Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/16E0-Vk3fNuth3cH1znmnyCo_zQ.roa
File: 16E0-Vk3fNuth3cH1znmnyCo_zQ.roa (raw, json)
Hash identifier: 1+DY2dZilM4vIJ+cgmJVH8ypDDqpW2llytAYCVBmQ0w=
Subject key identifier: D7:A1:34:F9:59:37:7C:DB:AD:87:77:07:D7:39:E6:9F:20:A8:FF:34
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03424734
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/16E0-Vk3fNuth3cH1znmnyCo_zQ.roa
Signing time: Sat 01 Jan 2022 16:04:37 +0000
ROA not before: Sat 01 Jan 2022 16:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 5.252.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54675252 (0x3424734)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7a134f959377cdbad877707d739e69f20a8ff34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8b:91:7b:01:87:c0:70:eb:8d:26:51:a0:34:
eb:10:5a:d8:cf:d7:bc:31:ab:75:33:73:3c:c1:15:
f3:87:7c:89:1c:46:e3:bc:fa:94:3b:81:38:63:cc:
dc:7b:5f:6e:e0:59:17:76:10:3e:54:82:f3:83:49:
be:56:a1:d0:87:cb:20:65:d6:0a:85:e6:09:3b:d0:
94:86:27:7f:c3:6e:72:1a:64:40:dc:8d:53:fc:0b:
98:54:c8:7f:f8:bb:10:39:59:99:bd:78:3e:39:b8:
d0:3b:3a:c7:93:c3:c6:1d:9e:46:02:fe:06:b8:9f:
af:d3:a7:0f:50:a5:b7:f1:8e:db:91:c1:22:4b:af:
27:d4:73:2c:a5:f7:d7:60:88:eb:48:42:d7:67:0c:
6d:e5:70:ed:52:89:b7:56:f0:87:07:2e:83:17:19:
ca:9b:14:52:37:19:05:04:7b:ca:84:86:c6:be:b8:
4d:a0:77:ce:67:ca:df:8d:ce:d1:92:d7:24:53:43:
df:ea:a8:b4:86:df:4e:da:09:99:7a:4b:bd:b5:3b:
5d:37:3a:b8:51:fd:2d:8b:6d:61:d4:7d:72:ef:35:
af:12:d3:ee:0f:1f:53:aa:10:ef:19:c9:6f:8b:1e:
ca:e5:05:77:03:cf:eb:94:e5:5a:eb:77:1e:c2:b6:
43:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A1:34:F9:59:37:7C:DB:AD:87:77:07:D7:39:E6:9F:20:A8:FF:34
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/16E0-Vk3fNuth3cH1znmnyCo_zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.117.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:38:5f:e6:87:cb:b3:2f:3f:72:a8:5d:34:53:57:e9:fa:00:
7a:b7:d2:ac:47:1b:ec:ff:c0:67:3a:49:56:10:c4:d4:9c:26:
ec:9f:c9:e3:47:8d:b1:cf:28:a3:63:c1:f9:ec:de:10:2f:3f:
d3:dc:93:21:9a:af:95:39:1d:73:ee:50:34:4b:91:f2:d5:ae:
35:53:01:9e:c8:2a:c8:a5:5c:ac:25:80:62:44:42:25:9f:83:
88:a8:37:11:aa:0b:b0:ea:9c:6c:73:41:b5:d6:8f:a3:00:34:
6b:a4:fe:99:5b:3a:9b:de:6b:bc:ed:fc:7c:6f:73:a2:be:65:
40:63:fc:51:ba:70:5b:fd:79:0e:c0:94:5e:04:f8:3e:ce:9a:
2e:45:d9:40:b4:f3:72:4d:94:97:e4:8f:19:f3:a6:5b:4d:30:
55:30:4c:59:fa:72:ff:35:60:25:5c:b8:9d:44:e7:0d:28:56:
f2:57:9f:f9:80:d1:d9:af:b4:a4:01:00:41:8b:c3:5b:d4:23:
ed:67:52:fa:80:8d:6d:c7:27:04:f2:5c:79:30:89:0c:f3:6b:
0e:a5:73:f2:45:6c:5c:86:49:85:1b:1c:6c:1c:74:e1:a4:52:
b2:ff:ee:6a:2e:5f:6b:22:a8:c3:dd:5f:9f:73:fb:10:65:5c:
94:da:59:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org