Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nK-1-uxZk-2nXXZPKvThZbtyrNw.roa
File: nK-1-uxZk-2nXXZPKvThZbtyrNw.roa (raw, json)
Hash identifier: F1teDviTdIds+p7Ca5ClgVq3kjL/aCtFrS2pXhpnHqg=
Subject key identifier: 9C:AF:B5:FA:EC:59:93:ED:A7:5D:76:4F:2A:F4:E1:65:BB:72:AC:DC
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01821688D83981B3473374C23EFE4BC8CB5C
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nK-1-uxZk-2nXXZPKvThZbtyrNw.roa
Signing time: Tue 19 Jul 2022 12:57:23 +0000
ROA not before: Tue 19 Jul 2022 12:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57747
IP address blocks: 5.180.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:88:d8:39:81:b3:47:33:74:c2:3e:fe:4b:c8:cb:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 19 12:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cafb5faec5993eda75d764f2af4e165bb72acdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d2:7c:56:38:db:72:0f:ce:a0:13:61:04:57:
59:01:db:38:94:40:8a:27:7d:12:ab:f6:1c:70:c8:
e6:10:7f:fc:2c:09:8a:91:4f:c1:15:d3:2a:71:fa:
94:6b:74:57:a0:93:d3:9a:99:16:e1:e6:60:63:e9:
f8:8a:d2:f2:c6:29:da:8c:98:a1:25:53:a1:be:ca:
f5:ab:b5:df:98:ba:31:19:0b:48:75:e2:b7:c6:3f:
d2:b7:28:c2:79:7d:e4:ca:a9:29:1f:20:be:9d:ba:
ea:64:fd:b5:19:0c:13:39:79:ae:99:60:fb:9c:13:
ba:90:a7:33:1d:5a:72:f8:b3:b6:6b:b9:49:87:40:
a6:41:52:4a:9f:be:0f:a8:62:a6:f9:36:fe:6f:21:
f3:35:cc:b7:3c:f0:d9:91:77:ed:a5:2c:3c:0d:b0:
f3:da:c8:c4:f7:6e:a3:d8:f3:a0:9a:cb:fe:2c:f8:
af:bc:3c:ee:33:92:6a:43:24:57:57:4d:29:fd:27:
3b:d7:7f:ee:54:14:9d:69:e8:26:65:e3:25:e3:a7:
3d:64:d4:3c:19:dc:6c:27:33:0d:8e:a4:cf:50:45:
16:b4:23:f0:4e:93:e9:34:39:b2:cd:c5:55:74:02:
5c:d4:bd:3d:7d:c1:ae:b2:0a:44:fe:5e:4a:f5:96:
81:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AF:B5:FA:EC:59:93:ED:A7:5D:76:4F:2A:F4:E1:65:BB:72:AC:DC
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/nK-1-uxZk-2nXXZPKvThZbtyrNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.120.0/23
Signature Algorithm: sha256WithRSAEncryption
85:c0:95:df:3e:98:31:1b:2f:d3:73:fa:b6:8f:96:c9:d4:71:
8a:04:f7:f2:9c:87:41:31:48:13:dc:31:ed:43:4f:53:58:62:
6f:a9:30:29:57:d7:7c:02:f8:04:9f:2b:27:71:c2:94:82:e9:
74:28:f4:45:6d:c3:07:1a:c9:54:e0:9b:d4:e6:60:8c:07:03:
4a:b7:07:ea:bd:9a:da:ad:b3:c5:96:32:cf:cf:5c:e1:ba:1a:
a2:f1:75:fd:63:8d:36:67:d8:2d:75:d3:6f:81:46:15:b0:3f:
69:1b:bf:9b:13:cb:05:81:9e:d6:74:d8:d9:2b:83:52:29:70:
02:4f:98:3a:f6:78:6e:6f:90:8f:e2:98:49:b4:48:93:32:57:
6c:88:31:de:7a:66:56:88:83:0c:fe:40:8c:d7:98:b7:78:55:
79:f9:11:1e:80:83:c5:e8:9a:4d:c0:33:8a:f1:fb:79:58:58:
df:7a:5c:ce:67:b2:d9:41:60:25:66:8a:25:e3:9b:0d:20:4d:
eb:7f:7e:62:9d:ca:0a:d5:2e:25:66:6a:49:24:88:94:34:ad:
55:d7:62:8a:70:74:7a:4d:ad:6b:e4:c7:e0:ab:f4:e5:21:1c:
34:01:7c:c8:5a:3c:53:fd:86:43:a5:f4:cd:90:73:ae:de:1e:
ad:95:5b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org