Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/68-dC5uHA6Q5XxXDNZH4bsvcVbY.roa
File: 68-dC5uHA6Q5XxXDNZH4bsvcVbY.roa (raw, json)
Hash identifier: wJVONmPxoGMBDAjFftGGbzB87knQaBWWDmJoE1uLrEY=
Subject key identifier: EB:CF:9D:0B:9B:87:03:A4:39:5F:15:C3:35:91:F8:6E:CB:DC:55:B6
Certificate issuer: /CN=36fed2d5eb5b3c5266abaa617c960703c55d0785
Certificate serial: 091682FF
Authority key identifier: 36:FE:D2:D5:EB:5B:3C:52:66:AB:AA:61:7C:96:07:03:C5:5D:07:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nv7S1etbPFJmq6phfJYHA8VdB4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/68-dC5uHA6Q5XxXDNZH4bsvcVbY.roa
Signing time: Sat 01 Jan 2022 09:53:29 +0000
ROA not before: Sat 01 Jan 2022 09:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204861
IP address blocks: 2.57.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152470271 (0x91682ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36fed2d5eb5b3c5266abaa617c960703c55d0785
Validity
Not Before: Jan 1 09:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebcf9d0b9b8703a4395f15c33591f86ecbdc55b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:54:16:c7:67:99:10:2b:87:3f:72:7e:3b:18:
de:b4:76:c1:0e:56:dd:78:c3:d1:a0:71:a4:06:bb:
20:c5:0f:a8:83:2f:ac:f8:d5:c1:1b:4b:cd:cf:b2:
b0:9f:80:6a:37:07:4e:04:24:1b:7e:8b:7d:64:24:
06:c3:f0:d1:fa:ea:d6:8b:d2:f2:dd:63:5f:1b:5f:
f5:f0:0f:fe:0e:61:81:80:69:86:b3:60:49:e1:99:
5e:25:00:a7:6e:63:59:04:45:16:3b:3e:ea:6b:e6:
18:bc:3b:89:7d:54:c0:e0:3e:e5:f5:c2:e5:a8:1e:
09:1e:6b:6a:07:97:22:00:3b:bb:43:ba:84:4a:4f:
b0:60:3c:7a:2a:ff:10:72:35:87:21:bd:5c:f6:ba:
82:c4:c4:3f:9e:37:72:fd:4b:c6:06:a8:03:35:c7:
12:8b:e4:03:bb:65:10:62:9f:41:a1:24:14:d9:ee:
0b:03:f0:b9:da:95:5b:94:f8:9f:38:7e:8f:8c:63:
fe:a8:3a:49:29:0d:8b:ac:b9:a7:09:c9:31:9b:87:
e9:5b:2c:69:20:b4:48:5a:8f:01:a5:59:22:86:4e:
8c:b3:a1:55:34:15:e3:05:96:36:c6:3d:f7:07:c9:
ac:6d:a6:1b:e5:eb:fd:a9:b9:86:d0:f8:86:0c:48:
88:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CF:9D:0B:9B:87:03:A4:39:5F:15:C3:35:91:F8:6E:CB:DC:55:B6
X509v3 Authority Key Identifier:
keyid:36:FE:D2:D5:EB:5B:3C:52:66:AB:AA:61:7C:96:07:03:C5:5D:07:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nv7S1etbPFJmq6phfJYHA8VdB4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/68-dC5uHA6Q5XxXDNZH4bsvcVbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5324bd-7926-4513-bd1f-68ef3238a72e/1/Nv7S1etbPFJmq6phfJYHA8VdB4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.4.0/22
Signature Algorithm: sha256WithRSAEncryption
41:cb:d1:6d:71:57:b0:38:61:45:e1:6d:aa:d8:09:68:ed:36:
02:7f:4e:3a:9c:29:36:62:9c:2c:86:93:49:72:1c:4a:91:1f:
7d:05:2f:e3:51:ca:8e:c3:41:f0:d4:19:2e:f1:01:59:fb:41:
5c:44:78:89:39:fa:d8:37:63:b6:19:a4:8c:ef:0e:e6:f0:66:
f5:81:1c:23:3d:9b:d5:d7:6d:30:ee:f2:44:65:ce:be:42:11:
1f:97:ab:8c:ca:47:28:55:4e:66:21:e2:a3:7c:b6:76:a3:a4:
bd:2c:3e:36:2b:49:a8:2b:63:93:0b:10:cd:be:40:cc:03:29:
1d:ec:52:86:82:14:35:27:30:a0:5a:f3:5e:d4:e7:0b:f2:e9:
94:5a:7c:b0:80:b5:1e:5d:d6:a8:69:fb:26:b5:ca:99:d3:e6:
da:4f:5a:0e:e0:e5:f1:5f:c4:d1:51:6b:ce:4d:76:cd:67:2e:
2f:da:96:79:30:95:3c:90:59:d0:b7:b6:1f:d1:1f:d1:2a:e9:
e8:13:02:33:87:27:25:24:2a:47:9c:3c:be:05:32:75:db:be:
b8:12:a8:57:77:cc:23:9a:f6:4f:2a:b7:46:71:92:05:9c:d5:
bf:fe:2d:57:b7:6f:d3:e7:1b:82:f2:82:d9:43:64:89:fd:fa:
9f:0c:be:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:04 2024 by rpki-client on console-ams.rpki-client.org