Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/UVJZj8DTOqDjjtG8baqQ_aSaCN0.roa
File: UVJZj8DTOqDjjtG8baqQ_aSaCN0.roa (raw, json)
Hash identifier: LKjUVqfGwzd4i7IO4o0uktkOqa+iwYeqhwf6F1iQxW0=
Subject key identifier: 51:52:59:8F:C0:D3:3A:A0:E3:8E:D1:BC:6D:AA:90:FD:A4:9A:08:DD
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 09B1A9C8
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/UVJZj8DTOqDjjtG8baqQ_aSaCN0.roa
Signing time: Thu 28 Apr 2022 20:35:37 +0000
ROA not before: Thu 28 Apr 2022 20:35:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41327
IP address blocks: 5.183.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162638280 (0x9b1a9c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Apr 28 20:35:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5152598fc0d33aa0e38ed1bc6daa90fda49a08dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:57:58:15:0f:81:26:15:ba:44:c3:39:bd:
ae:d8:b9:c9:45:46:8d:0a:51:85:4d:a5:40:6c:ac:
92:81:33:c8:1b:ce:f1:27:83:88:d6:ec:9c:15:9d:
15:6e:76:1b:db:f4:e3:e7:fd:0e:81:cc:7d:9e:b6:
cc:9f:ca:6f:29:b7:44:80:92:84:7b:82:21:5b:a7:
1b:28:11:80:6e:1c:49:64:1f:36:44:61:ad:0f:7e:
c3:42:04:d2:e1:ec:f0:cf:c4:56:78:a2:2f:96:a4:
bc:81:00:ed:af:ad:bf:24:7f:22:08:2d:43:5d:94:
62:27:ba:ac:b9:10:0c:7e:33:4a:7f:af:b8:a3:59:
2d:2b:db:23:46:9c:2a:87:c0:04:04:e1:67:4a:de:
62:68:61:c0:3b:e2:c5:cd:d2:6d:1e:2a:cf:ab:12:
d2:af:c1:ec:c0:6c:54:02:44:ad:89:05:da:f0:1b:
c7:02:92:17:20:42:aa:84:3e:a4:e5:1e:ec:f9:8d:
e2:2d:1f:f5:0b:75:05:c6:50:07:37:11:4c:e4:7b:
42:3d:be:77:24:18:cb:4e:b0:2b:14:8d:e7:44:bb:
1a:e6:d3:f1:a4:09:1f:78:2f:05:f1:0d:af:b1:a2:
14:af:11:41:e4:b1:7d:87:54:cb:c9:9a:fb:34:2e:
58:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:52:59:8F:C0:D3:3A:A0:E3:8E:D1:BC:6D:AA:90:FD:A4:9A:08:DD
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/UVJZj8DTOqDjjtG8baqQ_aSaCN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.110.0/24
Signature Algorithm: sha256WithRSAEncryption
56:9b:09:56:5e:66:29:c5:86:d1:76:c5:b4:8f:e8:5e:26:29:
eb:c1:05:01:ab:95:8b:f2:c2:4a:ea:2a:9f:8d:60:74:1c:5e:
0f:ad:7f:50:22:0f:a6:a3:73:86:c7:f9:6a:61:73:80:fa:34:
5f:36:a6:fb:5c:56:6c:4b:e8:7a:6e:e1:61:0a:47:b0:f0:d5:
bd:ee:a9:e0:84:fc:f7:02:fd:d4:1b:9c:2e:57:52:d1:b4:48:
b5:55:e2:6d:e2:3e:4c:7d:ca:34:cd:d0:93:c5:a9:2d:89:d5:
fd:36:ea:88:84:4f:83:64:c9:4a:90:01:f4:59:46:21:43:d3:
64:35:94:27:82:cb:d3:f4:ca:da:6d:d9:77:63:a8:ce:bb:bd:
40:e3:f1:f9:cb:6f:ce:ce:81:e0:51:40:35:27:76:32:b6:7e:
08:be:1a:b6:f8:b5:0d:a8:69:22:be:16:66:db:02:ae:28:31:
e2:7a:23:a2:2a:5a:aa:ef:bb:63:3a:42:5e:88:cb:7a:ce:9a:
9e:f2:68:3f:29:88:aa:6a:b3:96:76:e3:42:bd:32:a6:1c:94:
ef:25:c1:50:b9:a2:00:0f:01:52:6f:ff:3e:e0:10:95:8a:5e:
94:cd:39:3e:14:67:f7:11:c6:63:0c:2a:28:e5:02:57:7f:46:
70:b5:96:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:07 2025 by rpki-client