Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/NhgJ6Vtk4yMFpHZm1ZKTyYCsHq8.roa
File: NhgJ6Vtk4yMFpHZm1ZKTyYCsHq8.roa (raw, json)
Hash identifier: vw7goDQIuRsAHRqolImvOkC/FIENbRUxajftu7CDrw4=
Subject key identifier: 36:18:09:E9:5B:64:E3:23:05:A4:76:66:D5:92:93:C9:80:AC:1E:AF
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 128AAC02
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/NhgJ6Vtk4yMFpHZm1ZKTyYCsHq8.roa
Signing time: Sat 01 Jan 2022 10:05:48 +0000
ROA not before: Sat 01 Jan 2022 10:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58142
IP address blocks: 5.202.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311077890 (0x128aac02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 10:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361809e95b64e32305a47666d59293c980ac1eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:be:da:b5:28:b2:a2:aa:c3:fa:62:aa:a5:9c:
42:1c:c4:0b:43:d2:4d:ae:62:0e:58:66:58:f0:75:
27:bd:24:1e:78:a0:fa:67:53:f7:2c:28:32:d5:d4:
4f:aa:59:da:e7:c7:db:e1:0a:f0:14:7b:18:be:6a:
2e:c0:f7:76:1a:48:6e:cf:71:b0:be:8a:63:60:bf:
5c:55:c5:4e:c3:e9:b5:f5:5e:f2:3f:59:01:1e:99:
20:a2:99:b3:76:bb:39:5e:0f:85:01:60:75:29:31:
13:95:08:5c:f0:8f:1b:42:4e:a5:f4:73:2d:c6:0f:
9a:9a:58:a5:cb:42:c8:47:dd:37:2d:20:5f:e1:25:
d1:df:a6:7d:36:7f:20:80:63:37:4e:fa:4b:e7:67:
3d:a7:87:fe:37:d0:2f:db:f8:ea:fc:29:43:d0:94:
af:0b:34:f1:be:6e:43:a0:79:51:34:26:ea:66:d8:
fc:33:6f:27:70:bd:c2:f0:21:7d:61:57:1f:6f:16:
6d:0e:22:cd:e6:f5:27:66:be:44:3e:e9:59:a4:a3:
0c:7e:40:af:de:53:77:79:9d:91:89:8e:86:94:07:
97:3a:b8:46:02:81:9e:10:1e:b7:c9:b2:4d:66:32:
fb:29:7a:70:06:18:81:05:b6:ab:28:49:e7:70:f0:
d4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:18:09:E9:5B:64:E3:23:05:A4:76:66:D5:92:93:C9:80:AC:1E:AF
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/NhgJ6Vtk4yMFpHZm1ZKTyYCsHq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.168.0/21
Signature Algorithm: sha256WithRSAEncryption
be:ca:cc:da:02:cd:5f:bd:28:37:c8:df:00:08:0e:e6:a2:99:
08:ff:cd:a7:9b:35:3b:bd:40:d7:be:d7:f6:98:b7:2a:b8:00:
dd:2b:3f:66:ef:f1:48:1d:fe:7a:c3:51:ac:b3:39:71:66:ba:
b1:89:0a:78:a0:44:4a:4e:8a:52:e2:b3:a8:51:99:5d:db:f2:
71:3d:8a:19:f8:fc:fe:1a:20:e9:71:ed:1c:0b:08:78:0a:fd:
d0:a1:09:6f:05:74:bd:f7:e3:74:ac:c9:aa:f6:dd:d0:a4:20:
76:f8:2f:42:41:bd:3b:83:0c:75:fd:b1:9f:61:56:7b:d9:e4:
71:c1:3d:70:1d:8c:78:db:94:e5:6d:12:58:98:70:a8:7d:e2:
0f:fb:80:c4:17:96:f5:86:df:1f:dc:d4:b5:ac:ee:30:79:3c:
b2:71:af:e7:ca:e8:24:fe:5e:de:cb:23:41:4e:40:4f:eb:46:
a3:14:09:bf:3f:b1:a8:89:5f:63:62:b9:aa:cf:c8:12:7b:6b:
eb:25:0e:1f:b8:35:fc:c6:7f:16:17:b5:fe:2a:4f:32:87:a4:
8d:c9:f9:aa:63:07:c8:30:0c:cf:95:1a:5f:b8:9a:de:65:1c:
3f:6b:fd:b1:0a:13:de:ec:5c:61:6c:9a:25:a3:ee:fd:d1:cd:
a5:c8:91:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org