Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0wEvA0_FHeisjAoYbRGOfjuwCAI.roa
File: 0wEvA0_FHeisjAoYbRGOfjuwCAI.roa (raw, json)
Hash identifier: kjPmeO/4r+JzBvQU7fSb3rFW1q2luiW1XjgYh6U2bUI=
Subject key identifier: D3:01:2F:03:4F:C5:1D:E8:AC:8C:0A:18:6D:11:8E:7E:3B:B0:08:02
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1950B4A5
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0wEvA0_FHeisjAoYbRGOfjuwCAI.roa
Signing time: Sun 27 Mar 2022 08:54:07 +0000
ROA not before: Sun 27 Mar 2022 08:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 5.181.151.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424719525 (0x1950b4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 27 08:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3012f034fc51de8ac8c0a186d118e7e3bb00802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:15:81:c7:93:74:c3:ee:58:ea:57:63:83:53:
08:58:26:ca:41:6c:80:8c:ae:7e:78:8c:4e:36:c0:
c6:c6:62:05:d9:3c:b9:67:65:0a:e5:eb:70:fc:20:
3d:2c:87:f4:b8:2e:4d:84:8d:a2:03:e1:d4:0e:ac:
a3:a7:de:d4:cf:d6:f5:41:ba:79:d2:5d:a4:4a:5b:
e2:a3:4e:e1:a7:d6:3e:0c:a4:2c:df:4d:b7:69:ce:
d6:a6:ff:e2:35:f8:59:39:f1:9a:71:67:2e:c8:ca:
a5:9a:77:33:e6:6e:62:2c:24:d3:0e:10:33:85:8d:
35:53:ef:0e:53:31:bc:58:3d:24:7e:85:94:1e:5b:
6f:d9:ea:83:b9:35:9c:6b:39:c8:ee:59:3c:44:d2:
b4:4b:10:b4:30:96:4c:16:3e:3c:87:de:df:6a:af:
5c:4f:12:f2:d7:3b:32:70:67:04:ae:1e:0f:18:cd:
aa:92:02:9e:9d:18:6c:c4:c1:f1:1b:79:95:c1:81:
a0:35:7a:f4:85:23:53:01:e3:b8:55:c1:cc:c6:82:
8a:78:ed:72:f7:0a:c4:3e:6d:e6:10:01:8a:25:56:
2f:ab:16:4a:d0:29:01:08:a5:a4:a8:f8:1a:67:00:
ba:ed:d7:99:76:02:c6:7f:a7:d2:90:f1:a8:0c:67:
63:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:01:2F:03:4F:C5:1D:E8:AC:8C:0A:18:6D:11:8E:7E:3B:B0:08:02
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0wEvA0_FHeisjAoYbRGOfjuwCAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.151.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:66:3a:ea:15:85:55:6d:73:3f:36:0f:7b:01:cb:e4:b8:ee:
45:02:35:ad:92:f9:d6:d2:6f:db:33:08:c8:5c:eb:a7:ce:8c:
d9:1b:73:3d:df:49:2a:0a:d7:42:f8:7e:f1:bc:a4:49:4f:13:
fa:f0:45:cc:ab:51:60:af:57:0c:8b:7b:1b:78:3a:9e:21:f2:
23:10:1d:85:e4:d8:51:9d:c3:08:c2:fd:8d:4b:af:be:ac:11:
cf:bf:7e:b3:1f:41:c0:74:90:08:d7:f4:da:76:14:95:92:a3:
a2:dc:65:19:cf:32:15:95:40:b0:b0:1a:f0:d5:b0:f9:4f:ac:
68:a3:15:16:c6:18:dd:de:b0:b8:1e:c7:f1:51:6c:e2:fb:01:
d0:2e:e9:cc:ab:16:46:d3:37:06:63:be:98:a8:42:f8:2f:c5:
02:d9:5f:7f:6f:55:ed:73:17:d4:eb:f9:72:8f:ee:e1:ca:8c:
24:95:5b:7d:ce:bc:a2:78:21:99:4f:53:b2:5c:56:2f:3f:4b:
b5:43:1f:94:48:5b:5b:6a:72:5a:79:ea:fe:53:75:75:b5:67:
2f:45:eb:83:eb:b3:0b:44:ad:bc:f4:2a:4b:0a:5c:28:a0:9d:
dc:b7:ab:c8:36:90:b1:7e:2a:1f:2d:65:a8:ae:eb:77:53:53:
af:4f:4e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org