Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/KmOLAaCerfufONl-aV9kMkxdWv0.roa
File: KmOLAaCerfufONl-aV9kMkxdWv0.roa (raw, json)
Hash identifier: at5luCNyRDUG12X36Pj+dcrZ805XSZgJXiM+B1et6qU=
Subject key identifier: 2A:63:8B:01:A0:9E:AD:FB:9F:38:D9:7E:69:5F:64:32:4C:5D:5A:FD
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182A18F3C78E4C7E0E03EDCF4D3CB73E05D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/KmOLAaCerfufONl-aV9kMkxdWv0.roa
Signing time: Mon 15 Aug 2022 12:51:35 +0000
ROA not before: Mon 15 Aug 2022 12:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210122
IP address blocks: 5.180.34.0/24 maxlen: 24
5.180.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a1:8f:3c:78:e4:c7:e0:e0:3e:dc:f4:d3:cb:73:e0:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 15 12:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a638b01a09eadfb9f38d97e695f64324c5d5afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b2:1b:da:5c:63:de:21:13:b9:d3:d9:df:e1:
61:6d:15:aa:7c:17:c3:4d:3d:75:c6:5e:92:7b:82:
88:f7:f9:22:5b:00:1d:2c:69:b0:ab:f9:3c:f3:e2:
df:d5:92:a0:4f:f6:f9:2a:0c:93:0f:5f:7b:73:4c:
1b:25:ed:ee:37:b5:9e:ce:c5:36:4e:be:35:18:0b:
e3:d8:76:48:11:04:cf:a1:97:05:be:5b:c4:04:ee:
0d:e5:a4:03:f8:20:70:1b:ed:79:ed:21:5d:ca:f7:
f8:b2:03:8a:9e:07:ad:b5:b2:5c:49:ef:32:b6:65:
c4:d6:44:0c:93:ed:a6:2d:84:63:30:cf:b6:80:48:
14:64:17:ff:29:5f:f3:3f:19:21:86:bd:7e:60:0b:
3e:66:bf:03:b8:fa:a7:ef:63:5c:50:20:e7:06:e7:
da:fd:bb:7f:56:5e:2a:c1:fb:04:41:be:62:d7:4b:
23:a6:5f:01:c6:61:17:2a:a4:9b:83:17:bb:39:5d:
1b:3f:63:2e:f7:8c:8b:80:ac:19:de:bf:9c:14:b9:
fd:40:bf:79:b9:56:06:61:10:90:dc:e9:9e:c7:87:
0b:09:11:f8:51:53:cd:1a:89:bc:2e:1a:0f:a5:7b:
4a:d5:57:b8:0c:ac:ae:a8:83:3e:01:37:00:31:d5:
9d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:63:8B:01:A0:9E:AD:FB:9F:38:D9:7E:69:5F:64:32:4C:5D:5A:FD
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/KmOLAaCerfufONl-aV9kMkxdWv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.33.0-5.180.34.255
Signature Algorithm: sha256WithRSAEncryption
9b:b5:0d:69:a5:e8:10:fd:12:fb:aa:a6:4f:0a:39:4e:b4:1d:
cc:9c:df:44:a2:0d:e2:33:5d:2a:d6:f4:b5:3b:88:8a:e6:89:
19:2a:73:3a:9e:1b:28:d1:ca:c7:e4:4c:37:d9:cc:f2:0e:12:
eb:d2:c1:68:4a:ea:96:10:3f:a9:09:ae:5c:4e:21:7a:22:2b:
13:0c:e1:95:2c:de:f9:02:5f:52:9e:fd:a7:5d:6a:ee:11:8a:
0c:a3:af:56:01:ea:1c:27:47:a7:3e:2d:28:79:bd:4e:a6:1c:
46:b8:aa:1d:92:99:ad:03:db:bc:d8:28:18:53:d5:b6:b5:ec:
96:f3:ca:c0:dd:5f:19:c4:d9:88:e8:20:e1:98:ef:8d:fc:53:
9d:7a:6e:ae:f8:23:d0:70:72:22:67:6e:b7:d8:18:dd:a7:5e:
60:d5:5c:2c:97:f3:39:9e:e3:17:e6:5e:fb:37:aa:7c:32:06:
e9:27:48:82:8f:27:c5:e4:ec:32:c9:f6:9e:32:c4:b9:26:cb:
05:0c:0b:7d:a8:6d:ad:e5:8d:e6:6e:ca:52:d5:cb:ed:7d:61:
ae:e9:18:94:d8:af:99:ac:0e:1f:27:72:7d:61:b7:e9:ec:10:
2a:67:ed:2c:fd:96:69:2b:fb:e1:07:bc:a0:77:c0:4d:dd:09:
4b:5a:eb:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:04 2025 by rpki-client