Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/1c718d-e7a0-40ac-a181-cbaa42a62727/1/5OjLUxqzKNNIY0gtBYmb3HeqD_I.roa
File: 5OjLUxqzKNNIY0gtBYmb3HeqD_I.roa (raw, json)
Hash identifier: 6pa+czVHUZJO/ZaYBVLHkX1x3p5Xl6Z5rZJCRkcW9yQ=
Subject key identifier: E4:E8:CB:53:1A:B3:28:D3:48:63:48:2D:05:89:9B:DC:77:AA:0F:F2
Certificate issuer: /CN=d07dc35ebcd88dd0e2a8db3a5a08654bc3be0262
Certificate serial: 0ACD8F04
Authority key identifier: D0:7D:C3:5E:BC:D8:8D:D0:E2:A8:DB:3A:5A:08:65:4B:C3:BE:02:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H3DXrzYjdDiqNs6WghlS8O-AmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/1c718d-e7a0-40ac-a181-cbaa42a62727/1/5OjLUxqzKNNIY0gtBYmb3HeqD_I.roa
Signing time: Sat 01 Jan 2022 09:06:19 +0000
ROA not before: Sat 01 Jan 2022 09:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60358
IP address blocks: 5.44.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181243652 (0xacd8f04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07dc35ebcd88dd0e2a8db3a5a08654bc3be0262
Validity
Not Before: Jan 1 09:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4e8cb531ab328d34863482d05899bdc77aa0ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d7:84:8b:7e:99:47:25:5f:e8:6b:20:5f:99:
74:2a:95:64:8b:b1:bb:8d:f2:7b:78:09:14:f8:bd:
8f:ac:79:a9:2e:0c:ff:7e:8d:99:b0:7d:00:bd:c5:
fe:5f:7b:fc:cb:ba:80:b6:22:fa:60:ac:cb:86:18:
4b:6d:e6:b7:ee:10:ac:64:ad:3c:02:6d:80:fb:a2:
90:35:32:80:22:b0:cc:7a:4b:c3:40:88:7c:dd:b9:
23:fa:da:cb:da:07:20:21:7f:64:55:73:9e:4c:3c:
13:32:b0:c2:09:a3:7e:1b:bf:d9:e5:93:fb:38:95:
4f:82:1b:30:80:9c:a6:40:bd:30:ac:48:9d:31:5b:
12:a7:6d:db:89:ea:67:81:d0:46:6d:c4:70:3f:97:
7b:8e:8c:4b:0a:e6:f1:64:73:7f:df:5a:4e:b7:84:
27:9d:c9:ce:1a:9b:ed:b7:9a:55:6d:43:8f:ee:9f:
4e:3b:ee:5a:a2:e5:3f:fd:ae:a7:98:65:30:f8:df:
7d:6b:f7:0c:58:0d:51:cf:db:da:63:1c:c9:9c:92:
4e:43:80:8c:42:18:5b:07:9a:dc:0a:ea:7b:d4:41:
61:b0:86:eb:6b:d1:bc:7c:01:8f:16:15:84:76:5e:
42:6c:a8:44:d1:e7:7e:76:5c:77:af:05:76:21:5c:
06:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E8:CB:53:1A:B3:28:D3:48:63:48:2D:05:89:9B:DC:77:AA:0F:F2
X509v3 Authority Key Identifier:
keyid:D0:7D:C3:5E:BC:D8:8D:D0:E2:A8:DB:3A:5A:08:65:4B:C3:BE:02:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H3DXrzYjdDiqNs6WghlS8O-AmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/1c718d-e7a0-40ac-a181-cbaa42a62727/1/5OjLUxqzKNNIY0gtBYmb3HeqD_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/1c718d-e7a0-40ac-a181-cbaa42a62727/1/0H3DXrzYjdDiqNs6WghlS8O-AmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.79.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:88:05:08:d9:c4:39:54:73:00:0e:2b:d5:9d:f7:02:e9:01:
89:2f:a5:50:7d:55:59:8b:99:53:05:8c:a7:6f:26:98:95:88:
76:3e:2a:cf:e7:6c:3c:6e:78:4d:95:26:e8:65:16:84:0c:c0:
ed:3c:cd:c2:ce:2a:f4:7a:41:cf:24:00:c6:dd:0b:55:7e:e4:
d6:1e:89:98:cf:9c:2b:38:81:fa:c7:bc:e1:44:46:ea:d4:01:
e1:a2:c0:6c:b0:a8:33:b3:18:81:3a:aa:95:f6:85:ce:cc:2b:
e5:d1:d3:7f:c7:71:8c:f3:77:07:44:e5:82:99:f5:ea:57:4a:
e6:33:1c:63:ea:b2:9d:92:76:42:88:25:26:39:d3:4f:93:42:
d7:cf:9e:c0:4e:b0:76:ce:da:72:53:f6:55:5c:f5:cb:15:6b:
1b:5d:ae:64:51:28:7b:02:c5:1c:d8:28:bb:33:33:f8:5d:99:
ed:52:0a:53:c3:06:db:d4:09:d4:52:70:d1:e5:df:f1:c9:5d:
5c:43:82:94:a4:4c:a6:80:66:f0:57:79:e5:e1:7c:37:13:71:
57:26:a6:dc:39:39:ae:1c:9d:f2:75:2f:d2:2c:c7:7e:3f:61:
fe:82:6a:f8:01:a2:46:9c:0a:12:c3:29:a7:85:fa:32:51:49:
af:05:1b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:00 2023 by rpki-client on console-fra.rpki-client.org