Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/84e2ce-1eac-4e12-ac58-51c3ccce72df/1/yV9YHf8UEnrfzl-FDOcKL4ZNimo.roa
File: yV9YHf8UEnrfzl-FDOcKL4ZNimo.roa (raw, json)
Hash identifier: YHIaOLpYn9lxLbqQWOU7PLvM+mvL2BG2HKJrRH03NVQ=
Subject key identifier: C9:5F:58:1D:FF:14:12:7A:DF:CE:5F:85:0C:E7:0A:2F:86:4D:8A:6A
Certificate issuer: /CN=aba81f07a493a3e643752e66bd8146f5771adf88
Certificate serial: 06D59A7F
Authority key identifier: AB:A8:1F:07:A4:93:A3:E6:43:75:2E:66:BD:81:46:F5:77:1A:DF:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6gfB6STo-ZDdS5mvYFG9Xca34g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/84e2ce-1eac-4e12-ac58-51c3ccce72df/1/yV9YHf8UEnrfzl-FDOcKL4ZNimo.roa
Signing time: Tue 10 May 2022 11:10:33 +0000
ROA not before: Tue 10 May 2022 11:10:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207148
IP address blocks: 5.154.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114662015 (0x6d59a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba81f07a493a3e643752e66bd8146f5771adf88
Validity
Not Before: May 10 11:10:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c95f581dff14127adfce5f850ce70a2f864d8a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e4:b2:e6:dc:1f:67:7c:3b:be:64:eb:b7:60:
bd:2b:44:9d:6a:ff:b5:f3:90:2f:df:b3:46:87:0e:
5d:2e:1e:16:7d:6e:61:ee:e9:ed:c8:07:e2:93:85:
b7:04:18:5a:39:b9:eb:f5:70:0e:0a:0d:0a:ef:f4:
eb:39:1d:ee:bf:d1:ec:a4:0b:93:8a:a8:d4:a0:78:
77:45:3e:4a:d5:ab:6f:a6:f7:5f:9c:12:e1:e0:24:
7f:89:50:77:71:da:a0:b1:cb:28:4d:68:5a:77:16:
ba:1f:fa:cd:55:63:bf:6e:33:e8:b1:d9:b6:94:b4:
1b:81:e1:a9:22:d2:4a:f1:1e:f6:c5:37:31:01:a5:
7d:bd:63:7c:3c:bc:17:a3:99:e0:36:63:f2:01:f1:
e1:b1:11:9a:29:d1:72:61:3b:72:ce:d5:db:10:9b:
df:2a:6f:60:19:e4:25:71:40:8c:25:24:ac:89:c1:
47:86:93:4e:6f:49:34:01:c1:f4:8c:ce:8e:8c:f5:
44:7d:e5:e4:7c:50:03:b5:bc:2b:60:77:6e:6b:51:
c0:a8:96:5b:19:dd:a7:3b:6c:0e:00:a5:e1:80:5d:
cf:ff:fb:58:c1:94:ea:66:36:c6:0a:d3:b3:5a:ab:
e6:24:d5:c6:16:4b:b3:2f:ed:48:40:c6:9e:96:dd:
49:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5F:58:1D:FF:14:12:7A:DF:CE:5F:85:0C:E7:0A:2F:86:4D:8A:6A
X509v3 Authority Key Identifier:
keyid:AB:A8:1F:07:A4:93:A3:E6:43:75:2E:66:BD:81:46:F5:77:1A:DF:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6gfB6STo-ZDdS5mvYFG9Xca34g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/84e2ce-1eac-4e12-ac58-51c3ccce72df/1/yV9YHf8UEnrfzl-FDOcKL4ZNimo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/84e2ce-1eac-4e12-ac58-51c3ccce72df/1/q6gfB6STo-ZDdS5mvYFG9Xca34g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.236.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:db:7a:6a:bb:e2:0e:d8:e4:f7:52:ca:ba:b1:24:3b:d8:63:
7c:1d:3f:61:c5:9f:62:de:6f:32:00:c8:da:90:fd:1f:af:f2:
f9:30:56:77:2d:78:b0:06:b8:d1:92:08:7e:44:38:2e:23:80:
a9:c9:31:c6:1e:9f:d0:14:e0:fe:47:19:ee:14:b9:e3:a5:b8:
17:56:8e:5d:71:43:b9:f7:2c:e3:0f:40:89:63:5a:9f:e2:95:
1d:3b:19:72:17:d6:f3:48:e4:5a:d4:83:62:61:a3:bc:8f:bb:
58:29:be:4c:86:9e:44:3f:5a:83:95:e6:23:01:dc:18:fa:4c:
e2:fd:8a:1d:43:0a:11:09:37:90:b2:a9:49:36:dc:32:d6:46:
e2:9a:5e:bc:01:f3:88:9d:59:bd:d7:02:71:36:9a:c1:65:d1:
7f:8e:cc:97:b2:64:42:a5:59:e8:d5:6e:53:88:1c:6a:fc:ef:
4b:c6:9f:67:49:98:2c:2b:84:28:31:ca:24:1f:04:a1:a7:4a:
02:16:59:c2:8c:cc:d9:0c:69:5b:61:7e:ca:ce:57:d6:9c:0a:
40:82:8e:46:3d:b6:0c:ff:c9:ba:b6:c6:d5:e4:43:d8:b4:25:
59:bc:8b:18:75:a3:f0:37:15:aa:bd:fa:83:11:ae:0c:df:0e:
be:46:5f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:59 2024 by rpki-client on console-fra.rpki-client.org