Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/_VwEsE7ys7-w2vSpDWqnlAlhlt4.roa
File: _VwEsE7ys7-w2vSpDWqnlAlhlt4.roa (raw, json)
Hash identifier: eyG+wHR0iPelVXpEJt6gYTcN4qoxB+Yec5h0V5C49WI=
Subject key identifier: FD:5C:04:B0:4E:F2:B3:BF:B0:DA:F4:A9:0D:6A:A7:94:09:61:96:DE
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17AF5FF6
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/_VwEsE7ys7-w2vSpDWqnlAlhlt4.roa
Signing time: Sat 01 Jan 2022 04:54:10 +0000
ROA not before: Sat 01 Jan 2022 04:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 5.181.151.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397369334 (0x17af5ff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd5c04b04ef2b3bfb0daf4a90d6aa794096196de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:28:80:aa:7e:95:18:c2:82:f0:54:86:41:ef:
3f:26:21:10:49:88:dd:32:77:03:59:6a:ee:aa:e5:
2d:0e:5f:de:67:5e:e8:8f:84:d9:8a:2a:ba:26:58:
9a:01:bd:68:11:d6:6e:1c:ed:39:4c:3b:81:ff:93:
c5:37:d3:d7:5d:13:ed:39:00:d3:f7:6f:ba:6c:fb:
a2:4b:77:55:80:7e:80:4c:dd:72:8e:20:77:80:9a:
44:59:37:95:34:d3:31:19:53:50:a3:13:8d:f7:15:
8f:f3:c5:0c:93:b5:e7:b4:e1:0e:e4:02:2f:9c:43:
ca:44:b8:40:0a:13:ca:15:61:45:d7:a4:93:21:76:
ea:08:aa:9b:10:b2:1f:59:fb:86:04:c1:53:12:22:
20:88:bc:eb:22:aa:41:84:58:b5:76:74:30:99:4c:
58:af:f2:24:e1:65:02:4f:f4:da:6c:b0:ad:a7:80:
40:b3:5d:6b:45:b8:52:4c:93:c1:46:25:6e:37:2d:
7f:21:d7:b4:85:ba:5d:8f:a7:9c:04:74:8b:8a:af:
32:33:b0:c2:b8:90:14:c0:62:9f:2f:43:13:c7:64:
89:37:ff:9f:7d:5f:cb:de:16:da:7c:91:07:54:27:
10:cd:4d:3f:bf:94:52:95:74:b5:9f:c1:58:8d:65:
ff:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5C:04:B0:4E:F2:B3:BF:B0:DA:F4:A9:0D:6A:A7:94:09:61:96:DE
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/_VwEsE7ys7-w2vSpDWqnlAlhlt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.151.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c6:f0:44:79:8a:e5:c3:03:6e:51:96:d4:89:ba:a8:a5:34:
15:3f:c1:31:20:c8:83:4e:e6:0d:9b:52:0d:3c:23:87:14:13:
03:6d:25:74:67:d6:77:99:2c:a5:57:6a:f0:dc:a4:6b:4a:97:
4e:e5:a8:a9:d6:f1:60:f9:22:3a:70:91:ba:b4:62:91:03:69:
ca:87:70:eb:16:62:9e:7c:41:b3:c0:ad:9c:cb:73:99:d0:3c:
44:25:2f:d0:20:31:83:a3:95:25:f8:2e:d2:e2:d4:e9:2f:67:
40:00:f6:69:cb:97:12:d9:2d:2c:e5:a6:ef:3f:d5:5c:28:22:
2e:c2:4e:b1:df:b3:bb:a2:25:00:3f:ff:87:ee:00:f7:e7:e9:
68:f3:d2:e8:7b:f2:5b:16:19:31:04:9f:1d:9c:c8:60:0c:1c:
e1:f4:03:b7:a3:02:5b:d4:9c:4e:4a:f5:39:d1:ee:d3:c3:e0:
0f:78:ad:c9:ec:49:fb:9b:7f:5e:40:33:e0:b5:6c:2f:87:f4:
63:a8:8c:41:c4:36:df:19:06:23:fb:b4:68:ec:db:29:ed:79:
ac:86:f8:07:b9:f5:ac:c0:f3:8b:d4:1a:93:2f:89:a0:e0:06:
15:73:d3:5a:0e:7a:b7:e9:25:4e:e9:b1:71:24:d6:00:61:fe:
fa:53:f4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org