Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/qY3jkd8bvCV-U5OgYPnBZjMZAUA.roa
File: qY3jkd8bvCV-U5OgYPnBZjMZAUA.roa (raw, json)
Hash identifier: KQFesuW+wDiKEVRyKX6kZ9VieNl1B0MrDYSjOisrsc4=
Subject key identifier: A9:8D:E3:91:DF:1B:BC:25:7E:53:93:A0:60:F9:C1:66:33:19:01:40
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182A83C8B2A0E64B176EDFCCAF7DB16D8E4
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/qY3jkd8bvCV-U5OgYPnBZjMZAUA.roa
Signing time: Tue 16 Aug 2022 19:58:36 +0000
ROA not before: Tue 16 Aug 2022 19:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11402
IP address blocks: 5.253.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a8:3c:8b:2a:0e:64:b1:76:ed:fc:ca:f7:db:16:d8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 16 19:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a98de391df1bbc257e5393a060f9c16633190140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7e:e6:97:bd:5f:9d:99:ed:9b:bd:7b:42:1c:
c6:b7:41:37:b3:7e:9a:e8:e4:f7:74:ff:c1:43:f7:
30:ca:28:eb:66:76:a2:7a:70:11:27:ce:9c:c3:36:
c2:95:59:94:96:07:6f:7b:22:36:6d:8c:b2:23:de:
4d:32:c6:2c:44:81:88:92:fe:0a:c3:45:ba:a8:a9:
75:85:e6:75:10:10:97:dc:23:cb:73:73:35:84:5c:
32:fc:ca:06:1b:47:e2:a4:7f:a9:38:1f:32:29:c9:
68:98:35:ae:e7:6d:4f:39:90:ad:6f:af:56:71:af:
57:b0:d1:f3:73:dc:21:cd:e0:b8:c4:9b:6f:c3:3f:
e5:1b:fd:cd:84:92:e4:cb:8b:47:fa:72:cc:1e:31:
c2:ae:a1:32:03:c0:a1:05:73:54:06:2a:f6:5c:97:
3d:8f:ef:27:b5:76:47:a0:dd:8f:c2:6f:19:a7:8a:
ac:1c:88:26:7f:d9:15:04:aa:9d:1b:8c:6d:21:94:
9f:b4:14:1a:cc:12:da:fa:88:bd:a2:94:d3:77:a5:
1e:dd:4b:e6:4b:95:1c:dd:2d:77:73:55:ea:30:43:
93:1b:a0:06:b8:a8:b8:22:6b:cb:49:1f:c6:f6:31:
3c:6f:12:55:dc:4a:ca:78:cd:09:3c:a0:2b:b9:89:
f5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8D:E3:91:DF:1B:BC:25:7E:53:93:A0:60:F9:C1:66:33:19:01:40
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/qY3jkd8bvCV-U5OgYPnBZjMZAUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:59:37:15:8d:20:83:00:5e:f0:80:c8:41:9f:8e:c6:3b:3e:
d1:a8:df:5c:59:d1:ae:a2:c1:53:bf:4d:ca:ac:2f:dd:d9:3a:
6b:97:80:45:47:64:77:5f:74:13:ce:ab:0f:65:62:69:12:f1:
d6:3f:be:33:09:65:40:13:ed:a9:7d:d9:d4:cf:53:3d:f5:26:
3c:20:09:bb:1d:a9:af:cc:ea:d7:4c:1b:b0:74:24:69:dd:97:
08:aa:e6:c9:f8:35:fe:4b:ee:f0:57:74:12:bf:09:cf:aa:a5:
98:8f:71:aa:0b:e6:77:e7:bb:36:68:94:da:d8:76:6d:55:90:
a6:f6:f0:85:74:7f:01:47:f1:9f:76:77:a4:b0:ee:08:13:9f:
d6:15:63:f2:83:c4:c2:1e:0e:59:50:16:89:c2:0b:2f:ec:54:
3c:47:71:44:cd:9a:79:76:e5:c0:55:3f:67:d3:12:a0:3a:6a:
29:8d:2f:21:d7:ca:7d:88:e2:5a:64:b8:55:bb:59:f2:79:96:
72:7d:af:c0:99:1e:a8:e8:e7:e4:f5:66:23:74:77:2d:48:c5:
04:53:ed:8a:44:81:66:ca:18:a4:4d:79:e4:50:cd:c4:35:6b:
f7:c2:16:19:d4:79:7c:7a:42:32:95:a1:5f:63:cf:d4:5f:8f:
c9:94:0f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org