Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1Z1__5jWLmLK0y_WuTsp7whpmgo.roa
File: 1Z1__5jWLmLK0y_WuTsp7whpmgo.roa (raw, json)
Hash identifier: K17i5Q7GgoIJfcXOcH0SkO7eLzTUwrxXdGX9dD1zmJ8=
Subject key identifier: D5:9D:7F:FF:98:D6:2E:62:CA:D3:2F:D6:B9:3B:29:EF:08:69:9A:0A
Certificate issuer: /CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Certificate serial: 1B165BA0
Authority key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1Z1__5jWLmLK0y_WuTsp7whpmgo.roa
Signing time: Sat 01 Jan 2022 13:57:15 +0000
ROA not before: Sat 01 Jan 2022 13:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60423
IP address blocks: 5.145.119.0/24 maxlen: 24
5.145.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 454450080 (0x1b165ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Validity
Not Before: Jan 1 13:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d59d7fff98d62e62cad32fd6b93b29ef08699a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:92:d7:67:25:ab:1d:fb:d0:7a:6b:73:99:
96:d7:78:95:28:db:17:4a:23:d0:2c:61:26:e8:c1:
2f:e7:1c:67:8b:1e:d6:91:ac:43:ce:3b:25:6e:81:
9f:12:88:dd:3b:a3:f3:7e:bf:51:92:7a:26:b5:57:
8e:4b:86:f4:8b:c8:6f:a0:ef:18:15:3b:39:5a:d1:
b5:80:09:94:fc:84:76:17:64:c1:d4:0c:0c:fe:55:
ae:93:1c:9e:7b:72:de:2b:c8:6e:4f:8f:4e:34:71:
08:a2:2b:e2:a1:6a:d5:36:9f:89:ba:7a:43:4a:a2:
14:8d:9c:d4:ff:06:8b:17:90:f6:c3:6e:e3:24:be:
1c:89:a6:90:dc:34:b7:8f:1a:ac:d6:b6:03:10:03:
0e:12:c9:bf:e1:80:5c:1e:41:ae:db:2d:49:d5:45:
a3:f2:52:08:c5:63:18:32:24:6c:8f:37:b2:03:d9:
3d:80:6f:86:09:d6:a2:60:5a:a2:c9:7c:b4:08:45:
8e:ce:6d:b5:0b:50:f6:57:b0:45:66:c5:fe:48:5e:
5e:b2:f0:f2:62:2c:07:76:54:1a:ee:82:13:66:ce:
d1:ed:18:cf:7f:c8:f2:c4:9d:73:73:81:5b:29:72:
ad:cb:dd:6f:60:97:39:86:b1:53:a7:bc:36:77:43:
db:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9D:7F:FF:98:D6:2E:62:CA:D3:2F:D6:B9:3B:29:EF:08:69:9A:0A
X509v3 Authority Key Identifier:
keyid:D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1Z1__5jWLmLK0y_WuTsp7whpmgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.118.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:67:c6:c2:7d:9d:8b:89:7a:7d:9b:21:3d:8e:f6:dc:19:68:
2f:92:76:d3:ef:6a:aa:c1:39:a7:65:64:3e:12:a9:d3:82:0e:
58:49:05:27:ee:93:e6:cf:7f:11:4a:50:91:54:48:12:ec:86:
c8:53:6f:47:83:ed:72:a6:da:3d:ba:91:d3:a4:37:c3:3e:7b:
92:81:d6:fb:7f:75:15:dc:c8:6b:16:62:aa:23:63:4e:da:77:
dc:26:da:c3:00:71:b8:80:f5:89:a5:d2:97:00:96:ea:92:11:
fa:a7:60:74:f4:96:b4:71:92:9b:44:6b:9a:b0:39:c7:29:16:
57:20:7a:4c:3e:24:b8:a8:5b:15:9d:d3:95:d2:57:3c:a4:15:
45:03:3f:77:62:b5:9d:be:d3:f2:00:18:1a:e7:18:f9:33:15:
3a:2b:05:b4:0f:93:d8:f7:cf:d7:90:3d:c7:99:92:46:fe:78:
3f:3f:f8:8d:b0:bd:52:51:46:36:cd:4f:16:bc:aa:e9:06:b8:
e4:64:42:5d:00:62:18:dd:45:d1:e6:aa:1e:cb:b2:7f:01:c2:
a1:4c:0b:0c:d2:c7:a5:3b:22:d2:57:65:4a:fe:54:30:83:bb:
64:79:a6:44:33:38:30:42:f7:8d:e7:2a:2e:92:44:a2:25:64:
e0:51:86:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:21 2023 by rpki-client on console-fra.rpki-client.org