Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/lx1Li7wCRfMWBBka39nnT4lETBc.roa
File: lx1Li7wCRfMWBBka39nnT4lETBc.roa (raw, json)
Hash identifier: MfEJQEofq5qqsHaTa867oaYSXHQ13VamIZNWdjqG74E=
Subject key identifier: 97:1D:4B:8B:BC:02:45:F3:16:04:19:1A:DF:D9:E7:4F:89:44:4C:17
Certificate issuer: /CN=5bb1c57055c29d669f289a9f68f392823942132a
Certificate serial: 043AFECA
Authority key identifier: 5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/lx1Li7wCRfMWBBka39nnT4lETBc.roa
Signing time: Thu 09 Jun 2022 09:41:03 +0000
ROA not before: Thu 09 Jun 2022 09:41:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202709
IP address blocks: 5.253.215.0/24 maxlen: 24
5.253.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70975178 (0x43afeca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bb1c57055c29d669f289a9f68f392823942132a
Validity
Not Before: Jun 9 09:41:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=971d4b8bbc0245f31604191adfd9e74f89444c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:90:9e:a1:30:5d:83:54:2e:f8:10:62:ac:
8c:42:f2:cc:cb:8a:3e:9d:ca:95:0a:eb:14:d8:b6:
cd:35:3f:2b:a0:d9:28:9b:21:6d:31:1b:00:41:63:
42:05:ca:09:8d:59:7e:16:9a:fa:e6:a7:f3:b0:8b:
d8:3e:fe:fc:be:1f:3e:fb:88:14:80:a1:f5:71:50:
71:ac:6a:8e:41:2f:94:c0:64:4b:17:ed:7c:74:af:
9c:0a:d6:1e:24:29:50:b0:89:dd:bd:ed:e8:7f:43:
26:aa:08:d3:7a:10:02:4d:c9:45:fa:b1:42:65:3f:
da:fd:dd:6a:32:f6:3d:c4:2e:c9:c8:f9:84:e2:4d:
ad:2a:f0:59:df:02:8a:20:22:0e:74:93:62:5b:ff:
ef:39:63:71:79:9b:1d:81:69:28:b3:39:f9:19:2b:
b8:41:0b:ac:7c:c3:14:26:f0:c8:7f:c2:3b:c5:07:
55:c7:64:ee:64:02:5e:cd:d6:3b:03:7b:06:73:a7:
05:81:49:2a:c9:5d:0f:32:3f:6b:f4:5f:c5:62:03:
6d:4f:54:4d:42:2c:37:6a:2a:01:65:bc:c9:75:ef:
b0:8d:cb:69:bf:07:43:0a:03:3d:ed:d7:db:f1:3b:
bd:eb:27:6b:5d:1b:0c:86:b4:b2:d6:f6:8f:4d:55:
26:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1D:4B:8B:BC:02:45:F3:16:04:19:1A:DF:D9:E7:4F:89:44:4C:17
X509v3 Authority Key Identifier:
keyid:5B:B1:C5:70:55:C2:9D:66:9F:28:9A:9F:68:F3:92:82:39:42:13:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W7HFcFXCnWafKJqfaPOSgjlCEyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/lx1Li7wCRfMWBBka39nnT4lETBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/822376-808a-465c-a87f-5ceae19f94f9/1/W7HFcFXCnWafKJqfaPOSgjlCEyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.214.0/23
Signature Algorithm: sha256WithRSAEncryption
23:3f:35:71:e4:6c:0f:64:ea:d6:45:4c:9f:30:24:8a:ac:9b:
db:f0:86:b4:5b:93:bd:87:c7:97:38:82:15:f7:e4:96:31:e4:
d0:bf:05:cf:c3:6d:b9:e0:fc:b1:f7:98:3e:41:ab:23:f9:03:
b2:f8:ac:d8:60:05:e6:6c:2e:a8:d9:bc:76:51:5c:ba:e6:dd:
26:9f:cd:23:65:35:55:d8:50:99:b5:8c:39:54:90:22:09:19:
3b:c9:7e:4f:ae:2f:f2:c4:68:76:5e:c4:2e:3b:82:55:33:35:
02:fa:d6:f6:2f:9c:20:74:cc:1e:59:da:35:a9:95:bd:b0:b0:
9f:82:54:30:12:ba:52:65:51:aa:18:aa:78:70:0f:ac:da:09:
8c:9a:ad:5f:62:8c:e2:b7:05:1d:2b:30:a1:de:de:91:38:c1:
a8:aa:ac:d6:c3:f2:3f:01:e9:cf:82:07:a0:ba:87:e2:6f:52:
07:eb:86:1d:8d:2f:fb:db:66:bc:07:ca:e2:4f:6b:6e:67:cd:
c5:36:f7:11:d6:e6:d6:92:a1:28:f2:68:fe:ed:ac:87:67:aa:
ae:0a:b7:8d:f5:20:ea:bd:24:03:67:a5:82:c2:99:fb:d9:a5:
1a:0e:fd:3e:db:af:56:5c:23:68:78:f3:f2:53:43:85:28:e1:
e2:27:ef:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:58 2024 by rpki-client on console-ams.rpki-client.org