d669f289a9f68f392823942132a
Certificate serial: 02D7683E
Authority key identifier: 5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/DLYXCt6mg6IVCU3FrY__SIed4Wc.roa
Signing time: Sat 01 Jan 2022 03:55:43 +0000
ROA not before: Sat 01 Jan 2022 03:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202709
IP address blocks: 5.253.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47671358 (0x2d7683e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb1c57055c29d669f289a9f68f392823942132a
Validity
Not Before: Jan 1 03:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cb6170adea683a215094dc5ad8fff48879de167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:db:28:55:72:3b:4f:75:87:e4:e6:05:81:22:
2b:a5:87:cd:40:cd:08:33:72:f7:43:e6:ce:97:b8:
b1:c9:c6:6e:cd:6e:e0:c4:bc:63:53:d5:ef:38:7c:
9b:ab:12:38:f5:c7:d6:93:57:5f:8f:03:70:99:7b:
62:f2:8a:9b:67:9b:b5:86:9e:18:50:2b:e3:f5:85:
23:a4:94:9a:f7:c0:2d:1a:6e:eb:47:14:da:77:58:
70:f8:dd:03:a8:3b:a9:d7:04:65:27:75:28:47:46:
cb:44:69:56:bd:e1:22:63:88:6d:07:b5:7f:85:a6:
b8:f0:2e:e9:5a:a6:9a:43:7b:38:24:ed:8e:90:a1:
f8:f0:3b:0d:67:a8:b8:04:38:e7:64:8c:7e:b0:20:
40:19:21:d2:73:29:e4:b6:a7:f1:df:9d:70:ad:e2:
95:ac:d0:1a:7a:10:a9:1f:66:33:d2:c7:8f:de:d4:
e8:5d:1c:ee:f2:32:63:f3:51:8b:40:93:b6:61:54:
36:fc:ae:f7:24:2f:97:3a:a8:24:2a:dd:98:39:46:
b0:60:fe:c8:4e:c7:07:68:01:14:ed:53:81:94:20:
ec:17:ca:a5:5a:e7:49:f9:d5:30:e0:fa:b7:e8:01:
41:23:5b:85:fe:09:e9:e3:a9:08:e7:0d:15:5d:e8:
38:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B6:17:0A:DE:A6:83:A2:15:09:4D:C5:AD:8F:FF:48:87:9D:E1:67
X509v3 Authority Key Identifier:
keyid:5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/DLYXCt6mg6IVCU3FrY__SIed4Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.215.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:10:1a:43:2d:9f:b1:c4:61:ac:ff:9f:ae:84:24:40:10:96:
93:2c:3d:b5:5b:6b:65:48:18:a8:54:bb:53:10:2c:51:0d:22:
83:f6:a8:c2:3c:fb:3a:ab:86:1d:34:82:25:61:8e:7a:c6:61:
b5:4e:0a:1b:cc:6c:8a:cf:ed:a7:c6:d0:1a:c7:09:ee:7c:f4:
f8:00:ea:23:9e:d8:39:7a:06:c4:05:00:ef:51:44:5e:e8:0c:
29:ff:09:85:29:ad:39:d8:a5:8e:e7:f7:7b:6f:ad:4c:eb:57:
be:0c:ea:da:be:08:47:61:1b:29:9a:46:85:7b:62:38:e9:82:
70:e7:07:66:6c:95:9b:40:0f:26:16:02:d8:7a:b8:8d:7c:bf:
55:f2:e5:59:02:f5:d4:34:74:30:b1:3f:f1:fa:41:81:0a:c9:
53:38:b0:e7:7e:76:f9:51:12:94:54:bc:20:39:56:bb:63:f3:
8f:b8:4c:46:f5:6f:c7:3c:79:be:93:d6:9f:a9:b2:81:ce:a5:
ef:1b:7d:f0:d4:09:c0:c0:1c:67:9e:7f:bc:e0:03:91:fe:2f:
33:6f:ac:5b:d0:a8:93:38:2f:ff:d4:dd:09:2e:39:10:ca:09:
56:12:67:80:8b:40:5b:ab:e5:7f:d8:e4:d8:52:0b:ed:3a:09:
97:a5:59:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:58 2024 by rpki-client on console-ams.rpki-client.org