Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ROY2dt6S6T3MJwj3ZUWR5PWDTLE.roa
File: ROY2dt6S6T3MJwj3ZUWR5PWDTLE.roa (raw, json)
Hash identifier: SmBo2RRmuINabs63/Hq1LLdLZ7UO16t4Sm6veln+2xg=
Subject key identifier: 44:E6:36:76:DE:92:E9:3D:CC:27:08:F7:65:45:91:E4:F5:83:4C:B1
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182A64C4F53B1F5C51048EA8665247574B3
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ROY2dt6S6T3MJwj3ZUWR5PWDTLE.roa
Signing time: Tue 16 Aug 2022 10:56:35 +0000
ROA not before: Tue 16 Aug 2022 10:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48678
IP address blocks: 5.180.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:4c:4f:53:b1:f5:c5:10:48:ea:86:65:24:75:74:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 16 10:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44e63676de92e93dcc2708f7654591e4f5834cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1d:42:f4:45:82:0d:67:54:66:fc:72:75:9b:
82:c6:9b:73:54:7d:5a:ce:17:df:23:e7:18:01:14:
7c:99:f3:ef:70:6e:d3:4e:ca:25:cc:61:98:39:ed:
06:53:07:14:27:8d:ee:68:5b:56:8d:5c:47:ad:51:
97:42:d8:67:b4:3b:4a:80:22:56:39:62:b6:bf:b9:
2a:64:ca:0c:9f:4a:3a:04:ee:4d:44:e6:0d:3d:49:
ed:5b:eb:5e:91:7d:02:38:b0:17:e3:57:a7:f2:8e:
ee:f4:21:42:f5:a2:05:da:45:b5:e4:f2:f2:55:ef:
59:70:b5:50:80:55:f2:28:fa:5d:c5:33:29:a7:b6:
44:41:3a:a5:b5:b9:bf:d9:fd:1d:25:1f:11:b3:f2:
42:d3:ba:7a:76:a2:89:e4:f9:93:74:42:82:00:7d:
ae:c3:5f:6a:08:4a:43:2f:45:73:06:51:b6:c6:07:
5a:a1:36:61:4b:e0:25:8f:e3:50:8e:a7:23:79:f5:
8d:22:1e:5d:c5:d4:aa:33:d1:bb:89:70:46:0f:1d:
51:a0:e3:c1:7e:89:8c:54:3a:3b:08:2f:2f:1f:84:
24:e0:ef:3c:cc:5d:de:e4:fe:8f:51:f3:4e:fc:53:
dd:15:fe:7b:a4:1a:d4:ce:5e:86:20:88:af:97:19:
b0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E6:36:76:DE:92:E9:3D:CC:27:08:F7:65:45:91:E4:F5:83:4C:B1
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/ROY2dt6S6T3MJwj3ZUWR5PWDTLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.49.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:17:19:84:fa:ef:38:54:d3:85:f2:59:33:17:0f:c7:e1:db:
91:cc:88:d2:c8:ac:61:e7:e0:7a:91:12:44:f0:aa:28:24:d6:
47:2b:49:31:ea:bf:41:f3:e9:0c:c0:a8:88:b4:27:72:53:2d:
03:bf:f8:f1:88:15:e5:73:fc:f6:09:c2:7a:47:c2:ea:41:49:
7c:17:95:8c:78:7e:f9:68:8e:aa:28:f8:d1:7d:dc:a0:15:45:
7f:5f:70:b6:c8:44:0b:78:ee:86:f4:ad:0f:43:95:30:a8:1a:
cb:06:4c:88:ce:ec:ec:62:59:e7:70:7d:23:fe:67:4e:11:38:
bc:7f:f3:a8:84:df:18:a5:73:6e:65:db:ea:f9:d6:35:22:18:
00:a1:1a:04:4a:1d:a5:4c:d4:05:88:02:21:88:00:d1:09:dc:
70:f2:7c:59:4a:f9:18:92:48:a1:f9:3a:1e:22:d0:a1:0a:c4:
3f:6e:d4:40:b1:11:44:fa:2f:02:9e:4d:b2:2b:1f:60:2e:4b:
e0:2b:86:dc:de:7c:30:5c:8b:0e:8a:4a:1c:d5:a0:c2:6b:49:
18:ac:db:7a:17:3f:ef:3b:9d:26:c4:26:6a:fd:6b:7b:14:e6:
fa:68:22:cc:cc:f7:b3:70:cf:11:20:93:68:21:38:fc:19:fd:
78:c1:c5:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org