Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/FL6EoflGtaLPRrRBandzS2ocG7Y.roa
File: FL6EoflGtaLPRrRBandzS2ocG7Y.roa (raw, json)
Hash identifier: ZbzKJJDEA/Ee87Dgw3GHWg9BzQowe+cBOZge8Wx3OvQ=
Subject key identifier: 14:BE:84:A1:F9:46:B5:A2:CF:46:B4:41:6A:77:73:4B:6A:1C:1B:B6
Certificate issuer: /CN=4a8e68702ef5d48c4f2b072d9cb473e62b87b3e4
Certificate serial: 1338DAAD
Authority key identifier: 4A:8E:68:70:2E:F5:D4:8C:4F:2B:07:2D:9C:B4:73:E6:2B:87:B3:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/So5ocC711IxPKwctnLRz5iuHs-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/FL6EoflGtaLPRrRBandzS2ocG7Y.roa
Signing time: Sat 01 Jan 2022 05:01:46 +0000
ROA not before: Sat 01 Jan 2022 05:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47215
IP address blocks: 5.28.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322493101 (0x1338daad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a8e68702ef5d48c4f2b072d9cb473e62b87b3e4
Validity
Not Before: Jan 1 05:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14be84a1f946b5a2cf46b4416a77734b6a1c1bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:32:ec:5c:bb:ac:95:5a:4b:4d:36:6b:f1:f0:
ff:1c:86:0d:d7:c0:7d:ca:b5:59:08:99:91:ea:df:
b0:87:58:2c:aa:e2:fb:50:7f:b9:b2:0f:cd:71:fc:
02:1d:2a:3f:34:67:2f:8e:3f:f4:d2:a7:76:45:da:
7d:a6:bd:4e:5e:ac:d1:c7:e9:0a:2b:ee:49:42:9c:
29:a5:cc:58:f3:8a:e3:4c:25:bc:0b:5a:e4:4a:bf:
d6:b1:61:c0:01:27:28:81:1c:89:3b:e5:14:96:2d:
ef:e8:c3:3a:09:ff:7c:2b:d6:41:b7:14:42:cd:e9:
1c:d3:9d:a8:4c:7d:61:d8:73:29:76:3f:b9:6d:65:
fc:86:70:9d:60:30:b8:0e:38:dd:0a:a9:72:22:cc:
62:75:4f:a6:77:24:ae:39:ae:e7:2c:5a:eb:59:37:
ae:b0:cb:15:77:f5:ab:9e:f5:95:59:ae:74:cd:d9:
cb:1a:ec:79:58:32:47:88:20:7b:b7:ce:7d:17:8a:
81:d4:4a:02:89:03:b2:7a:44:b6:ff:c3:05:b4:b3:
cd:63:f7:e6:5f:18:9d:7b:cf:f6:d8:26:13:86:d7:
92:ff:0c:0b:83:23:db:68:2b:6c:cd:c6:3c:d0:1f:
b7:fc:30:2a:44:46:bd:a8:55:d0:c1:75:5b:fb:bb:
83:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BE:84:A1:F9:46:B5:A2:CF:46:B4:41:6A:77:73:4B:6A:1C:1B:B6
X509v3 Authority Key Identifier:
keyid:4A:8E:68:70:2E:F5:D4:8C:4F:2B:07:2D:9C:B4:73:E6:2B:87:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/So5ocC711IxPKwctnLRz5iuHs-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/FL6EoflGtaLPRrRBandzS2ocG7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d19fc2-8949-4fe6-931b-1c4bb58ab720/1/So5ocC711IxPKwctnLRz5iuHs-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.40.0/21
Signature Algorithm: sha256WithRSAEncryption
42:9e:8d:01:43:44:4b:36:2a:43:40:5f:39:c0:01:33:6d:e8:
8e:9b:27:3b:de:f3:d8:76:89:b0:83:77:e5:05:4e:a0:1f:05:
17:85:fb:32:bd:cf:4e:51:83:23:98:8b:00:bc:d7:7c:46:42:
3a:82:7d:25:a8:2a:29:5d:e7:cf:0a:93:44:f1:fb:ea:15:94:
60:63:4a:af:48:e5:f4:cd:fd:cf:94:96:0e:7b:c1:41:71:db:
19:4e:b3:f3:72:90:bf:fc:c5:fc:36:50:11:90:0b:db:44:78:
e2:6c:f8:72:60:80:d2:22:6d:e6:28:81:0b:e3:48:4a:12:5e:
35:62:60:6e:27:00:85:29:9f:e5:9a:d3:da:83:42:87:2f:85:
f4:32:03:02:2e:2b:18:16:b4:3d:ec:3b:6a:da:2b:b7:06:53:
a5:0c:f6:06:78:a9:09:b2:a8:85:a0:d3:95:5c:b5:42:3d:87:
44:24:1a:ba:88:f9:ca:a4:0c:8c:dd:cc:11:86:6d:41:58:d5:
60:f7:50:6c:4c:c4:a7:80:36:91:e1:50:74:a1:f3:bf:15:52:
77:ff:1d:e6:7b:7c:63:33:59:5f:33:d6:86:ac:f8:59:42:4b:
91:ef:69:09:db:a3:ad:bc:de:fe:ea:37:37:bf:dc:38:66:0c:
3b:18:bd:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:28 2024 by rpki-client on console-fra.rpki-client.org