Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vJn3T9pSGtRaLxQib-GsGIrfIF0.roa
File: vJn3T9pSGtRaLxQib-GsGIrfIF0.roa (raw, json)
Hash identifier: 8NfPQMzaAA6K0P5jT1pW9hnxPdDTuoQBwPWK3MdZ9F0=
Subject key identifier: BC:99:F7:4F:DA:52:1A:D4:5A:2F:14:22:6F:E1:AC:18:8A:DF:20:5D
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0D457EF2
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vJn3T9pSGtRaLxQib-GsGIrfIF0.roa
Signing time: Sat 01 Jan 2022 12:03:13 +0000
ROA not before: Sat 01 Jan 2022 12:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57707
IP address blocks: 5.59.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222658290 (0xd457ef2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 1 12:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc99f74fda521ad45a2f14226fe1ac188adf205d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0b:90:61:6f:e2:bb:74:a9:95:42:69:b9:cf:
d1:3d:b7:72:89:7b:37:f3:bd:08:75:4e:76:e3:9d:
2a:78:9c:e6:0f:67:13:51:6f:9b:22:aa:38:1a:3d:
85:d6:3b:74:3d:a1:c9:98:2a:d4:1d:df:35:63:e4:
9a:93:97:dd:54:0f:ca:3e:86:44:23:2a:ac:6c:bc:
e1:b0:22:51:48:8c:0e:f3:b4:55:44:b6:7e:05:9b:
7e:6d:5d:34:1a:ef:4a:27:0c:1c:53:28:66:e6:72:
46:d2:c2:15:12:51:7a:f1:9c:d9:ad:61:3d:80:57:
59:f0:32:cb:b2:8f:cc:99:e3:d8:69:f6:31:d9:d6:
b7:48:eb:7e:0a:7c:71:31:11:4f:14:c2:5d:42:cd:
9e:1d:82:da:10:aa:12:f1:7f:ba:a1:6c:3d:fc:24:
8c:56:81:f9:60:6d:a4:50:e7:4d:65:ef:2f:87:c9:
65:f8:04:4b:34:b1:f9:9c:18:97:f8:9e:05:9e:89:
23:b8:98:f2:c2:d3:ff:59:2e:7d:42:32:72:9b:5f:
f8:d3:84:74:02:9f:4a:65:de:7d:6f:53:0b:71:c5:
3c:e3:2b:34:a5:46:0e:54:1d:78:13:ac:ec:99:f0:
24:87:9f:d1:38:29:3c:1d:d9:ac:17:e6:4c:80:48:
e2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:99:F7:4F:DA:52:1A:D4:5A:2F:14:22:6F:E1:AC:18:8A:DF:20:5D
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/vJn3T9pSGtRaLxQib-GsGIrfIF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.97.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9d:35:98:29:dc:f4:00:97:8a:45:bb:13:45:85:1f:2f:3d:
0f:3b:ce:2d:33:80:6e:f7:0a:4c:3c:62:e7:b8:a8:5c:29:62:
0f:d1:75:43:b2:8d:d0:4e:15:cc:5e:4b:cc:bf:41:a9:fc:c9:
85:bb:bb:bc:b8:46:b4:25:19:92:52:03:58:93:88:0d:46:52:
63:9f:d9:b4:59:95:aa:0b:e0:13:ea:a9:b0:76:67:41:8e:bc:
a0:a2:d9:cc:1f:70:bf:8e:4a:6a:04:6c:59:32:ac:bb:cf:5e:
0d:1f:32:b2:7e:7b:d4:ae:ef:7c:9b:49:6c:a3:f1:9f:48:a9:
10:e6:10:b2:6a:a7:98:97:68:e6:98:5f:84:75:b4:97:9c:61:
f3:e8:6b:19:d4:0e:bd:2c:b1:32:81:b9:dc:23:40:e6:db:69:
66:b3:fe:bc:34:37:4c:e8:da:51:8f:2f:b0:4e:90:41:fe:dc:
c6:76:c8:da:5c:a3:b4:99:f6:4e:e0:3a:a0:aa:4b:1a:c4:83:
df:85:ba:a0:09:1c:89:a3:ac:6f:07:fd:91:8e:f9:f0:ed:66:
a1:15:aa:ca:d1:19:6d:50:db:5e:74:d6:05:ed:22:3c:55:c0:
47:a4:6f:d9:6d:2a:76:9c:0f:5c:37:8b:df:e1:3b:81:e6:70:
d3:c2:1a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:52 2024 by rpki-client on console-ams.rpki-client.org