Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/cdbfbd-ed67-44b7-9e1f-b29107b98acc/1/5FUrfiNkEjumCHGF6VEdj4a0SdE.roa
File: 5FUrfiNkEjumCHGF6VEdj4a0SdE.roa (raw, json)
Hash identifier: q+XN+/Y372qYsIQcfJiZVeHdBIlcq5o/u1gUFt0wyuU=
Subject key identifier: E4:55:2B:7E:23:64:12:3B:A6:08:71:85:E9:51:1D:8F:86:B4:49:D1
Certificate issuer: /CN=27f958c3b759b2c7896f5ed663e807781f3ff5a2
Certificate serial: 01DF24
Authority key identifier: 27:F9:58:C3:B7:59:B2:C7:89:6F:5E:D6:63:E8:07:78:1F:3F:F5:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_lYw7dZsseJb17WY-gHeB8_9aI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/cdbfbd-ed67-44b7-9e1f-b29107b98acc/1/5FUrfiNkEjumCHGF6VEdj4a0SdE.roa
Signing time: Thu 06 Jan 2022 13:54:54 +0000
ROA not before: Thu 06 Jan 2022 13:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 5.1.120.0/23 maxlen: 23
2a02:e740::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122660 (0x1df24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f958c3b759b2c7896f5ed663e807781f3ff5a2
Validity
Not Before: Jan 6 13:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4552b7e2364123ba6087185e9511d8f86b449d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9e:88:35:16:50:7f:8b:48:5f:08:20:22:3e:
b5:42:bb:80:fd:e6:bd:ca:92:b9:00:84:ab:00:bf:
66:62:c7:d9:50:b2:65:99:1f:0b:0f:17:ef:13:f4:
f7:26:22:83:de:ab:dc:9f:b1:75:e1:a8:32:aa:48:
82:88:31:2e:4c:43:ea:1d:15:d6:98:66:55:be:b7:
bb:bf:22:5e:76:9e:a8:05:a6:12:6e:1f:18:14:17:
67:17:32:83:00:b9:ef:a2:df:70:98:ac:0f:33:bf:
2c:3c:e0:8f:88:32:39:04:df:e0:53:94:e2:9f:b7:
a0:e8:51:9a:74:5f:67:67:11:ea:25:92:c8:b5:49:
78:13:2b:8d:83:79:14:55:a3:39:d3:68:2e:62:d9:
ef:ec:74:c4:26:0c:1d:94:b8:b9:2b:37:5a:b8:4a:
34:b9:a2:07:1f:57:46:03:1d:74:3a:d8:24:19:b4:
2a:bf:29:81:d2:b0:00:80:44:e4:f9:90:b3:f3:4c:
96:ed:37:dd:b5:3b:7e:44:8d:94:d6:aa:9a:e5:3d:
bf:2c:53:d1:91:ea:b3:ee:9b:23:2c:ab:40:89:3e:
8d:f4:03:4d:d1:cd:ba:75:6b:16:99:9a:fc:44:28:
cb:ce:23:42:38:52:ff:03:6a:79:28:2b:94:8a:eb:
ab:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:55:2B:7E:23:64:12:3B:A6:08:71:85:E9:51:1D:8F:86:B4:49:D1
X509v3 Authority Key Identifier:
keyid:27:F9:58:C3:B7:59:B2:C7:89:6F:5E:D6:63:E8:07:78:1F:3F:F5:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_lYw7dZsseJb17WY-gHeB8_9aI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/cdbfbd-ed67-44b7-9e1f-b29107b98acc/1/5FUrfiNkEjumCHGF6VEdj4a0SdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/cdbfbd-ed67-44b7-9e1f-b29107b98acc/1/J_lYw7dZsseJb17WY-gHeB8_9aI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.120.0/23
IPv6:
2a02:e740::/48
