Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uJMFNFUix-Nq1ilf6BK-IO0jtAk.roa
File: uJMFNFUix-Nq1ilf6BK-IO0jtAk.roa (raw, json)
Hash identifier: RD5QcuK4d3yZY3AbTtoj+0G6gpMRbHvTNSbGzPAtqbQ=
Subject key identifier: B8:93:05:34:55:22:C7:E3:6A:D6:29:5F:E8:12:BE:20:ED:23:B4:09
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182A17DD798AA94CC5211B99081FC5D81FC
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uJMFNFUix-Nq1ilf6BK-IO0jtAk.roa
Signing time: Mon 15 Aug 2022 12:32:35 +0000
ROA not before: Mon 15 Aug 2022 12:32:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 5.180.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a1:7d:d7:98:aa:94:cc:52:11:b9:90:81:fc:5d:81:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 15 12:32:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b89305345522c7e36ad6295fe812be20ed23b409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f7:d0:16:18:9c:c6:a0:52:95:60:17:4f:f3:
62:84:57:ab:29:59:e3:e6:49:61:73:95:e1:9c:c5:
d8:ec:22:86:be:fc:e0:58:93:46:b9:b1:ad:9e:b6:
d7:b7:6b:86:e6:bd:5b:2c:e2:8a:d5:e1:1a:93:bd:
03:2a:2a:f3:ac:f8:7e:57:2d:32:8b:ff:16:8e:e0:
14:b4:3a:02:23:4a:2c:ad:c3:8f:51:99:c6:e0:b8:
87:29:3f:f7:ac:c9:f4:73:84:36:20:4e:c8:02:e1:
e9:71:ad:62:d0:cf:b3:34:17:76:2d:e7:57:89:3a:
c7:08:90:81:34:64:6d:c7:ad:3a:04:86:00:fa:cf:
27:f8:8d:58:af:94:a5:c4:9e:2c:c4:d3:97:f0:bb:
53:37:56:00:24:48:52:8d:f6:33:a0:2b:8d:0f:f8:
60:93:ca:1d:b2:c9:da:32:6d:a0:d3:21:6f:dc:22:
fa:40:3e:7d:04:2b:b3:80:da:50:71:b2:fd:2b:ef:
69:19:02:22:23:34:e8:62:61:f4:d1:0e:16:ec:5b:
c7:15:5e:a3:e6:5a:6d:21:18:4b:72:a1:66:6f:42:
e9:0a:16:7b:ea:c3:4a:cf:12:e7:6b:e1:10:dc:7a:
4f:a2:a3:5b:38:ba:51:8f:4e:54:5c:c4:f5:9e:62:
38:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:93:05:34:55:22:C7:E3:6A:D6:29:5F:E8:12:BE:20:ED:23:B4:09
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/uJMFNFUix-Nq1ilf6BK-IO0jtAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.81.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:1e:9e:3f:24:6e:52:a9:5a:0f:28:63:f6:4f:53:5f:fe:a2:
e6:09:13:bd:76:f9:e5:66:0d:f7:10:77:e0:81:78:4f:f6:f8:
96:79:26:10:15:cd:28:59:a1:5c:cf:12:8c:49:ea:75:13:b9:
e0:f6:44:06:31:f7:eb:61:1f:5d:4b:2a:98:29:c8:7c:c7:60:
98:be:14:35:17:86:0b:4d:35:8e:fa:99:c2:a5:b6:88:5c:24:
db:7b:61:4e:07:99:ce:82:24:54:50:83:d8:f2:41:c0:31:54:
0e:32:9c:b7:dc:20:af:36:b1:f0:f2:3e:96:3b:67:8a:76:6f:
c6:5b:7b:4a:ea:4c:59:5a:2d:b7:7a:0e:51:40:52:3e:3a:60:
e9:97:6a:3e:f1:8b:f6:24:37:82:84:af:e9:da:4a:cb:36:e5:
f0:55:d4:99:25:e5:63:18:bd:ef:f3:68:d6:85:16:6f:a2:d5:
8e:4a:13:35:f8:5f:63:39:7b:a1:07:5e:3b:13:bc:64:fe:c9:
7c:a9:2c:74:01:ca:35:81:e8:1f:64:ba:fa:74:e5:d9:5e:99:
06:89:4f:67:ef:77:04:c6:f6:41:b0:26:d1:c7:df:7e:bd:d6:
fc:e8:d7:9c:b3:4b:d4:77:a0:60:bd:e9:28:3f:38:21:23:9c:
92:6a:ce:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org