Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5plwnr2tZnyfO_zNtbpxfbU7gPg.roa
File: 5plwnr2tZnyfO_zNtbpxfbU7gPg.roa (raw, json)
Hash identifier: Si/8qVjXgoxwbAokDQbUFyh3XUQ1uxxNNHK9wzNgzhE=
Subject key identifier: E6:99:70:9E:BD:AD:66:7C:9F:3B:FC:CD:B5:BA:71:7D:B5:3B:80:F8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 178E826D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5plwnr2tZnyfO_zNtbpxfbU7gPg.roa
Signing time: Sat 01 Jan 2022 04:53:51 +0000
ROA not before: Sat 01 Jan 2022 04:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 5.183.204.0/24 maxlen: 32
5.183.205.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395215469 (0x178e826d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e699709ebdad667c9f3bfccdb5ba717db53b80f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1d:3e:ea:ca:25:9a:37:1c:b3:fb:0d:59:9c:
71:ac:f0:12:a5:66:66:2b:ef:ee:d6:62:bb:84:d8:
8a:bc:8c:b1:41:51:eb:76:49:54:a1:90:1c:24:cb:
c4:02:d6:0b:41:ec:63:97:06:9d:fb:27:a8:d0:6a:
21:bf:6a:24:10:a9:12:eb:68:db:43:cd:14:ad:ed:
50:f4:23:64:72:ae:57:5e:73:b2:24:8c:31:b7:05:
d8:22:78:ab:d8:1a:22:21:2c:5a:7a:8b:b5:18:02:
1a:05:a5:3f:f1:c3:89:0f:53:c7:97:59:6b:90:53:
35:4e:51:43:44:71:4b:d5:57:ad:a4:05:93:fa:57:
9c:b8:cd:c2:e4:df:dc:3d:e1:39:26:26:88:c4:40:
4f:e6:53:3f:1b:04:61:52:48:90:b4:d6:76:70:a7:
bc:48:b3:37:82:e3:aa:bf:90:fb:ab:96:07:74:31:
d4:e3:93:15:60:8b:06:1a:f6:9b:ec:2e:94:53:82:
7c:4a:8e:e1:de:03:16:a9:78:bd:9e:a5:e0:3f:d2:
97:75:dd:6e:28:34:ed:cf:66:b8:b4:97:f6:35:37:
eb:95:72:4b:54:f1:ad:f3:93:87:38:ad:79:23:68:
5b:b0:dd:a8:a7:26:25:89:71:3c:33:c0:e0:1f:28:
53:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:99:70:9E:BD:AD:66:7C:9F:3B:FC:CD:B5:BA:71:7D:B5:3B:80:F8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5plwnr2tZnyfO_zNtbpxfbU7gPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.204.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:f4:a8:3d:cd:ea:7d:e6:a4:f1:81:4c:b9:a2:fb:03:1d:7a:
90:e4:2c:f3:35:eb:ba:27:a1:96:5b:44:0d:4a:10:52:ec:6c:
99:0e:cc:fb:05:c7:7a:b1:9c:9a:a3:b0:76:27:8b:b5:63:2a:
ef:6e:50:00:a0:d2:2f:f7:cd:05:d5:16:58:3f:1f:10:48:a5:
bb:59:dc:82:98:6f:ca:61:6e:71:c6:e2:58:a6:9d:70:77:d6:
70:5d:5a:21:64:ac:2b:ad:e0:42:c6:cf:bd:ce:22:4a:ba:ef:
b8:be:97:a0:4c:a9:3b:4e:92:84:34:ed:40:67:4b:49:dd:71:
59:36:8c:86:d7:20:ea:f2:a6:57:35:57:f3:b9:94:6f:2c:51:
18:25:35:3d:b9:d2:8f:90:6a:48:7c:da:59:81:3f:63:39:7b:
bb:31:ae:0d:52:6e:3d:ba:0b:ed:b3:43:86:e0:66:96:23:3b:
e5:0d:bd:9e:e8:37:25:f2:ce:75:36:88:a0:da:d7:91:23:b0:
49:39:2f:06:78:e5:8e:b6:50:81:30:ae:7c:dd:57:9e:0f:88:
56:dc:97:cc:85:c3:25:1a:58:fd:6d:bc:51:bf:13:86:67:84:
82:64:d1:44:01:b5:cd:09:69:dd:6c:ab:8a:4e:a7:c0:e1:e4:
80:ed:8c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org