Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/XAE9hKhJUKBGHDONnL7tZRVzDGc.roa
File: XAE9hKhJUKBGHDONnL7tZRVzDGc.roa (raw, json)
Hash identifier: 63lFnEmpgElyOgIGps2LAYcykyxGakFUq74/hfLQW0o=
Subject key identifier: 5C:01:3D:84:A8:49:50:A0:46:1C:33:8D:9C:BE:ED:65:15:73:0C:67
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0182168E562B16625655095E1B226FEA9302
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/XAE9hKhJUKBGHDONnL7tZRVzDGc.roa
Signing time: Tue 19 Jul 2022 13:03:23 +0000
ROA not before: Tue 19 Jul 2022 13:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203084
IP address blocks: 5.180.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:8e:56:2b:16:62:56:55:09:5e:1b:22:6f:ea:93:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 19 13:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c013d84a84950a0461c338d9cbeed6515730c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:a3:69:be:58:5f:ff:6e:d8:a6:a7:58:ed:
d9:2e:af:db:26:a3:62:e0:62:ec:1f:de:16:64:cf:
76:15:5f:0f:2b:d9:d1:5e:f5:11:bc:1c:f4:78:0e:
c1:4f:a7:f8:2e:17:0d:90:c0:da:21:2d:c6:65:63:
8d:53:51:d6:53:c3:88:2c:eb:42:61:1b:99:b3:f7:
e6:80:9c:b4:64:7c:66:0a:d1:a9:cf:a9:f9:7a:5f:
c7:f0:58:11:95:cc:8b:54:7c:c2:8d:38:cb:71:7e:
c7:86:79:69:ec:0a:9f:2c:45:c5:e7:e9:88:16:09:
2e:76:a1:bb:26:b0:25:71:a6:11:17:65:3b:05:6a:
fe:07:ba:c1:99:d6:4d:70:4f:c6:ea:52:9b:c1:2a:
e2:20:e3:60:c1:cc:5b:d2:0f:35:d9:9e:db:cb:e5:
ea:b8:ce:7d:93:66:29:8b:a1:08:e1:61:87:4e:62:
bc:02:86:56:50:8e:bd:8c:c2:41:14:d7:7f:6d:8d:
e7:ea:d0:47:f3:9f:ea:86:7a:98:22:54:06:30:17:
3e:07:78:4a:f3:c1:70:7e:06:12:82:bd:84:96:72:
1b:d7:59:c5:18:6f:ec:c5:6a:e9:3a:1c:cb:0e:7b:
42:1c:48:49:c2:dc:9b:71:9c:da:d3:2e:d3:5d:40:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:01:3D:84:A8:49:50:A0:46:1C:33:8D:9C:BE:ED:65:15:73:0C:67
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/XAE9hKhJUKBGHDONnL7tZRVzDGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:34:2c:ca:79:af:51:64:02:30:0a:f4:f1:28:8a:3f:8b:bd:
1d:2e:0a:64:0d:7e:70:d7:51:a9:2f:d7:62:ec:0d:5f:4b:b9:
ab:2c:a9:16:38:23:e3:f8:f7:09:78:d9:a8:c8:c5:0b:eb:ae:
d5:b9:9b:41:aa:4d:15:61:1e:8d:f1:8d:8f:d8:c1:fc:dc:f6:
bc:20:5d:d3:c0:71:fe:80:b2:8c:94:79:6a:f8:ae:a3:d4:15:
85:34:1e:be:27:a7:69:cf:21:7a:d8:3e:18:7d:21:3f:f8:19:
2d:da:1e:fb:7d:d3:fa:0f:70:b4:29:b9:dd:a2:86:e5:0b:74:
a1:52:d6:ad:39:22:9e:66:f6:37:ed:0a:d5:27:bb:28:35:80:
a2:a2:54:83:8f:9c:5b:f3:a6:e1:a7:30:d7:50:f3:5a:95:5d:
2e:7e:b4:86:fb:86:d3:fb:fe:fe:48:ed:c6:64:76:6b:3f:d3:
93:dd:e8:7b:d6:c4:bc:c7:d4:88:43:db:86:95:51:a7:34:2e:
12:6a:ce:77:3a:b4:e2:27:58:16:9e:94:8d:09:40:31:a2:78:
58:1d:67:9b:3b:cc:21:1e:c8:5f:42:22:e2:ca:3f:f2:28:83:
1b:4d:5e:b4:51:d8:cc:68:df:6e:54:1a:2f:da:6e:df:22:33:
fd:f7:87:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org