Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/5GMRtArAlb8hNnPvTehCLTyvJVU.roa
File: 5GMRtArAlb8hNnPvTehCLTyvJVU.roa (raw, json)
Hash identifier: AteBk08tF/Xz9rFIN/XVsMT3Hbzs7TeWggqCNCr+I9g=
Subject key identifier: E4:63:11:B4:0A:C0:95:BF:21:36:73:EF:4D:E8:42:2D:3C:AF:25:55
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 43AA81A4
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/5GMRtArAlb8hNnPvTehCLTyvJVU.roa
Signing time: Sat 01 Jan 2022 14:00:58 +0000
ROA not before: Sat 01 Jan 2022 14:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49666
IP address blocks: 176.65.243.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1135247780 (0x43aa81a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 14:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e46311b40ac095bf213673ef4de8422d3caf2555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:84:44:14:a7:90:1b:ed:35:8e:95:05:b6:0f:
10:b7:97:31:f4:7c:04:bc:2b:49:fe:87:a0:25:2e:
ba:0c:33:4e:29:87:b6:08:42:25:a6:39:49:c1:b6:
80:e3:ae:38:dd:ea:d9:d2:43:ba:67:89:f0:8d:ac:
5c:91:43:eb:2e:c8:03:cd:71:54:7d:ca:08:14:91:
95:ef:1e:9b:be:b7:27:74:4d:69:a0:2b:31:8a:c5:
19:81:8f:61:0a:7d:5d:4f:04:62:58:81:7e:97:f2:
97:44:de:65:f8:e5:29:fb:b0:2a:02:90:b7:d6:cd:
33:09:17:a8:c1:1a:b3:c2:24:30:cc:cb:08:27:18:
43:33:0d:69:63:34:d9:c9:33:13:db:29:06:99:73:
1d:13:cb:00:50:14:60:6d:30:dc:28:e8:54:58:50:
2e:16:24:0b:0a:16:36:10:41:3e:f2:da:74:8c:82:
36:c1:be:25:bb:a4:aa:fc:f3:b7:a4:89:1c:9b:ca:
85:d0:e8:56:b3:a4:18:45:e4:37:ed:36:35:2c:20:
d3:7e:71:43:db:0b:30:4f:aa:41:7c:0c:19:81:4d:
55:6e:7c:c3:7c:74:73:99:05:27:56:22:7c:9b:99:
60:4f:ab:f4:88:8e:50:16:8b:43:e5:73:2b:f6:36:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:63:11:B4:0A:C0:95:BF:21:36:73:EF:4D:E8:42:2D:3C:AF:25:55
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/5GMRtArAlb8hNnPvTehCLTyvJVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.65.243.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:87:f5:36:5e:13:15:fb:82:6a:69:9f:f9:07:5c:ac:ff:42:
5a:e3:be:1f:88:ac:1b:cd:bd:b5:9b:1c:28:38:f0:b3:44:e1:
53:43:aa:95:b0:e4:60:d4:8a:f9:ea:db:7a:1c:26:6d:cd:76:
9d:cb:10:c3:43:d0:e0:95:e3:a5:fc:67:85:ca:9f:c9:de:6a:
ed:04:58:c8:47:7c:53:4a:0a:56:5b:5c:6d:6d:a3:68:dc:2f:
b1:14:d7:38:00:75:99:bd:70:05:7e:13:37:3e:91:69:e6:b7:
63:e5:a1:cd:61:ae:73:b0:6e:89:80:b9:d1:ea:64:b7:f7:65:
63:7f:a4:27:bc:41:b6:81:d8:28:28:24:de:a2:e2:82:3e:51:
ae:37:9d:a9:30:e4:fa:60:dc:3e:dc:8e:f5:d0:7a:e5:48:b1:
64:a6:b0:09:44:38:94:2d:71:30:4d:20:f0:dd:5b:78:83:1f:
9f:d2:29:1a:a7:ba:8f:3f:3a:6f:14:2c:46:ac:df:e0:f7:c5:
5b:3e:77:51:f0:49:15:dd:16:5f:98:fe:23:ff:6e:5f:7d:fc:
9e:eb:15:e2:ea:29:b4:1d:b3:d9:87:f0:bc:34:2a:8b:05:1a:
42:3a:fb:7d:cf:b7:27:6f:16:e6:6a:5b:12:bc:09:ba:48:5a:
21:33:b7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:59 2025 by rpki-client