Signature Algorithm: sha256WithRSAEncryption
20:02:c7:08:4b:ba:6a:86:98:3f:9f:46:f6:7e:ca:05:58:48:
9e:9d:fc:7c:8a:c4:d0:a6:1f:2a:7d:35:b0:d2:b5:f4:ef:af:
ea:ac:e4:69:72:2e:e4:b7:1a:cc:3e:8c:ec:a6:8c:cb:69:dc:
44:b0:22:7b:f8:b2:4a:d9:74:20:2b:29:75:fc:c9:55:0f:b3:
86:c2:ab:4e:11:36:9d:78:9d:27:bc:bf:22:30:f4:76:8c:ea:
99:12:9f:eb:df:84:3c:3f:a5:f1:90:e4:c3:20:92:76:e3:50:
aa:b2:63:c8:89:61:9e:b8:83:42:67:c1:66:80:fd:86:bd:66:
c3:6b:6f:9b:33:be:3a:fb:cc:9b:94:73:35:e4:43:a0:06:61:
6e:00:e1:72:bf:0e:76:f1:ee:4c:39:21:92:9b:43:0e:90:56:
78:a5:82:86:ea:81:d6:13:d0:ca:e8:36:01:7e:21:78:de:98:
8f:14:9c:d4:d3:9f:83:0c:bf:3b:59:8c:8a:34:ba:d5:4a:b2:
0c:75:e6:79:b0:9d:42:e3:14:79:15:aa:df:a5:8d:ff:54:2f:
ac:45:8d:b7:74:54:33:24:18:de:17:8a:41:3e:7e:c2:21:14:
f7:60:5e:10:93:06:92:62:c5:03:25:62:0d:ea:e4:46:bc:6c:
d9:c6:08:6e
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIDAd8kMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI3
Zjk1OGMzYjc1OWIyYzc4OTZmNWVkNjYzZTgwNzc4MWYzZmY1YTIwHhcNMjIwMTA2
MTM1NDU0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlNDU1MmI3ZTIzNjQx
MjNiYTYwODcxODVlOTUxMWQ4Zjg2YjQ0OWQxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsJ6INRZQf4tIXwggIj61QruA/ea9ypK5AISrAL9mYsfZULJl
mR8LDxfvE/T3JiKD3qvcn7F14agyqkiCiDEuTEPqHRXWmGZVvre7vyJedp6oBaYS
bh8YFBdnFzKDALnvot9wmKwPM78sPOCPiDI5BN/gU5Tin7eg6FGadF9nZxHqJZLI
tUl4EyuNg3kUVaM502guYtnv7HTEJgwdlLi5KzdauEo0uaIHH1dGAx10OtgkGbQq
vymB0rAAgETk+ZCz80yW7TfdtTt+RI2U1qqa5T2/LFPRkeqz7psjLKtAiT6N9ANN
0c26dWsWmZr8RCjLziNCOFL/A2p5KCuUiuurEQIDAQABo4ICGjCCAhYwHQYDVR0O
BBYEFORVK34jZBI7pghxhelRHY+GtEnRMB8GA1UdIwQYMBaAFCf5WMO3WbLHiW9e
1mPoB3gfP/WiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
Sl9sWXc3ZFpzc2VKYjE3V1ktZ0hlQjhfOWFJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hMy9jZGJmYmQtZWQ2Ny00NGI3LTllMWYtYjI5MTA3Yjk4YWNjLzEv
NUZVcmZpTmtFanVtQ0hHRjZWRWRqNGEwU2RFLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9j
ZGJmYmQtZWQ2Ny00NGI3LTllMWYtYjI5MTA3Yjk4YWNjLzEvSl9sWXc3ZFpzc2VK
YjE3V1ktZ0hlQjhfOWFJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAG
CCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBBQF4MA8EAgACMAkDBwAqAudAAAAw
DQYJKoZIhvcNAQELBQADggEBACACxwhLumqGmD+fRvZ+ygVYSJ6d/HyKxNCmHyp9
NbDStfTvr+qs5GlyLuS3Gsw+jOymjMtp3ESwInv4skrZdCArKXX8yVUPs4bCq04R
Np14nSe8vyIw9HaM6pkSn+vfhDw/pfGQ5MMgknbjUKqyY8iJYZ64g0JnwWaA/Ya9
ZsNrb5szvjr7zJuUczXkQ6AGYW4A4XK/Dnbx7kw5IZKbQw6QVnilgobqgdYT0Mro
NgF+IXjemI8UnNTTn4MMvztZjIo0utVKsgx15nmwnULjFHkVqt+ljf9UL6xFjbd0
VDMkGN4XikE+fsIhFPdgXhCTBpJixQMlYg3q5Ea8bNnGCG4=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:33 2023 by rpki-client on console-ams.rpki-client.org