Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/fnbhadEZlrDbvLUp-h8GBwwlIHo.roa
File: fnbhadEZlrDbvLUp-h8GBwwlIHo.roa (raw, json)
Hash identifier: zkg5lYUAMfJy1aTuOd2Tj3dVCkE1XsM9e09q6iL/HeI=
Subject key identifier: 7E:76:E1:69:D1:19:96:B0:DB:BC:B5:29:FA:1F:06:07:0C:25:20:7A
Certificate issuer: /CN=e466483396afb377e5e379d1615bde0fd4d9ed47
Certificate serial: 01E42A
Authority key identifier: E4:66:48:33:96:AF:B3:77:E5:E3:79:D1:61:5B:DE:0F:D4:D9:ED:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5GZIM5avs3fl43nRYVveD9TZ7Uc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/fnbhadEZlrDbvLUp-h8GBwwlIHo.roa
Signing time: Thu 21 Apr 2022 12:08:58 +0000
ROA not before: Thu 21 Apr 2022 12:08:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210974
IP address blocks: 5.44.254.0/24 maxlen: 24
2a12:cf40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123946 (0x1e42a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e466483396afb377e5e379d1615bde0fd4d9ed47
Validity
Not Before: Apr 21 12:08:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e76e169d11996b0dbbcb529fa1f06070c25207a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:41:1e:57:65:c8:a3:9b:4e:42:ea:1d:bf:
66:de:78:df:eb:9f:4c:79:85:05:46:a4:bc:98:ea:
f4:6f:51:2f:33:22:02:a1:e6:78:7b:4c:44:53:3d:
8c:6c:a4:b1:02:fc:9e:5a:90:85:ac:2a:7d:75:a8:
c7:c3:cd:e8:d5:0b:39:77:2e:d6:fb:b6:ea:03:32:
1e:74:42:4f:29:b5:20:44:3e:f8:58:44:79:dc:5c:
5c:3b:ae:48:52:ff:3d:a5:91:ba:d1:8c:66:1b:f3:
70:2c:c0:00:d7:f3:1f:19:fc:91:5f:08:9c:4f:a6:
40:c9:53:9b:f1:9a:09:ba:74:f5:03:d2:cc:3e:29:
92:6a:63:6d:0f:90:35:bc:66:18:b9:3d:a0:ca:53:
65:eb:94:c2:0d:f3:55:ef:b1:ac:97:0b:76:87:dc:
93:19:d1:f3:88:6e:34:47:46:91:9b:f6:61:f9:f4:
19:d0:35:7d:53:80:30:dc:06:08:be:6d:cb:1d:37:
f2:10:a4:92:39:78:18:b9:1e:dd:7e:19:03:31:c6:
fa:db:f2:67:03:63:85:b7:db:75:7b:f2:47:ed:65:
52:0e:d3:8e:7c:65:6d:99:2d:56:4f:d2:e9:d2:b4:
d9:c2:69:28:4c:39:8b:2b:35:6d:45:d3:6a:7e:c9:
0a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:76:E1:69:D1:19:96:B0:DB:BC:B5:29:FA:1F:06:07:0C:25:20:7A
X509v3 Authority Key Identifier:
keyid:E4:66:48:33:96:AF:B3:77:E5:E3:79:D1:61:5B:DE:0F:D4:D9:ED:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5GZIM5avs3fl43nRYVveD9TZ7Uc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/fnbhadEZlrDbvLUp-h8GBwwlIHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/18b5bb-8e41-4e88-bdbe-341c63614280/1/5GZIM5avs3fl43nRYVveD9TZ7Uc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.254.0/24
IPv6:
2a12:cf40::/32
Signature Algorithm: sha256WithRSAEncryption
9b:43:1a:d2:4d:c0:7a:50:80:33:d8:7b:ca:b7:8b:f9:a0:77:
d0:51:8e:58:70:83:39:ef:9f:0a:f2:2d:e8:bd:3d:1a:c4:5f:
cf:43:4d:72:da:b4:e5:47:38:a9:db:c9:74:4b:08:ed:e7:62:
d3:67:c2:be:f2:01:08:54:f1:52:6a:3c:65:bf:d3:08:10:6a:
75:e4:f2:9b:36:9e:17:d6:1c:bf:b1:1d:18:50:5c:80:6b:1d:
20:5e:78:c6:c5:e3:25:b5:f8:ea:68:1a:f3:86:41:40:31:a6:
6a:e7:c0:53:67:2f:61:39:dd:b2:9b:a1:9e:3f:62:6b:24:43:
2d:f5:49:58:07:1f:54:00:69:e3:d8:2c:f7:b1:7e:8b:61:62:
87:79:8a:a7:9d:3e:7b:ab:fd:e6:65:29:c8:1e:3a:38:79:d8:
d1:dd:a9:ba:18:5f:22:ae:ae:1d:37:ad:2b:fc:5d:88:66:3a:
1c:e5:eb:38:2e:95:cf:0e:33:5f:22:79:46:6f:8b:6f:90:79:
83:2e:0b:c8:9f:17:10:a5:bc:f3:1a:34:aa:b0:c3:f1:5e:76:
47:96:b2:89:46:28:5b:05:76:72:ec:ba:30:d7:4e:64:8d:55:
ce:03:f0:20:50:29:6b:0f:9e:b2:42:cd:82:99:3d:f3:cb:b3:
eb:5b:58:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:15 2024 by rpki-client on console-ams.rpki-client.org