Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/syAeTPj_PIGGW9LgRiGHXjjxrnE.roa
File: syAeTPj_PIGGW9LgRiGHXjjxrnE.roa (raw, json)
Hash identifier: SWR9V5Z1HVE6+B4b+6/lsp0s5vOw+6LCswyFVRyf5iA=
Subject key identifier: B3:20:1E:4C:F8:FF:3C:81:86:5B:D2:E0:46:21:87:5E:38:F1:AE:71
Certificate issuer: /CN=c933481d3fa48710dcb973fdcd29340dedb6229a
Certificate serial: 0971588B
Authority key identifier: C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/syAeTPj_PIGGW9LgRiGHXjjxrnE.roa
Signing time: Sat 01 Jan 2022 10:04:06 +0000
ROA not before: Sat 01 Jan 2022 10:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43578
IP address blocks: 5.226.168.0/24 maxlen: 24
5.226.172.0/24 maxlen: 24
2a04:b880:5::/48 maxlen: 48
2a04:b880::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158423179 (0x971588b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c933481d3fa48710dcb973fdcd29340dedb6229a
Validity
Not Before: Jan 1 10:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3201e4cf8ff3c81865bd2e04621875e38f1ae71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cd:8a:02:cd:30:da:f4:37:f0:8d:60:22:df:
be:40:ec:ca:89:0d:fb:08:84:07:f5:af:e4:80:45:
f2:67:d2:91:48:7a:41:83:78:64:b3:26:dc:a8:a0:
b9:e5:01:ce:ef:22:29:02:2b:ab:80:db:13:a8:49:
57:2d:eb:bb:9c:d7:9c:8f:25:21:67:77:ae:3a:ee:
59:df:5f:02:c2:09:ab:48:06:09:26:92:79:37:c7:
44:ad:c6:c6:8c:9d:9d:88:31:7b:be:fa:4e:f3:fb:
83:d0:67:29:a5:73:c6:b8:53:f9:de:af:d6:e8:a8:
f9:54:57:0e:49:b4:6c:da:39:4d:0c:17:6c:dd:a9:
8a:bb:35:24:92:21:71:31:1c:2d:ee:29:e4:8e:b8:
4d:8f:e0:85:50:87:3a:94:ed:ef:87:de:ae:45:05:
bf:9f:10:d7:9f:77:f5:29:de:c5:e3:8a:83:66:6e:
2e:a5:d6:1b:92:e9:98:5c:9c:c2:44:44:5d:0f:50:
76:b6:64:f4:0a:74:50:ef:00:2d:bc:f4:94:39:8e:
c6:7b:9f:9d:bc:39:a7:d8:1e:57:54:65:e3:50:9a:
99:88:c0:0e:14:d3:f2:0f:a8:66:ea:7c:f1:a7:84:
24:6a:40:1f:01:1e:85:94:39:23:c4:ba:b3:52:61:
19:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:20:1E:4C:F8:FF:3C:81:86:5B:D2:E0:46:21:87:5E:38:F1:AE:71
X509v3 Authority Key Identifier:
keyid:C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/syAeTPj_PIGGW9LgRiGHXjjxrnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/yTNIHT-khxDcuXP9zSk0De22Ipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.168.0/24
5.226.172.0/24
IPv6:
2a04:b880::/48
2a04:b880:5::/48
Signature Algorithm: sha256WithRSAEncryption
0e:67:4d:c8:fd:76:13:6f:a6:81:58:69:dd:a7:db:1d:fb:e9:
79:6b:55:c0:35:05:a2:03:43:94:57:5f:6b:e5:c4:b1:16:88:
78:e2:d7:20:a7:e5:07:31:da:bc:9d:a0:bb:04:c3:8f:15:08:
4f:38:01:e2:81:58:23:86:0f:13:61:c7:38:a3:f0:f5:bb:06:
2e:9b:c8:aa:96:bc:44:be:38:ea:24:e1:07:48:f4:a2:a4:79:
3b:32:31:c8:34:31:82:68:30:77:78:5c:81:f7:3c:31:51:a9:
1e:3b:f9:68:25:3b:80:3d:5f:1b:93:c3:7c:72:7c:10:ff:98:
df:10:9f:f2:46:8f:5a:64:c6:49:cf:f6:fa:be:bf:f0:75:48:
32:ef:83:37:64:93:9a:ea:c2:c7:64:fc:2d:4f:20:54:60:e3:
54:ee:fd:5c:3e:eb:e0:56:04:51:65:dd:09:af:6c:95:2a:56:
59:d5:51:6d:88:a9:38:7c:38:e3:f7:36:c7:c7:a1:94:53:c6:
ef:a2:fc:a0:a6:88:95:6a:70:ee:b9:32:d5:c5:5b:bf:4c:2b:
dc:75:be:ea:1c:a8:ff:f0:1d:e8:ff:a6:e8:98:20:e8:bc:77:
ec:be:1d:55:ab:de:f5:19:6b:ed:8e:a5:25:63:c4:0b:c8:1c:
a9:b3:3e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:25 2024 by rpki-client on console-fra.rpki-client.org