Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ZjxBI9zV7N53speuu6HTKwfmE24.roa
File: ZjxBI9zV7N53speuu6HTKwfmE24.roa (raw, json)
Hash identifier: xM/b1LF6wASepTrk+fHsvY0RfimDzmFmwAU8W5eGZg4=
Subject key identifier: 66:3C:41:23:DC:D5:EC:DE:77:B2:97:AE:BB:A1:D3:2B:07:E6:13:6E
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 01246692
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ZjxBI9zV7N53speuu6HTKwfmE24.roa
Signing time: Wed 20 Apr 2022 07:34:46 +0000
ROA not before: Wed 20 Apr 2022 07:34:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 5.249.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19162770 (0x1246692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Apr 20 07:34:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=663c4123dcd5ecde77b297aebba1d32b07e6136e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:17:88:e9:3c:f9:94:81:ee:a5:8b:da:3b:5c:
77:31:8a:86:b1:6e:64:60:48:36:0d:9b:a9:69:fa:
06:0f:ac:62:7f:83:94:72:f9:8e:f3:b1:a4:67:ee:
4e:27:74:ef:cf:87:38:14:13:6d:bd:cf:39:13:dd:
95:d8:c8:b1:9e:23:4e:e9:a2:3a:95:c6:d1:96:dd:
cd:8b:10:53:52:19:a4:98:6d:27:c6:ac:b5:22:de:
46:e7:b2:b4:9d:f8:12:4e:8f:3f:6e:51:8c:01:29:
76:b5:f6:01:37:5d:48:23:a1:82:13:e8:f1:32:83:
53:d9:a4:b3:83:ae:95:0c:87:37:64:2b:1e:14:41:
e3:6b:5e:9f:36:b4:c6:1e:ef:65:0d:8a:b6:e3:bf:
1c:6a:72:ca:b8:26:1f:da:f6:2e:f2:db:90:eb:ad:
ea:7f:7f:c4:e5:6f:46:cf:80:4c:c8:40:89:fb:e1:
ad:77:0f:d8:42:3f:da:09:a7:d0:c9:c9:43:b4:18:
7f:b0:0c:7c:ea:62:65:ab:2d:94:c2:2c:5a:69:01:
38:42:21:d0:8e:c3:e3:8e:f2:84:8a:9d:f6:02:59:
8d:a9:5f:e5:b0:2b:5b:ba:31:d1:6b:05:c4:f2:8d:
02:8a:fa:6c:20:b2:d1:b8:4c:23:e0:f1:bc:96:76:
0a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3C:41:23:DC:D5:EC:DE:77:B2:97:AE:BB:A1:D3:2B:07:E6:13:6E
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/ZjxBI9zV7N53speuu6HTKwfmE24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.184.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:46:a0:f9:8b:be:25:b5:72:14:9a:fd:87:05:96:3a:f5:34:
08:9a:e5:ef:27:39:63:10:6a:74:9b:b4:fb:80:ae:e4:22:f1:
aa:c2:8b:75:ac:44:5a:39:f1:43:16:34:68:74:45:e5:96:0d:
00:0e:fa:04:2d:a4:32:21:38:66:a4:28:26:e7:6e:50:21:b1:
06:38:a7:e5:3c:d8:35:20:34:ea:aa:0e:35:13:46:19:d9:3d:
df:c2:5a:ef:18:5f:a3:19:bc:2a:c0:52:62:ec:86:cf:fc:13:
a5:ee:bc:9a:d0:ed:12:62:9e:3f:67:cd:7b:e3:0c:7a:0f:8f:
5e:8e:1c:5b:d0:8b:b4:22:28:c6:be:a2:69:f2:d9:e2:f5:eb:
18:81:87:48:ec:19:99:41:1a:46:b5:8e:94:d4:7d:3d:94:3b:
cd:38:fa:c6:cb:52:11:27:a1:de:56:3e:b0:94:d6:0f:96:69:
ea:8f:81:7d:dd:89:5e:c4:54:10:96:c0:a5:38:be:b8:f6:5e:
86:83:4f:51:36:fb:0c:e7:96:02:c0:8e:6e:ad:f3:01:17:b5:
58:e8:20:15:e7:4e:e1:2b:9b:5e:f3:b9:8a:81:dc:eb:74:1b:
fa:34:6b:f0:fa:2c:44:75:c1:57:70:e0:c5:55:45:45:09:36:
3e:80:19:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org