Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/fzVUm46kmg0xNm6SDVohvtuY_3Q.roa
File: fzVUm46kmg0xNm6SDVohvtuY_3Q.roa (raw, json)
Hash identifier: bTYZ0zGN7+q7Y+3Zitj5v2kqzi7faNZ2ezIKhTEfiww=
Subject key identifier: 7F:35:54:9B:8E:A4:9A:0D:31:36:6E:92:0D:5A:21:BE:DB:98:FF:74
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01848A09BA1EB3AB87BF0B5DF861758A2A78
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/fzVUm46kmg0xNm6SDVohvtuY_3Q.roa
Signing time: Fri 18 Nov 2022 09:20:04 +0000
ROA not before: Fri 18 Nov 2022 09:20:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210122
IP address blocks: 5.180.34.0/24 maxlen: 24
5.180.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:09:ba:1e:b3:ab:87:bf:0b:5d:f8:61:75:8a:2a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 18 09:20:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f35549b8ea49a0d31366e920d5a21bedb98ff74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:51:2a:61:e2:36:30:c6:04:36:a5:04:e6:94:
61:c1:28:fe:2c:49:48:f2:33:3b:71:32:c7:d7:13:
d3:d7:80:b2:66:76:a6:b3:16:d0:92:cb:1b:6d:8e:
f9:2e:b7:05:fd:68:db:15:01:3f:88:7b:16:1f:ee:
01:09:8e:76:6b:cb:ed:f5:6f:5f:44:c3:7e:fb:0d:
31:ab:3c:76:99:c7:8c:a1:ac:1f:c3:cd:2b:62:72:
ea:d7:9f:f7:d5:40:6c:3d:0f:a1:3e:07:f5:3c:52:
1e:a8:3e:8d:70:d8:99:d7:e7:6d:e0:dd:b7:08:e5:
01:c8:85:bb:87:a2:41:36:51:f8:8f:ea:b4:9c:c8:
76:03:62:cc:dd:dc:ad:de:7d:63:7c:50:d1:9a:44:
bd:83:8f:a7:aa:dc:d2:54:b3:19:f8:7b:4a:4e:0f:
f5:3f:e1:5f:3e:9f:73:6b:21:e1:7b:e6:40:2c:1d:
4b:e9:b0:17:c2:4a:1f:f6:7e:b4:cd:f1:a4:7a:ef:
36:4b:ad:61:14:f9:93:33:e7:86:5b:c3:40:9b:08:
89:e8:8d:ea:3c:da:c7:89:96:c2:5d:bb:17:ec:e4:
0e:a1:3f:c5:5a:c6:9a:37:2f:d2:4e:bb:30:01:7c:
6d:f7:5a:fb:d6:c0:b6:a6:9d:0d:72:7e:32:12:ff:
e7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:35:54:9B:8E:A4:9A:0D:31:36:6E:92:0D:5A:21:BE:DB:98:FF:74
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/fzVUm46kmg0xNm6SDVohvtuY_3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.33.0-5.180.34.255
Signature Algorithm: sha256WithRSAEncryption
1e:06:5a:0f:44:7d:50:74:3f:a5:d4:76:34:20:40:ad:9f:40:
c2:e6:4e:de:97:52:03:b6:55:0f:4d:9f:b6:9a:af:d9:57:2a:
38:8a:b5:9b:5e:05:36:3a:79:20:e7:7d:15:eb:41:fb:ed:60:
d7:e4:62:32:b3:c0:2b:e0:d3:84:87:89:7c:8d:a5:90:9d:91:
79:f9:ea:bc:f9:91:b7:d6:cf:4b:7b:51:b3:a4:ca:74:96:4f:
f3:eb:52:90:1a:ab:99:20:66:1b:3d:33:7f:fd:be:1f:0f:e9:
e4:c5:e4:7d:a5:40:e0:70:0a:3a:00:23:33:2e:93:17:a9:1e:
e7:d4:08:4f:3b:54:4e:8c:31:fc:b0:e4:f7:74:09:54:de:76:
b5:94:4a:af:89:3a:b9:e7:ab:a1:2c:d9:c9:9e:09:db:bd:16:
bf:9e:5d:5e:b6:39:93:55:fd:59:df:7f:31:11:5b:8b:98:d4:
bd:b0:c0:b8:5b:dc:f2:4f:32:1f:d7:8e:ad:fb:e3:e6:5f:4d:
ca:51:8e:14:c5:ac:dc:97:7f:84:9e:0d:5c:33:75:3d:54:91:
1a:b2:67:05:b8:f8:26:3c:b6:9a:ce:67:74:d5:db:d0:32:e7:
88:13:ff:17:c7:96:3f:86:cf:b4:26:85:0c:c2:90:40:7d:bc:
ce:72:f3:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org