Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/BE8Er1K_2Agn64rdZFC-7VHQ-d4.roa
File: BE8Er1K_2Agn64rdZFC-7VHQ-d4.roa (raw, json)
Hash identifier: WY5uPeqk/JBY+iGkwQbiWY81B0wJVNRS2EoA/P72380=
Subject key identifier: 04:4F:04:AF:52:BF:D8:08:27:EB:8A:DD:64:50:BE:ED:51:D0:F9:DE
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 1283E3F7
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/BE8Er1K_2Agn64rdZFC-7VHQ-d4.roa
Signing time: Sat 01 Jan 2022 10:05:44 +0000
ROA not before: Sat 01 Jan 2022 10:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41689
IP address blocks: 5.202.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310633463 (0x1283e3f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 10:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=044f04af52bfd80827eb8add6450beed51d0f9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c6:a3:a4:d5:82:7c:fd:55:e3:dc:d0:31:54:
ec:1a:e0:7c:82:f1:3a:35:2b:94:da:44:7d:88:5e:
c5:eb:09:3d:37:92:1e:f8:38:3c:80:0a:cb:d3:6d:
8b:65:36:3e:96:d9:84:13:40:be:0a:3b:e5:ea:20:
1f:13:1a:b7:dd:7c:01:cc:31:7c:d6:0a:b9:1c:76:
87:c0:c8:93:bf:0c:f7:5d:8d:7d:94:eb:2b:38:b3:
81:e6:02:71:6d:c4:d1:f6:06:a0:cd:5c:9a:62:a3:
c2:76:58:f7:d2:ca:21:7b:41:4f:c3:c3:39:01:2f:
08:36:65:9f:e1:40:8c:43:da:30:fb:3c:4a:7c:a6:
db:bc:30:1d:25:51:67:3b:5b:de:d2:42:be:50:93:
41:19:a9:71:6d:93:4f:ad:ce:14:0b:30:d3:4a:f4:
62:28:c2:a7:cb:ce:b3:fb:46:db:e9:dc:c4:b1:bf:
3f:df:c5:13:0a:ad:f6:8b:fa:14:42:99:33:a9:17:
03:48:69:a1:72:6c:a7:d7:8a:28:67:b3:3a:b0:99:
7f:b3:a1:fd:7e:7f:29:9f:45:da:3a:ed:d7:e6:c2:
1c:4b:e0:f8:56:53:1a:e4:15:16:cb:d0:18:39:fb:
85:d2:da:d5:c6:a2:14:82:bf:ee:6b:0f:6f:10:e0:
b0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4F:04:AF:52:BF:D8:08:27:EB:8A:DD:64:50:BE:ED:51:D0:F9:DE
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/BE8Er1K_2Agn64rdZFC-7VHQ-d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.135.0/24
Signature Algorithm: sha256WithRSAEncryption
64:45:54:72:c8:93:49:8a:3b:ac:bf:dc:22:d8:59:5e:18:c7:
d3:4c:e5:a2:c6:47:fe:1c:97:48:27:81:48:28:29:ec:90:3a:
f4:60:93:41:8e:ce:84:ee:89:05:30:3c:2b:7a:92:de:61:51:
90:60:5a:00:5f:fa:d4:e9:08:36:60:07:f5:d0:df:f2:50:08:
5b:54:8e:cd:30:e6:88:d7:3f:6c:b7:23:f5:99:ed:1d:cf:89:
f9:61:65:fb:ac:bf:e7:9f:39:c3:53:3b:e6:20:f9:17:99:ac:
e5:04:50:de:70:d0:11:4f:e6:ed:51:d7:21:58:58:cc:e6:55:
93:42:15:86:f7:c8:36:50:ad:a1:43:a4:42:46:93:31:f2:9c:
da:8f:74:a0:3c:22:40:4e:33:58:7f:74:15:36:23:77:49:38:
51:f5:49:b4:c6:18:84:b1:e0:59:57:5c:bf:1a:9d:a7:da:9c:
96:81:6d:45:c8:b8:1d:fc:1d:d3:24:fc:df:cb:18:4d:c9:c8:
fb:04:8c:84:bf:06:08:81:6e:4c:02:f0:18:18:0a:e4:be:55:
35:7f:18:27:ba:0b:9a:33:2c:f3:c7:8f:e0:49:11:27:e3:48:
06:0f:dd:ed:e3:06:6a:1c:d7:5a:02:3d:4b:fd:38:fb:5c:83:
a9:ff:ca:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org