Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/XRbE1lLxZmpMh77RCpMU80Ccy7I.roa
File: XRbE1lLxZmpMh77RCpMU80Ccy7I.roa (raw, json)
Hash identifier: WX2RXKgr3FEqUttsdlEL/bcm4Wmlg57gvuyKE4LWdNU=
Subject key identifier: 5D:16:C4:D6:52:F1:66:6A:4C:87:BE:D1:0A:93:14:F3:40:9C:CB:B2
Certificate issuer: /CN=137f3372df57c814aba8b51a907861d92b9e4f55
Certificate serial: 095A75E9
Authority key identifier: 13:7F:33:72:DF:57:C8:14:AB:A8:B5:1A:90:78:61:D9:2B:9E:4F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E38zct9XyBSrqLUakHhh2SueT1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/XRbE1lLxZmpMh77RCpMU80Ccy7I.roa
Signing time: Sat 01 Jan 2022 12:05:20 +0000
ROA not before: Sat 01 Jan 2022 12:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208006
IP address blocks: 5.253.24.0/24 maxlen: 24
5.253.27.0/24 maxlen: 24
5.253.26.0/24 maxlen: 24
5.253.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156923369 (0x95a75e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137f3372df57c814aba8b51a907861d92b9e4f55
Validity
Not Before: Jan 1 12:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d16c4d652f1666a4c87bed10a9314f3409ccbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:25:12:9a:69:c5:5d:0f:d0:11:29:05:83:e2:
49:25:af:c1:c8:34:84:9b:34:33:5d:15:6c:99:5e:
3d:d5:96:4c:1a:b3:d7:df:5b:76:09:f8:78:6b:cc:
75:02:47:f9:cd:c6:8d:61:b9:df:51:81:7f:4a:62:
f0:74:aa:39:9d:dd:aa:58:9b:25:1f:fc:fc:d0:55:
0e:15:3e:7e:a3:d9:a8:66:89:03:25:f7:70:ab:a4:
19:bc:5c:0a:88:a7:86:9e:92:0e:6f:37:aa:bf:5a:
b9:e2:d4:59:84:19:1a:d0:39:82:13:24:ea:ed:b5:
57:be:3a:b2:c6:b3:d7:3e:24:83:cd:b5:20:7c:9c:
4a:f4:c2:41:ed:3e:25:57:79:3d:bb:33:df:0b:29:
57:82:02:f5:f9:86:60:0f:fb:7c:17:9f:6a:fe:f8:
ea:fb:d3:ab:60:b5:6b:64:c0:ca:42:e4:da:ca:cf:
b2:d8:a0:60:6f:21:a7:cc:f5:dd:27:aa:e1:2a:15:
ea:36:c2:b2:84:81:9b:d5:15:ac:af:b4:9b:44:78:
77:72:ad:da:8e:39:96:c6:90:c2:bd:10:c6:a8:2d:
70:0c:92:19:97:d4:33:e1:31:72:e2:f9:0b:38:2d:
2f:79:f3:1b:31:15:12:dc:68:8e:eb:af:41:76:74:
4f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:16:C4:D6:52:F1:66:6A:4C:87:BE:D1:0A:93:14:F3:40:9C:CB:B2
X509v3 Authority Key Identifier:
keyid:13:7F:33:72:DF:57:C8:14:AB:A8:B5:1A:90:78:61:D9:2B:9E:4F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E38zct9XyBSrqLUakHhh2SueT1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/XRbE1lLxZmpMh77RCpMU80Ccy7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/E38zct9XyBSrqLUakHhh2SueT1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.24.0/22
Signature Algorithm: sha256WithRSAEncryption
00:61:c8:cc:68:76:5f:d8:b4:56:6f:6e:45:15:b6:b7:52:b4:
f5:e1:90:42:97:7e:e0:a3:32:8d:74:ca:34:9b:6e:75:9f:ef:
1e:36:64:5d:56:3c:5a:44:27:e4:7e:22:b3:0b:0a:99:6c:07:
01:f2:8f:98:b2:8d:e0:97:c4:d7:38:0d:c6:f3:54:67:9e:1e:
e6:2c:78:56:76:43:e8:26:31:3e:b3:09:25:5b:34:fb:85:df:
c4:af:f3:5a:d3:45:8e:49:26:bc:58:37:c3:96:ae:ef:a0:06:
5d:d5:c6:35:b5:15:28:1a:cd:a6:a7:8b:af:13:3b:2a:60:c9:
26:fd:19:19:7d:a9:32:5d:c1:31:83:37:88:d7:99:b9:13:58:
37:f8:29:b3:c0:58:f4:53:39:bb:8c:07:88:b6:33:59:47:3a:
e5:8d:7c:81:15:48:10:af:60:0f:d0:b2:fd:62:9d:09:b4:90:
6f:4a:9e:ff:e5:da:78:52:bd:ee:0f:8c:49:b5:42:b6:3c:50:
4e:06:c5:f7:04:d4:a2:ff:b0:21:9f:af:22:0b:16:34:64:eb:
77:1e:62:53:ab:1b:59:4f:42:42:aa:e5:d2:bf:46:02:8b:9b:
8f:ea:3d:7f:47:30:71:4c:50:e2:40:c7:da:f7:d2:49:27:d2:
e9:ce:2c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:46 2024 by rpki-client on console-ams.rpki-client.org