Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/7UKIt_5mnV45V7EYKTPHndVmZZE.roa
File: 7UKIt_5mnV45V7EYKTPHndVmZZE.roa (raw, json)
Hash identifier: XXPWdlFZd4DtNZUCxzCaeFopYImeIPl+V2EhFccmar0=
Subject key identifier: ED:42:88:B7:FE:66:9D:5E:39:57:B1:18:29:33:C7:9D:D5:66:65:91
Certificate issuer: /CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Certificate serial: 044B3540
Authority key identifier: E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/7UKIt_5mnV45V7EYKTPHndVmZZE.roa
Signing time: Sun 06 Mar 2022 22:35:36 +0000
ROA not before: Sun 06 Mar 2022 22:35:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 216.247.232.0/22 maxlen: 22
113.30.192.0/21 maxlen: 21
5.183.88.0/22 maxlen: 22
2a10:d507::/32 maxlen: 32
2a10:d501::/32 maxlen: 32
2a10:d502::/32 maxlen: 32
2a10:d506::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72037696 (0x44b3540)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6e4687ab8b1eb6de1abd04a07617c86d118518d
Validity
Not Before: Mar 6 22:35:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed4288b7fe669d5e3957b1182933c79dd5666591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:87:eb:ae:18:c2:49:7d:ec:f1:df:06:85:21:
e2:bc:5c:9e:b9:74:04:e0:a0:cd:ea:d2:ba:4d:06:
18:7e:83:80:f6:f2:58:0c:a1:90:3a:dd:a2:14:d1:
08:1d:c3:5b:bb:17:9a:3f:35:51:d0:88:49:02:8e:
ae:ea:d8:ab:2f:a8:d4:f1:92:9c:50:f8:03:4d:60:
c0:b8:6a:3c:04:93:1c:6e:2c:e4:7d:97:9e:3e:c9:
b0:3b:20:3e:e8:78:b9:b4:77:ff:d5:2d:6e:16:12:
97:47:27:5d:f8:b2:92:15:1a:c2:a9:d3:f8:e4:f6:
eb:b9:ff:cd:ee:a7:7e:ff:31:85:e3:ce:5b:d6:3e:
6c:71:39:50:ed:b1:36:21:a3:fd:4d:3b:ac:46:61:
d4:ad:5a:89:88:f6:fb:12:df:a5:2f:fa:fe:9d:8d:
d4:9f:48:3d:c0:33:bd:41:ab:4d:29:2a:89:31:1e:
5a:01:e5:be:e7:de:83:50:22:5f:72:86:57:3d:e7:
54:b7:bc:4e:83:f8:5b:39:49:40:5b:00:ba:52:81:
3a:35:a4:48:ef:98:a3:2f:4b:8d:eb:59:f1:95:38:
71:a9:37:f4:7c:75:ca:5b:10:4f:a5:a2:4f:df:f1:
ca:dd:e4:d2:f3:f2:03:64:a6:ea:75:6e:7b:2e:d1:
02:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:42:88:B7:FE:66:9D:5E:39:57:B1:18:29:33:C7:9D:D5:66:65:91
X509v3 Authority Key Identifier:
keyid:E6:E4:68:7A:B8:B1:EB:6D:E1:AB:D0:4A:07:61:7C:86:D1:18:51:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5uRoerix623hq9BKB2F8htEYUY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/7UKIt_5mnV45V7EYKTPHndVmZZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/6fd5d2-b7ce-4b3d-8f2c-138bbaac7fe2/1/5uRoerix623hq9BKB2F8htEYUY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.88.0/22
113.30.192.0/21
216.247.232.0/22
IPv6:
2a10:d501::-2a10:d502:ffff:ffff:ffff:ffff:ffff:ffff
2a10:d506::/31
Signature Algorithm: sha256WithRSAEncryption
2a:e0:90:24:7d:33:f0:8c:55:75:59:ac:7d:eb:23:35:ed:09:
19:15:b0:ee:03:8d:09:83:22:66:86:dd:c9:12:ec:3c:9c:c5:
d2:ac:ee:7d:5e:88:f0:e5:eb:ec:0a:d0:d5:88:a9:be:99:e0:
28:2c:bf:d8:35:df:d3:eb:da:89:c0:b2:36:b9:a8:57:dc:e7:
25:50:f3:5d:60:92:74:8b:44:74:0c:e3:3c:ef:e7:3e:53:de:
fa:6a:4e:dc:ea:38:97:b1:10:46:11:b7:89:68:17:3a:59:a6:
d6:54:eb:a8:40:b9:cf:e2:a1:85:96:16:92:34:96:db:0c:c3:
dc:23:34:e2:4c:9f:f4:6f:ac:5e:99:84:42:df:55:0e:e9:90:
dd:12:75:53:f1:86:cf:d9:b0:0c:35:16:6b:da:44:91:22:8c:
4e:7e:87:f0:24:71:fc:fb:7e:f0:87:fb:5e:24:42:60:6d:60:
c5:24:58:e7:05:d6:4a:ce:76:36:4f:c9:9e:db:87:03:39:17:
51:c4:2c:a2:a8:f3:ae:04:1e:cf:89:7c:4c:7d:f3:39:a9:a4:
18:1b:ff:3d:85:24:53:dc:4c:6c:9b:e3:2b:a3:ce:50:e1:ba:
53:49:d0:b9:27:34:97:bb:b5:4e:47:1f:ea:cc:47:5b:c3:4e:
b1:fc:bf:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:07 2024 by rpki-client on console-ams.rpki-client.org