Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/4Oq495BL2hDNVT6lFb5GHRDDe4g.roa
File: 4Oq495BL2hDNVT6lFb5GHRDDe4g.roa (raw, json)
Hash identifier: nBwe85tIgET2F8dEBVlUhFErQeMd+Mf+H04R1lOVQPA=
Subject key identifier: E0:EA:B8:F7:90:4B:DA:10:CD:55:3E:A5:15:BE:46:1D:10:C3:7B:88
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 9ED772
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/4Oq495BL2hDNVT6lFb5GHRDDe4g.roa
Signing time: Fri 25 Feb 2022 16:33:48 +0000
ROA not before: Fri 25 Feb 2022 16:33:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 5.249.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10409842 (0x9ed772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Feb 25 16:33:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0eab8f7904bda10cd553ea515be461d10c37b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:d2:03:5f:43:0d:d1:f1:1a:d9:de:9f:3d:
3c:f1:d8:12:29:e4:0b:af:24:91:d4:4a:45:97:35:
8c:ba:51:81:1d:d8:b6:be:e3:c4:3e:b6:fc:2c:14:
c0:1a:14:61:b2:19:b1:f0:4e:a9:fd:05:a9:76:1b:
62:37:83:87:b6:fd:fa:b3:99:70:6e:7f:e5:1e:0f:
fe:ce:7f:37:26:20:f1:c3:f9:76:43:83:ee:da:fd:
47:87:b1:42:fc:e5:9c:93:3b:0f:f4:dc:30:a8:1d:
31:fa:ed:7c:0f:f2:ef:1f:e0:55:cd:58:f8:12:f2:
00:2c:32:44:81:93:97:c9:44:86:81:05:8c:30:24:
b5:fb:a5:70:a3:e6:ee:e5:c3:ac:f6:d6:29:c2:24:
05:4e:67:b1:0a:55:8c:98:3a:9d:61:f0:22:63:1f:
4f:2f:74:27:08:6a:24:b0:bf:1f:ce:86:4d:8f:73:
7a:58:4a:d7:81:d2:b0:ad:3c:ef:f2:fd:4d:dd:47:
d4:47:2c:c5:b2:09:3b:bb:e5:54:89:67:8b:a4:f5:
88:e2:31:6c:46:1e:bb:89:db:71:b3:a5:cd:78:c1:
4a:29:f2:d7:dd:db:da:92:2a:77:d5:af:e4:04:10:
b3:14:aa:95:60:de:66:a3:58:1e:03:9f:38:46:c6:
9e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EA:B8:F7:90:4B:DA:10:CD:55:3E:A5:15:BE:46:1D:10:C3:7B:88
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/4Oq495BL2hDNVT6lFb5GHRDDe4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.176.0/20
Signature Algorithm: sha256WithRSAEncryption
cb:0d:a8:5e:48:be:3b:b8:c1:b2:7a:37:34:41:50:2e:8e:cf:
88:a3:49:0e:f0:02:44:c1:5b:03:e6:94:ef:dd:c3:d7:49:66:
ee:ee:f0:8d:1d:ae:3e:9e:5f:83:f4:14:6d:99:95:69:ed:ee:
d3:46:33:c2:25:7b:67:8f:23:34:35:a5:0a:7e:db:fd:b1:de:
dd:72:ff:3e:a2:b0:61:fa:e3:5e:12:ec:70:42:d1:2b:9b:1a:
db:4a:4d:5f:80:7f:9b:e1:49:a8:e8:9f:e7:6c:c7:aa:18:fb:
ea:35:85:8b:07:bf:04:31:81:2f:82:1e:f6:4a:c7:05:18:71:
66:c8:c9:bc:26:bb:22:fc:97:b5:14:58:b1:23:b0:d5:03:05:
f1:17:cd:4f:23:c6:9f:37:76:7e:5c:e5:3c:62:ca:89:8e:9e:
b4:d7:21:16:76:dd:73:7f:1d:ee:fc:16:40:62:df:7c:da:fd:
33:c3:50:50:58:20:33:f5:10:70:28:c4:25:97:d9:7f:0e:be:
d4:6e:b6:17:1a:07:f1:24:50:7e:23:d7:55:b6:a8:0e:93:fe:
e0:c2:c3:b8:2d:8b:46:79:19:e8:ff:54:b3:c1:16:a4:58:a6:
88:71:6d:85:ae:a6:62:0b:99:f9:4f:c9:11:3b:8c:20:fb:10:
61:25:96:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org