Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C1PCiehqjkPaIg4776DPHB7k6f4.roa
File: C1PCiehqjkPaIg4776DPHB7k6f4.roa (raw, json)
Hash identifier: Fe812X+xWJWhK6mMeooWfvSVzDPVkl9G7yam1qyKL5w=
Subject key identifier: 0B:53:C2:89:E8:6A:8E:43:DA:22:0E:3B:EF:A0:CF:1C:1E:E4:E9:FE
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01851FEB5E4248EE79F7ACE5489DEB3ACBC5
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C1PCiehqjkPaIg4776DPHB7k6f4.roa
Signing time: Sat 17 Dec 2022 11:49:56 +0000
ROA not before: Sat 17 Dec 2022 11:49:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 5.253.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:eb:5e:42:48:ee:79:f7:ac:e5:48:9d:eb:3a:cb:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 17 11:49:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b53c289e86a8e43da220e3befa0cf1c1ee4e9fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:86:e1:72:e4:55:99:14:76:6a:b4:27:d4:
a5:c9:5e:a0:b4:8f:12:71:63:5a:a7:cc:9c:e5:17:
2a:cc:75:a4:2c:ed:17:03:f4:9a:e5:da:59:bb:b3:
1c:59:90:1c:74:60:80:cb:4e:ff:85:2b:8a:3d:d9:
cb:42:e1:83:4c:3c:11:82:eb:26:06:45:18:1a:bc:
a5:ee:f8:f8:20:49:10:fa:dd:df:eb:53:11:fa:7d:
02:b8:75:50:d3:b8:3a:a2:bd:f8:a4:55:ca:7e:a0:
82:ce:52:68:cc:17:97:44:0a:45:f1:60:dd:d7:4d:
04:5f:d0:d4:5e:23:08:3c:74:02:53:f4:53:bd:98:
22:89:6e:c8:15:4f:e1:e9:75:b3:58:eb:26:3d:ed:
f5:9a:73:30:cb:a5:67:3a:63:18:64:41:87:8c:80:
24:8a:f4:a7:fd:9e:b7:78:72:9b:ab:1d:73:4a:9d:
25:ae:c5:da:6c:f9:f6:af:9c:9c:22:fc:41:da:6e:
62:71:2a:ff:2f:3a:de:89:74:30:e2:72:34:0b:c9:
47:b4:ae:ec:18:15:64:ee:ff:ee:4b:bf:86:3e:d0:
21:f5:b4:ba:2d:23:5e:50:af:bf:aa:57:51:b1:4f:
86:af:61:1e:a7:e3:bd:44:97:f0:10:0d:25:48:a4:
df:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:53:C2:89:E8:6A:8E:43:DA:22:0E:3B:EF:A0:CF:1C:1E:E4:E9:FE
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C1PCiehqjkPaIg4776DPHB7k6f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.37.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a7:18:94:bf:2b:97:09:54:fa:c5:fd:c2:fc:7f:86:0b:f5:
53:63:65:42:3a:0f:7a:ab:24:cb:5f:da:5b:75:2c:4f:9e:5a:
2d:c2:7b:c4:0c:8a:d4:00:33:50:17:fe:5f:05:8a:bd:63:41:
b7:05:ae:49:43:5f:ed:a4:eb:b4:3c:76:2a:f6:53:1c:50:3a:
c4:d9:97:cc:05:d8:46:e9:bb:31:da:e8:a7:79:1b:bf:e4:44:
5e:97:0f:95:d3:96:2c:dd:0a:c9:e8:05:c2:bb:f6:76:b0:cb:
75:19:6a:ca:28:db:34:79:56:63:26:5b:95:8b:1e:1c:b2:c0:
fb:fc:85:d6:62:27:75:00:a4:30:91:a8:8a:c2:68:c9:cd:b4:
c1:70:f4:bc:07:0b:0c:3d:cf:09:1e:c4:63:82:67:62:0e:59:
62:88:03:77:d1:34:74:d9:19:42:c5:eb:a6:a7:0d:15:53:b1:
d6:93:1f:b2:ea:e4:ac:bd:6d:23:5c:70:8d:c8:97:64:29:ab:
ff:32:4f:52:fc:d0:de:af:59:e3:f6:bc:8f:fb:5b:18:86:87:
e6:32:28:08:81:b5:87:d6:c1:58:7e:83:f6:13:58:3f:ae:b5:
66:56:5c:43:37:8e:4b:d3:a3:76:bd:3d:78:f7:6b:81:5c:2a:
c6:91:f1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:40 2025 by rpki-client