Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/qDzv5ahMgx3xM5NvlAAF4nE9FT8.roa
File: qDzv5ahMgx3xM5NvlAAF4nE9FT8.roa (raw, json)
Hash identifier: gL1UJkQfHLIZz7+dTWWqsQ2jUz5K4f+vz1A1zjZJzGs=
Subject key identifier: A8:3C:EF:E5:A8:4C:83:1D:F1:33:93:6F:94:00:05:E2:71:3D:15:3F
Certificate issuer: /CN=715b885c3b302fd50e6c22647a33dc47727fea95
Certificate serial: 09AC439D
Authority key identifier: 71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/qDzv5ahMgx3xM5NvlAAF4nE9FT8.roa
Signing time: Sat 01 Jan 2022 11:00:43 +0000
ROA not before: Sat 01 Jan 2022 11:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133480
IP address blocks: 5.62.23.0/24 maxlen: 24
5.62.22.0/24 maxlen: 24
5.62.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162284445 (0x9ac439d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715b885c3b302fd50e6c22647a33dc47727fea95
Validity
Not Before: Jan 1 11:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a83cefe5a84c831df133936f940005e2713d153f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:cb:a8:1c:4c:e4:8b:50:78:3d:96:b5:f6:
76:86:07:8a:b8:ea:c2:48:c0:b5:b6:1b:d1:b3:be:
0a:0b:7d:14:f7:ef:18:11:4f:7c:1e:17:77:ab:33:
f0:b2:62:3b:5d:dc:14:f2:92:e7:7d:13:ce:13:12:
69:13:f0:cd:0c:0b:c7:0a:76:f0:07:ba:dc:5f:41:
af:99:06:7e:3d:af:e8:2a:b4:48:08:80:b3:c0:da:
65:c0:36:74:4e:da:d8:b2:0c:0c:66:19:74:2e:90:
cf:ec:3a:5a:88:59:f2:47:07:76:91:73:f6:45:0c:
0b:81:14:be:bb:a1:d1:f4:22:59:cd:5e:60:4b:89:
59:bb:28:ca:2e:e7:ee:0c:0e:89:59:f6:e0:2e:66:
01:d1:a0:fe:d2:8b:63:2e:5a:27:ac:71:4b:4b:23:
19:b0:e8:1d:b6:b9:85:4f:99:7a:e6:41:7b:be:61:
37:0c:7f:3a:a8:1f:a9:c2:c9:5f:b7:aa:a7:c9:5f:
75:5a:e1:47:7d:c7:be:4a:cc:8e:87:01:f0:bf:1b:
31:2c:82:70:a9:c6:66:94:8a:bd:36:c6:35:aa:9f:
30:5a:14:69:7f:09:17:1f:57:af:a4:61:2e:c5:b8:
db:2c:7d:0b:8f:62:88:d2:96:a3:05:0f:8f:39:2c:
a3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3C:EF:E5:A8:4C:83:1D:F1:33:93:6F:94:00:05:E2:71:3D:15:3F
X509v3 Authority Key Identifier:
keyid:71:5B:88:5C:3B:30:2F:D5:0E:6C:22:64:7A:33:DC:47:72:7F:EA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVuIXDswL9UObCJkejPcR3J_6pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/qDzv5ahMgx3xM5NvlAAF4nE9FT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8999c-040a-424a-8896-2a92333f9df6/1/cVuIXDswL9UObCJkejPcR3J_6pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.21.0-5.62.23.255
Signature Algorithm: sha256WithRSAEncryption
84:97:c7:36:e4:31:d5:53:71:23:8c:b7:c5:ef:bb:30:22:32:
82:38:08:24:7d:36:ce:6f:38:74:86:0e:8d:94:30:cb:dc:bb:
ce:8b:72:d6:27:a8:b1:7e:e4:7c:2b:d4:06:aa:c3:ec:ca:19:
55:3b:e5:fc:31:77:58:fe:63:d2:cd:8b:ef:ad:08:e1:db:ec:
e7:ab:02:d2:5c:83:38:a7:fd:ee:51:f0:90:08:81:4a:55:87:
ea:b7:ab:37:d7:25:52:98:ee:6c:20:be:f2:e1:f7:b9:23:f5:
19:2d:0e:8e:06:38:d6:1f:c4:e7:a2:7b:1f:7e:1c:4c:69:83:
f4:68:b0:2a:97:91:85:ae:89:c6:c8:ed:7c:94:34:2b:50:3d:
1c:10:4f:4c:64:f3:ae:e4:dd:7b:79:59:82:6a:3b:7f:9f:29:
ec:26:7e:a9:ff:6c:6b:67:26:db:9b:e6:4e:70:63:49:b2:c9:
29:20:43:34:ce:e6:55:b6:b0:fc:e7:a5:5d:99:7a:89:b5:dc:
95:45:34:06:4a:d4:35:fd:67:7c:ca:0d:81:86:b2:99:95:c3:
21:6f:be:72:8f:3d:fa:8d:c0:5a:09:0a:81:07:26:3b:24:2a:
91:cc:e4:64:4d:14:91:a8:4a:ce:2d:18:7b:5d:dd:ea:fe:ea:
0f:a0:d8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:21 2024 by rpki-client on console-fra.rpki-client.org