Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/AT04JlCChpW87L4edZ4k11sE3AY.roa
File: AT04JlCChpW87L4edZ4k11sE3AY.roa (raw, json)
Hash identifier: 9TZCj4xhpjPZcK+lzwiu5C3VQtzz8V738aUtUCUq2bQ=
Subject key identifier: 01:3D:38:26:50:82:86:95:BC:EC:BE:1E:75:9E:24:D7:5B:04:DC:06
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0183C2A829F258D51106E2B6A620CD0AB7DD
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/AT04JlCChpW87L4edZ4k11sE3AY.roa
Signing time: Mon 10 Oct 2022 16:09:04 +0000
ROA not before: Mon 10 Oct 2022 16:09:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202813
IP address blocks: 5.59.64.0/22 maxlen: 24
5.59.192.0/24 maxlen: 24
5.59.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c2:a8:29:f2:58:d5:11:06:e2:b6:a6:20:cd:0a:b7:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Oct 10 16:09:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=013d382650828695bcecbe1e759e24d75b04dc06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:de:17:5f:b4:bf:76:6e:b6:d0:57:3c:d7:28:
8e:89:0d:bf:22:c3:62:b8:24:9d:07:a0:24:0a:ea:
a3:10:44:10:ad:49:eb:f3:3e:8d:42:5d:6f:b2:df:
47:7a:10:4e:6b:23:69:5a:29:8f:bc:05:a3:38:33:
0a:05:ff:39:a5:4a:f2:7b:5b:6d:9a:2e:80:4a:8a:
1d:a6:b2:a4:4e:91:d9:45:a5:37:51:e7:74:37:f2:
ba:e9:d8:5b:1b:56:f2:3d:2b:95:75:a7:2f:63:ab:
3f:df:06:cf:14:d8:bb:07:70:11:c7:48:a8:1c:71:
dd:35:b1:9a:dc:cd:cf:51:0d:df:90:06:8d:7c:9a:
6c:e0:7c:e7:0f:30:7b:f8:ab:e8:6a:37:53:33:bd:
27:29:4d:d0:46:c0:6a:2c:2c:81:ce:67:b7:6b:51:
18:32:1e:32:74:42:87:ce:f7:c4:89:b7:f8:e2:9c:
dd:68:10:e3:19:d3:7c:0c:99:ec:38:bc:08:3c:31:
92:e3:e0:b5:7f:be:6e:10:0c:2c:2f:4f:28:21:ef:
08:1f:67:81:3c:d2:e5:dd:b5:99:8f:31:5c:df:fd:
e8:a4:13:9a:94:2c:d0:d6:6b:10:d4:07:12:5d:90:
9c:d0:e2:9b:16:61:d5:d0:1a:83:8a:9f:21:bb:ab:
73:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3D:38:26:50:82:86:95:BC:EC:BE:1E:75:9E:24:D7:5B:04:DC:06
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/AT04JlCChpW87L4edZ4k11sE3AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.64.0/22
5.59.192.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:1b:41:78:0d:41:17:d6:de:b4:80:dc:66:e9:c0:ef:3a:c8:
85:5f:c3:d0:29:6a:1f:01:a4:06:56:73:c0:ce:03:9f:e6:82:
59:2e:b1:bd:a5:ed:96:29:c4:3b:e2:08:69:44:58:ac:ab:eb:
75:c2:c5:f7:f1:55:1d:d7:72:09:12:74:c1:7c:1e:42:af:25:
30:4e:81:0b:a8:60:56:8c:88:e3:92:22:7d:99:b4:44:fc:ff:
14:d6:67:db:e6:3f:a2:0a:c0:cf:ae:44:20:01:5f:e2:91:17:
a0:c1:79:24:8a:5f:7a:93:7b:94:95:97:e4:44:59:3b:de:20:
1c:f4:72:56:35:6f:c4:4e:f0:37:b9:71:80:6a:99:f7:3a:b6:
c9:27:b1:f8:c6:50:69:f9:5e:8e:17:eb:52:2b:ac:d4:d2:df:
cc:11:f2:da:e9:be:2a:3d:c9:fe:c6:ce:78:8c:d3:63:4c:75:
b5:56:9c:d6:69:ed:b3:17:cb:cb:45:a3:94:f9:30:fe:d9:7e:
ed:69:cb:98:c1:37:1d:7f:31:02:bf:3d:e7:10:09:b7:86:4f:
4b:e7:c8:91:fa:6c:f8:f2:72:bf:07:30:c6:ea:0d:97:a0:41:
9c:ad:29:06:fa:b0:7f:4d:ca:9a:b9:23:80:2c:05:c7:ea:ca:
71:c5:79:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:28 2025 by rpki-client