Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/j2lLu4oxQiOmFRE6m27BvvIuORw.roa
File: j2lLu4oxQiOmFRE6m27BvvIuORw.roa (raw, json)
Hash identifier: X0VYYUrFs0+USv98m2D5uy0BTsBD8Nhf2Mhf98UztxM=
Subject key identifier: 8F:69:4B:BB:8A:31:42:23:A6:15:11:3A:9B:6E:C1:BE:F2:2E:39:1C
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 0184F7F1A7508AC684877B80A8F17E8A120C
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/j2lLu4oxQiOmFRE6m27BvvIuORw.roa
Signing time: Fri 09 Dec 2022 17:32:00 +0000
ROA not before: Fri 09 Dec 2022 17:32:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 5.180.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f7:f1:a7:50:8a:c6:84:87:7b:80:a8:f1:7e:8a:12:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Dec 9 17:32:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f694bbb8a314223a615113a9b6ec1bef22e391c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e1:6f:71:1a:3d:ff:67:71:4e:96:18:39:5a:
a3:fb:ed:f6:ec:85:08:dc:dc:45:d8:5c:2e:0f:75:
d0:50:1f:ec:c0:94:e6:9b:2a:34:52:52:43:6c:fd:
ee:82:94:5d:27:c8:05:e6:26:af:be:85:ed:14:93:
03:e6:48:1c:b2:52:58:a5:ef:fc:b9:b7:31:b6:48:
74:e7:74:8f:97:68:cb:1b:a7:cc:37:a7:2f:10:fa:
87:5e:da:56:bb:18:57:2d:c5:f7:fd:88:dd:9c:99:
59:b0:ba:16:19:67:6d:d9:e7:8c:ee:d3:62:5c:85:
70:eb:58:ff:f1:06:28:33:34:1e:58:22:5a:e7:09:
44:50:60:8a:80:74:47:c8:bd:f9:00:1a:4a:a9:2b:
aa:7d:b3:b9:ca:29:e1:a3:31:f6:5b:0d:cd:4f:68:
e9:3d:66:4b:3b:66:46:84:31:60:84:3f:ac:7a:b2:
c6:e2:6e:cd:be:f3:ad:7d:34:cb:19:4c:e8:fb:b4:
d0:55:4a:ae:95:da:b2:3a:dd:70:ca:51:96:d3:ac:
de:dd:01:fd:0b:df:08:e3:cf:16:a7:51:38:6c:01:
e9:ed:94:0b:e6:23:a0:d5:11:d7:8a:4c:33:94:53:
59:49:69:bb:cb:6b:52:10:e6:6d:84:26:7f:63:ad:
45:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:69:4B:BB:8A:31:42:23:A6:15:11:3A:9B:6E:C1:BE:F2:2E:39:1C
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/j2lLu4oxQiOmFRE6m27BvvIuORw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.155.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a8:21:95:c0:db:60:d4:97:aa:10:af:ca:02:d6:bc:6f:ce:
a9:63:c9:67:39:dc:9a:f1:97:54:68:03:0b:11:da:71:19:b5:
c6:9a:f5:54:9e:64:b1:33:76:3c:31:18:b8:92:79:fc:5b:f8:
2a:4a:b7:21:1e:58:3c:c2:ee:0a:83:ed:5a:6b:53:2d:e7:a6:
11:20:1b:38:eb:61:c0:e3:f7:6b:18:d7:32:3e:6f:4c:5d:37:
47:27:c6:07:28:69:ca:f1:cf:b2:75:18:30:8f:c4:93:b8:53:
5b:2d:e3:b7:ce:54:13:de:a1:d4:01:d0:1b:ea:5b:f8:09:2b:
aa:23:9a:18:62:67:b4:c8:c8:18:4b:8b:a3:38:98:df:54:20:
4a:f6:03:ba:72:ae:fb:ad:5e:c9:95:69:0e:23:32:84:8e:0f:
b2:ec:e5:68:15:2a:e6:91:e5:8c:51:8c:78:2c:a0:61:69:fa:
d7:de:2d:6d:19:06:00:17:27:85:c6:b0:27:67:97:30:58:bb:
b9:e8:29:44:4b:42:8e:23:fa:dd:bd:17:da:90:86:a8:0b:b3:
e7:e7:7f:d4:87:0c:54:3d:dc:9d:21:e4:66:06:09:63:51:27:
68:79:de:f5:3c:69:9a:c4:f3:7c:cd:37:ea:85:2a:e7:5c:c7:
15:2e:7c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org