Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/8lmPsFEULTU5tbdYHcVyMkmXdfI.roa
File: 8lmPsFEULTU5tbdYHcVyMkmXdfI.roa (raw, json)
Hash identifier: NqUgl0mI6/73mSE83ZvtBdFcIVbUPLEnltyildKQhmg=
Subject key identifier: F2:59:8F:B0:51:14:2D:35:39:B5:B7:58:1D:C5:72:32:49:97:75:F2
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 09B21DCC
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/8lmPsFEULTU5tbdYHcVyMkmXdfI.roa
Signing time: Thu 28 Apr 2022 20:35:38 +0000
ROA not before: Thu 28 Apr 2022 20:35:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205422
IP address blocks: 5.183.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162667980 (0x9b21dcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Apr 28 20:35:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2598fb051142d3539b5b7581dc57232499775f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:71:22:3c:85:be:5a:c3:45:29:8b:4f:26:5e:
08:bb:48:13:2d:86:4b:f8:4b:02:68:6f:6e:15:4e:
0a:63:ee:f3:58:8b:33:33:2e:9a:c2:87:60:ee:69:
11:1d:65:6f:6d:b9:90:70:23:96:55:a9:fc:fa:ae:
06:e9:8f:0b:84:60:86:f6:2f:e9:5d:71:ac:ba:19:
0a:73:9b:1c:a3:3b:7e:c1:fc:6f:05:bb:b5:a1:fe:
79:0f:b4:2a:6b:b1:1c:29:12:64:2b:7e:6e:1e:eb:
2f:9b:94:45:5c:30:0f:45:f9:0c:a2:a4:f0:7a:78:
c9:90:16:50:79:4e:2e:89:af:d0:c3:21:27:62:aa:
01:f0:78:f4:ae:9a:03:70:8d:02:c7:c2:dd:13:31:
47:d2:f9:4f:8c:e9:2b:c6:c5:e7:09:6d:ba:99:e4:
08:35:23:62:76:5a:e0:50:24:7c:35:06:f3:84:91:
08:81:a8:a7:33:4c:2e:ad:63:16:6e:7b:bf:da:9d:
01:d3:9b:39:a1:17:f8:4a:38:65:73:09:56:eb:d6:
42:8e:fc:96:a1:ec:cf:7c:a2:b7:c4:2d:9d:8c:57:
3b:0f:ac:e7:76:f2:81:6c:ea:44:b8:dd:2f:64:7c:
84:20:72:a0:34:a1:18:f4:d4:0b:c8:60:58:f5:3f:
8e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:59:8F:B0:51:14:2D:35:39:B5:B7:58:1D:C5:72:32:49:97:75:F2
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/8lmPsFEULTU5tbdYHcVyMkmXdfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.109.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d7:18:28:e1:98:fd:7d:a4:90:0d:48:62:2e:74:c5:82:92:
4e:61:47:1e:e1:57:cd:a3:c7:17:b6:26:e7:4a:b8:f6:57:6c:
84:cd:5c:8f:c0:2d:4e:eb:67:fd:f1:dc:ab:77:55:d4:1e:b6:
96:13:c8:de:61:7d:94:6c:80:47:3f:84:29:a1:25:cd:49:17:
fe:01:67:fc:ca:a4:9a:cf:6d:cb:96:b1:89:fc:71:6f:b4:3c:
ca:98:a2:43:a0:ea:4b:6b:91:a5:d6:ce:b2:df:34:f2:51:7a:
d1:43:4a:12:03:b6:e5:d7:b7:57:12:54:27:f2:11:53:b8:7d:
69:29:5b:00:5e:dd:50:0e:9a:2f:9a:5e:80:f2:73:76:e8:26:
83:af:c9:4b:59:5a:98:a9:be:3f:45:20:a4:67:0b:b0:04:2b:
a3:bf:0e:f3:8d:a1:4e:54:d5:24:a0:fe:4a:3f:f3:3a:53:4e:
38:45:0a:ae:17:73:f1:fb:c6:85:b4:0a:bb:aa:b0:5a:65:02:
4a:80:fc:4c:9b:36:8e:91:4d:65:88:04:88:7d:df:af:27:7f:
9d:d5:e3:e9:85:b1:6c:ba:4c:47:2d:fa:d9:02:63:98:9c:66:
c3:0a:12:41:f2:a3:4b:ae:1f:e1:f7:2e:8f:5a:a0:6b:41:9c:
16:ca:82:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:14 2024 by rpki-client on console-ams.rpki-client.org