Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hxLZtkL0cdM6aj6rw2Z5Rt8JuAs.roa
File: hxLZtkL0cdM6aj6rw2Z5Rt8JuAs.roa (raw, json)
Hash identifier: sMRoyCQqMVFgOIrLITzhcl4VFjfZuT477IEj6urvV+c=
Subject key identifier: 87:12:D9:B6:42:F4:71:D3:3A:6A:3E:AB:C3:66:79:46:DF:09:B8:0B
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0A7ECA85
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hxLZtkL0cdM6aj6rw2Z5Rt8JuAs.roa
Signing time: Sat 01 Jan 2022 02:54:15 +0000
ROA not before: Sat 01 Jan 2022 02:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39203
IP address blocks: 5.154.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176081541 (0xa7eca85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 1 02:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8712d9b642f471d33a6a3eabc3667946df09b80b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:16:00:3c:1a:48:7d:78:c9:68:92:fb:32:1f:
a3:74:ee:7a:d7:1d:3c:43:03:68:08:ca:53:17:11:
a9:0e:8b:fa:16:80:83:c4:8a:aa:5c:6b:2a:d6:5d:
d8:98:48:4a:9a:d9:1f:1e:d6:41:3c:0f:c1:13:34:
f2:21:77:b6:dd:92:de:c3:fa:41:20:ae:70:18:50:
42:a4:fc:fe:2f:b9:c2:bf:b0:61:9b:e2:17:00:3f:
fe:89:16:e5:f6:7b:3e:13:4f:93:4e:49:a8:0d:2e:
08:10:31:e3:6d:40:c5:0c:9c:88:55:06:7d:1d:c5:
9d:e0:80:c9:fe:f4:e9:26:6d:f7:c2:45:40:25:cf:
07:53:e7:16:4c:7e:e5:08:ef:cb:06:60:b2:e7:f7:
e2:b6:ad:7a:41:56:de:65:b6:2e:a6:0b:73:6a:6f:
66:a2:a9:da:9c:1d:90:92:55:b7:68:38:e8:64:ba:
31:8e:fa:ad:6f:0e:0c:43:99:71:c7:c1:a8:89:62:
ba:41:11:dd:80:4c:d4:1e:73:e7:12:de:1e:0f:0d:
e7:a5:dd:82:56:f9:12:08:be:ec:a9:84:f6:91:b6:
d7:3a:3a:fd:9e:f5:18:b4:83:63:7e:8b:72:a3:fd:
33:5b:86:27:af:d9:c1:46:c3:d2:7c:ac:dc:e4:c0:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:12:D9:B6:42:F4:71:D3:3A:6A:3E:AB:C3:66:79:46:DF:09:B8:0B
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/hxLZtkL0cdM6aj6rw2Z5Rt8JuAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.171.0/24
Signature Algorithm: sha256WithRSAEncryption
42:54:04:5d:4f:55:bd:02:25:1c:32:35:5e:18:b5:4c:94:33:
56:98:6d:cb:b0:6c:d6:ce:ed:74:86:44:15:6a:c1:24:a4:1e:
b8:82:3d:ea:9c:ad:7f:21:6e:b0:a3:7f:34:1c:c5:99:8c:44:
c9:9e:fd:d0:7d:b4:1c:ae:12:8c:51:e0:55:48:66:89:83:18:
53:a6:e4:67:6d:bf:bd:5b:6a:bd:9f:3d:21:1c:93:4c:32:bb:
59:18:5d:e8:11:99:76:bb:b9:c3:32:b6:8d:5c:c4:2c:a4:df:
8a:de:60:e5:7f:ec:c9:7e:4a:71:3b:c3:8f:ce:d4:24:32:6f:
6c:b5:c5:ac:21:61:c6:ed:c4:79:52:d3:34:bf:33:d9:bd:82:
5b:8f:90:76:13:dd:7d:1a:c3:75:06:92:16:f2:e6:f3:6c:01:
69:0c:f1:90:13:9b:ac:1d:98:72:f5:ad:8a:cf:f7:dd:8a:ee:
a9:37:ea:be:2e:7a:7c:e6:04:95:4f:a8:3a:d2:d2:23:49:ba:
d5:49:f0:6b:90:22:e1:22:7f:97:ea:db:a4:64:36:d2:6d:b4:
2c:cf:26:d4:50:dd:4a:43:ce:f7:a3:02:1a:2b:b5:ad:84:0d:
16:52:57:e2:f9:68:7f:ff:9e:1d:d3:86:d2:56:6a:43:d3:f2:
87:c4:12:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org