Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/lpGxuMgxFu_HeLwLpHgYIl14QIc.roa
File: lpGxuMgxFu_HeLwLpHgYIl14QIc.roa (raw, json)
Hash identifier: xMPabbebHggx8s/SO0AOQrzaXCvWUcJ0UuJ9HRWp660=
Subject key identifier: 96:91:B1:B8:C8:31:16:EF:C7:78:BC:0B:A4:78:18:22:5D:78:40:87
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0182B1CB6F69EACA71904E00F3BFB306F04B
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/lpGxuMgxFu_HeLwLpHgYIl14QIc.roa
Signing time: Thu 18 Aug 2022 16:31:15 +0000
ROA not before: Thu 18 Aug 2022 16:31:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202813
IP address blocks: 5.59.64.0/22 maxlen: 24
5.59.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:cb:6f:69:ea:ca:71:90:4e:00:f3:bf:b3:06:f0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Aug 18 16:31:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9691b1b8c83116efc778bc0ba47818225d784087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:57:08:32:49:e1:37:ab:ac:fb:05:3b:4e:53:
18:34:f7:63:cb:17:d9:8c:eb:a6:ce:e8:da:fb:f7:
0d:3b:bc:a1:fb:3a:1c:f8:61:c2:ea:22:4f:cb:70:
4e:1d:6d:e7:4e:82:80:f8:d7:01:47:b3:52:7b:f2:
d9:cf:02:c2:1d:3b:4c:93:65:38:73:b8:48:01:74:
34:72:ab:e3:77:5e:a2:3f:09:17:c7:d8:ea:cf:83:
4b:cf:f3:a7:a4:6d:f3:0c:5f:f2:c3:14:a2:eb:7d:
6b:41:99:ac:57:2d:ea:a8:49:be:36:06:f4:a5:bb:
e5:31:7e:05:5a:5c:f1:55:66:09:1e:32:89:29:60:
bd:d4:c3:2d:8e:c3:01:e6:e4:f2:eb:11:bf:e6:07:
a3:d6:a8:bd:16:16:af:68:53:22:c9:fe:21:76:65:
bb:d2:ef:0e:eb:5f:dd:50:ca:47:66:1c:25:40:7f:
4e:b2:43:d5:f6:b5:23:21:b2:65:65:5b:39:9b:b1:
4f:ac:70:0d:c1:9a:7c:5a:d6:1a:10:0a:c5:8c:d4:
1a:b9:65:09:8e:42:3a:1d:8d:b7:64:43:17:03:cd:
46:c8:51:b4:24:25:be:23:9b:e2:29:14:ff:75:f5:
f6:10:78:d3:5c:5a:ee:b3:c5:33:54:43:ed:a1:91:
f1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:91:B1:B8:C8:31:16:EF:C7:78:BC:0B:A4:78:18:22:5D:78:40:87
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/lpGxuMgxFu_HeLwLpHgYIl14QIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.64.0/22
5.59.223.0/24
Signature Algorithm: sha256WithRSAEncryption
af:4b:a7:15:a2:0d:8d:4b:58:57:dc:0d:3a:ee:4b:a1:53:1f:
ea:7c:f4:f5:67:21:6e:d7:08:5e:00:1f:3d:53:31:67:2f:9e:
1f:e9:c4:52:19:9d:77:e3:db:b2:57:cd:b7:a0:d5:b5:3c:c8:
b9:31:44:66:cb:f3:4f:8d:36:fb:ac:47:83:76:bc:7c:90:1b:
45:1d:eb:d9:d5:f8:94:a0:e7:55:26:b8:84:5e:55:f0:e0:24:
8b:cf:be:39:a8:19:39:c5:e6:3f:36:a2:cf:95:85:8d:be:ef:
d9:49:b7:c4:63:96:22:1b:bd:87:5f:02:28:3f:47:bc:58:86:
b5:c3:dc:cf:0b:21:8f:90:ea:ce:ae:5d:68:7a:84:2f:95:b0:
14:c8:b7:bb:28:8c:44:ab:20:9b:5a:d8:44:c2:cf:b4:fd:8c:
5e:2a:14:4c:9e:c3:03:c1:e8:d3:cc:30:ba:4e:25:f5:77:6a:
09:44:9f:24:69:e7:b5:aa:14:f8:ac:af:28:10:ea:4c:37:6e:
c0:9a:79:21:b7:de:0b:1f:92:99:7a:2d:4f:36:b5:45:a3:bd:
5f:b0:b4:f8:0f:2d:51:71:12:8c:01:2a:db:7b:f8:7c:c9:17:
c7:69:89:65:14:58:84:c4:e5:90:d6:c7:5b:d2:d3:1d:60:bc:
ea:0a:44:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org