Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/wA8R8Tn7eiv9TsyMSFpOmHLfbHk.roa
File: wA8R8Tn7eiv9TsyMSFpOmHLfbHk.roa (raw, json)
Hash identifier: RTH3vYg52LJonA07Kf6u02x2eQPjWu1RDDTsrCmcrYE=
Subject key identifier: C0:0F:11:F1:39:FB:7A:2B:FD:4E:CC:8C:48:5A:4E:98:72:DF:6C:79
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 0182DA5C38910FEBEC47AED8A1CC9879B9B8
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/wA8R8Tn7eiv9TsyMSFpOmHLfbHk.roa
Signing time: Fri 26 Aug 2022 13:34:13 +0000
ROA not before: Fri 26 Aug 2022 13:34:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203324
IP address blocks: 5.59.238.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:da:5c:38:91:0f:eb:ec:47:ae:d8:a1:cc:98:79:b9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Aug 26 13:34:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c00f11f139fb7a2bfd4ecc8c485a4e9872df6c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0d:5a:13:1f:60:08:44:a8:14:12:5b:61:4e:
b4:88:1e:43:79:fa:b6:11:d1:11:4f:63:94:91:a7:
09:8c:98:82:25:7f:d8:31:bf:d5:6a:e1:42:1b:8d:
7c:99:3c:54:53:f2:7a:ac:bd:57:b3:bb:9f:eb:51:
64:91:65:01:f4:51:85:a0:79:52:79:21:a0:5f:8c:
65:cb:78:ea:d9:fa:17:aa:49:31:ca:18:f7:32:ca:
7c:fe:04:f9:07:7f:31:38:c3:fd:cf:8c:75:ba:dc:
c4:fa:27:0d:f3:b1:37:1d:5c:a1:2e:40:8f:31:7d:
c7:a2:6a:76:1e:68:dc:da:ca:21:e7:69:54:eb:e0:
05:44:55:73:db:05:ca:78:ab:b7:7a:b6:ef:e0:ce:
eb:7e:da:bf:95:5e:96:93:0d:25:82:11:08:01:99:
40:94:3b:db:46:f0:13:0f:fe:70:ef:84:f9:a2:ea:
b8:2c:55:9d:65:1a:f6:13:fa:81:8c:f9:0a:a8:eb:
a2:e8:8f:67:66:b1:5c:e3:c3:4b:e6:b1:a0:13:c5:
2c:b0:a4:11:fa:b5:a7:77:07:9b:84:ae:c0:8a:11:
d8:8e:3f:11:c8:2a:00:8c:ec:1f:62:24:e9:1e:20:
f9:73:8c:36:a3:ed:2d:98:4e:38:d7:19:43:21:55:
c9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0F:11:F1:39:FB:7A:2B:FD:4E:CC:8C:48:5A:4E:98:72:DF:6C:79
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/wA8R8Tn7eiv9TsyMSFpOmHLfbHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.238.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:bb:b1:56:40:cb:89:73:ef:22:98:8a:05:89:cc:2e:8e:c2:
74:4e:72:88:18:68:87:50:e6:ad:f2:86:78:90:49:1c:ae:91:
c9:9d:09:9b:ba:be:e4:5a:d5:e9:31:0b:c9:1c:76:0d:8a:24:
1a:36:9e:d3:d2:5f:65:e0:f3:2d:aa:f0:cf:73:52:c3:3a:36:
d6:1e:f1:02:01:d3:75:ae:c5:08:57:18:99:97:f6:3d:78:b6:
6e:ae:9d:c1:8e:94:ef:ed:91:64:30:c6:a8:f6:16:83:62:70:
81:50:42:8f:10:9b:4d:cc:a5:fe:9e:68:08:9e:50:b7:8a:5b:
0f:ff:fd:d5:db:a9:96:61:ab:dd:c0:22:10:a9:d4:75:c8:fb:
97:97:dc:f2:0a:07:f8:64:ed:1b:f3:95:92:c8:7d:a1:35:96:
75:86:01:73:1f:26:30:e6:e5:8f:98:a1:45:2e:20:a3:bb:c5:
28:61:f4:66:aa:52:22:21:28:e3:90:07:f1:37:f6:c9:cd:35:
e6:5f:6c:5d:75:f4:fb:f3:32:13:34:69:62:92:bb:65:46:a5:
98:ff:74:73:2d:bc:d5:48:86:c4:c1:3f:df:8b:af:d0:42:d2:
4e:78:e1:61:6b:c5:e6:6f:ae:c3:b6:0a:c5:74:eb:1f:47:14:
13:ff:f3:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:36 2025 by rpki-client