Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/5LrMVqK7IqLNuwDBYhsjjxtsi2s.roa
File: 5LrMVqK7IqLNuwDBYhsjjxtsi2s.roa (raw, json)
Hash identifier: zJeMlXlVEVKQ28ZaJzT/fJZ9c/wOWODtZSksMNeSYOI=
Subject key identifier: E4:BA:CC:56:A2:BB:22:A2:CD:BB:00:C1:62:1B:23:8F:1B:6C:8B:6B
Certificate issuer: /CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Certificate serial: 018570F0A1FFC77E75DEAF79B0B59E0569B8
Authority key identifier: C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/5LrMVqK7IqLNuwDBYhsjjxtsi2s.roa
Signing time: Mon 02 Jan 2023 05:24:56 +0000
ROA not before: Mon 02 Jan 2023 05:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61118
IP address blocks: 212.15.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:a1:ff:c7:7e:75:de:af:79:b0:b5:9e:05:69:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Validity
Not Before: Jan 2 05:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4bacc56a2bb22a2cdbb00c1621b238f1b6c8b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:98:d6:69:02:7f:b0:2e:fb:d1:4c:56:54:
22:fd:9f:41:76:18:ce:4b:d0:1e:ca:3a:cd:43:be:
bc:ff:5c:1d:06:e6:cb:d4:97:c7:07:15:6f:83:b0:
99:f7:cd:16:87:79:b0:3e:7a:58:94:38:30:bd:3e:
89:22:e9:68:87:83:51:25:12:96:bd:91:4c:30:8e:
e8:3f:27:8f:1c:ad:6e:f3:e0:c4:63:2b:ba:fd:57:
de:d2:c7:b5:0b:b9:f8:0c:e4:f7:13:a8:05:cb:73:
ab:06:00:a8:3f:51:a6:16:d5:a1:5b:8d:73:20:0d:
bf:68:5b:05:85:2b:85:e9:f1:a9:18:af:8a:c0:69:
9c:3f:86:63:7d:db:a3:16:4b:2d:7e:cc:cf:f3:41:
3d:06:c1:78:77:30:f5:17:e9:98:5c:1e:8e:1c:94:
fc:32:bf:ff:7d:3b:b4:f9:7a:3d:48:e2:38:36:4e:
6d:20:f9:11:d5:41:87:a9:75:77:9f:3c:61:69:86:
ee:1c:2f:3f:f1:62:dc:02:3f:5a:56:98:23:52:20:
0c:7b:bc:c0:95:ad:f7:f6:a6:d0:95:fa:d6:de:8d:
5c:3e:f5:c0:dd:3b:2d:b5:6c:d4:6b:b8:f9:81:87:
5e:f4:fa:36:f4:36:59:58:86:9c:1b:92:e5:f0:f9:
9e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:BA:CC:56:A2:BB:22:A2:CD:BB:00:C1:62:1B:23:8F:1B:6C:8B:6B
X509v3 Authority Key Identifier:
keyid:C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/5LrMVqK7IqLNuwDBYhsjjxtsi2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wur6ows0Ds-BCky5rztRxwJWZZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.15.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b4:ca:97:e2:14:59:f4:9e:6d:52:90:f6:95:d6:fa:73:7a:
55:9f:c7:0f:52:46:a2:fc:2f:e5:dc:18:e3:53:25:f8:41:d9:
95:00:f3:a7:9c:db:eb:48:d0:17:9c:cd:ae:db:ac:ae:a7:8e:
64:65:82:b2:8b:51:27:cb:d0:59:d8:14:33:a2:5f:fc:f0:b4:
85:9c:2b:52:95:82:58:b7:55:02:da:6c:d6:3b:90:06:bf:00:
51:c9:35:54:0d:20:ae:dd:b0:fc:b7:39:47:fd:40:c7:c1:e1:
f8:69:ff:76:36:12:e3:4e:62:12:b2:c9:e5:42:25:45:2a:8e:
e8:a0:b6:20:91:48:06:cb:89:a1:5a:f8:27:47:55:0c:be:b1:
58:c8:dc:0f:12:b1:c3:46:70:c2:aa:f9:fd:85:ff:2d:ae:60:
51:40:fe:e3:80:22:c9:3a:40:1a:6d:50:e9:de:29:46:12:ba:
ba:47:70:b0:e1:4c:60:c1:89:9c:36:e8:07:22:00:d4:da:34:
f1:f8:b5:54:66:3b:08:63:b0:77:32:07:d0:b2:1f:34:53:0e:
15:1c:9e:75:53:45:42:bf:35:d9:e8:0f:f7:8c:ce:54:1d:67:
7a:ff:8f:26:1b:93:db:71:9a:2c:1a:05:ea:27:5b:d6:8d:4c:
d8:ee:c5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:00:09 2025 by rpki-client