Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/IZ4_dhdjlso_H9ys8eb8hZJiLEs.roa
File: IZ4_dhdjlso_H9ys8eb8hZJiLEs.roa (raw, json)
Hash identifier: 6kyaIJG62QB1MG9XvSqbHsLSxn0u3MXbph/oQTNu+M8=
Subject key identifier: 21:9E:3F:76:17:63:96:CA:3F:1F:DC:AC:F1:E6:FC:85:92:62:2C:4B
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 015CAB83
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/IZ4_dhdjlso_H9ys8eb8hZJiLEs.roa
Signing time: Fri 13 May 2022 07:12:43 +0000
ROA not before: Fri 13 May 2022 07:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 5.249.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22850435 (0x15cab83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: May 13 07:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=219e3f76176396ca3f1fdcacf1e6fc8592622c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:b3:4d:10:d3:d6:fe:81:fc:59:63:9f:8e:
38:81:60:84:1c:9c:60:75:3e:ae:bc:74:37:b1:b6:
67:3f:d0:72:46:b0:80:57:ec:83:53:39:22:d2:85:
a7:ea:68:9a:23:70:db:bf:31:95:30:26:8b:44:c9:
e8:03:48:04:d6:84:e1:8a:b4:07:8e:a0:8a:8a:27:
8e:5e:59:52:00:72:f4:58:34:07:74:58:ea:0f:fb:
4b:95:c3:51:ac:26:5d:4d:0c:e6:21:a3:a0:4d:2a:
65:83:65:d3:b9:3c:37:a6:69:71:07:aa:04:a7:eb:
36:4e:c7:ed:8d:79:ce:f2:95:ab:77:bc:82:cf:fd:
f5:71:1d:b6:f1:0c:31:25:7b:ac:29:65:27:45:61:
71:d9:50:ce:8a:51:d8:7c:5f:e3:19:1d:15:bc:16:
76:21:dc:10:09:94:76:ad:71:ac:3c:58:94:f2:94:
1a:e3:0c:cb:1e:b3:f0:c5:63:82:5a:35:8f:1a:cd:
87:19:73:8f:05:50:c2:22:b5:d7:0e:b1:09:d6:01:
40:ed:6d:be:2c:a6:ee:00:c8:89:d8:49:f3:25:30:
ca:9b:77:84:99:81:49:25:83:e7:0d:19:20:9c:0f:
e3:0a:a6:76:77:36:ea:b7:8d:1d:ee:af:75:d4:a4:
30:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9E:3F:76:17:63:96:CA:3F:1F:DC:AC:F1:E6:FC:85:92:62:2C:4B
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/IZ4_dhdjlso_H9ys8eb8hZJiLEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.188.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:19:c0:ed:fc:e7:ac:0f:23:bf:54:da:91:12:47:cf:87:8e:
a2:a9:23:2b:6f:89:1f:05:59:94:c2:1f:8d:e1:6a:aa:93:c6:
56:56:98:b7:bd:89:97:45:94:70:70:74:c0:c8:da:94:27:ec:
0a:03:60:02:99:31:ae:3b:4a:c8:71:e5:b4:40:8d:4a:79:5f:
38:a5:e2:98:62:c7:72:eb:2f:c4:00:ea:ca:36:0c:a1:f6:13:
23:21:a2:cc:c3:d4:9e:68:86:aa:99:d5:4e:32:b1:25:3a:7d:
b3:6e:97:12:7d:26:25:e9:7a:7f:4c:06:e5:5f:b0:87:ae:26:
ff:8f:cc:62:25:2d:e2:2d:b8:d6:1b:9b:0a:c0:93:16:4c:82:
e4:8e:38:a1:26:62:e6:b2:35:55:4a:e4:02:06:56:15:70:0f:
d3:95:34:5f:98:3a:3d:92:ad:a6:f8:12:99:fd:ba:83:ec:ac:
35:63:24:85:f0:06:ff:28:1e:99:ef:76:b0:fe:3a:e2:31:1f:
84:3b:8d:94:1f:4b:c5:fe:e4:8d:37:e3:73:99:32:a8:dc:a0:
18:1a:22:4f:a3:f8:4a:cf:d3:8a:52:65:d1:4e:f2:11:e3:b9:
7f:a6:37:0b:b4:f5:e4:a4:8e:38:fa:26:ed:9c:69:7a:80:c2:
4d:6a:48:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org