Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/7hNSmgdNRbeRK-5JS2tWFl6AdCc.roa
File: 7hNSmgdNRbeRK-5JS2tWFl6AdCc.roa (raw, json)
Hash identifier: 1wHcGQDPzIQzSIRZNKxBfahmd2WAEXWjOy1QSeQ5WlY=
Subject key identifier: EE:13:52:9A:07:4D:45:B7:91:2B:EE:49:4B:6B:56:16:5E:80:74:27
Certificate issuer: /CN=99ce77f7d916513b84914849950fe43f55694fda
Certificate serial: 03B63E52
Authority key identifier: 99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/7hNSmgdNRbeRK-5JS2tWFl6AdCc.roa
Signing time: Sat 01 Jan 2022 14:07:27 +0000
ROA not before: Sat 01 Jan 2022 14:07:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208424
IP address blocks: 5.102.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62275154 (0x3b63e52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce77f7d916513b84914849950fe43f55694fda
Validity
Not Before: Jan 1 14:07:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee13529a074d45b7912bee494b6b56165e807427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ac:af:f1:89:88:f2:35:93:41:0a:ac:a6:3d:
e9:3b:15:cd:7c:b7:04:85:96:bf:76:f8:f5:21:fa:
60:d6:82:21:fe:af:33:ef:da:8a:d1:d3:32:0e:62:
f8:56:39:f6:c2:77:ec:68:21:18:0e:3d:da:b8:06:
32:ae:d5:4d:24:94:79:f3:e9:dc:fd:61:1f:83:6e:
25:7e:1e:a8:ca:93:27:cb:09:0f:3f:6c:a3:77:75:
e4:ee:82:31:78:72:76:d2:7e:b6:89:76:a1:04:28:
f1:91:ec:f4:1b:4d:1d:e2:a3:50:41:89:7b:9e:96:
d5:f5:2e:b1:76:84:e0:8d:39:f2:7a:3f:21:cb:3a:
14:ad:40:63:01:36:5f:2f:d0:0d:23:3e:06:ad:69:
27:70:0a:0c:7a:3a:4a:01:20:6a:4a:84:65:f7:d9:
3a:22:f1:2c:62:62:8b:70:55:e7:a9:fd:ae:a4:b3:
8e:6c:47:5a:8b:8c:95:58:f8:87:64:59:06:cb:68:
43:aa:22:78:f5:66:41:35:2f:ad:70:c8:11:a1:88:
64:b8:ec:cd:4f:ab:4c:e1:96:a3:69:de:02:bd:af:
8e:0d:51:bf:55:b6:32:c0:62:33:09:fe:fe:59:62:
6c:95:5b:cc:c9:d6:ad:2d:b3:cd:7f:71:72:b8:33:
a0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:13:52:9A:07:4D:45:B7:91:2B:EE:49:4B:6B:56:16:5E:80:74:27
X509v3 Authority Key Identifier:
keyid:99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/7hNSmgdNRbeRK-5JS2tWFl6AdCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/mc5399kWUTuEkUhJlQ_kP1VpT9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.47.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6f:6c:a6:55:79:e1:82:37:d8:39:c5:9c:5c:c5:7c:a4:59:
5f:29:fa:4e:a1:36:4e:b0:83:a8:bf:5e:7b:f2:bf:8f:ac:db:
21:50:97:f1:cd:d8:7e:c8:36:eb:8f:86:8b:ac:60:49:7d:01:
31:14:5d:cf:79:14:81:08:f2:cc:12:e9:11:b7:eb:8f:1c:ca:
f8:0d:61:cc:e7:2c:44:24:cd:b3:ad:5a:80:42:74:c3:7b:aa:
e5:70:c3:12:55:5f:f7:14:b5:d7:6d:c5:7d:3b:03:bc:c7:b9:
35:46:3f:d6:10:41:2f:63:3a:d5:02:ed:5c:8a:a9:b5:ad:94:
26:1d:b6:97:ef:0b:b8:33:17:1f:a2:c0:c7:0d:8b:5f:3d:63:
7e:b8:a5:74:4f:32:d9:c5:ad:bd:ac:65:0b:b3:7d:0c:72:94:
1f:0f:1d:b1:08:f1:b3:1a:35:8f:36:19:f2:84:a9:a8:30:18:
2a:f8:c4:48:8b:69:d1:75:61:a1:c0:bb:57:06:73:5f:23:91:
7d:af:f2:46:3d:b4:3e:92:a5:bd:15:85:f1:bd:d9:6a:21:4d:
dc:f1:75:7e:fa:3d:be:7e:d0:aa:21:c8:4d:4f:9c:25:72:f3:
ca:c8:42:92:66:76:cf:2e:54:63:4c:63:3f:bc:cb:46:7c:08:
9e:f9:ef:c9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7Y+UjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
OWNlNzdmN2Q5MTY1MTNiODQ5MTQ4NDk5NTBmZTQzZjU1Njk0ZmRhMB4XDTIyMDEw
MTE0MDcyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWUxMzUyOWEwNzRk
NDViNzkxMmJlZTQ5NGI2YjU2MTY1ZTgwNzQyNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKasr/GJiPI1k0EKrKY96TsVzXy3BIWWv3b49SH6YNaCIf6v
M+/aitHTMg5i+FY59sJ37GghGA492rgGMq7VTSSUefPp3P1hH4NuJX4eqMqTJ8sJ
Dz9so3d15O6CMXhydtJ+tol2oQQo8ZHs9BtNHeKjUEGJe56W1fUusXaE4I058no/
Ics6FK1AYwE2Xy/QDSM+Bq1pJ3AKDHo6SgEgakqEZffZOiLxLGJii3BV56n9rqSz
jmxHWouMlVj4h2RZBstoQ6oiePVmQTUvrXDIEaGIZLjszU+rTOGWo2neAr2vjg1R
v1W2MsBiMwn+/llibJVbzMnWrS2zzX9xcrgzoHUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTuE1KaB01Ft5Er7klLa1YWXoB0JzAfBgNVHSMEGDAWgBSZznf32RZRO4SR
SEmVD+Q/VWlP2jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21jNTM5OWtXVVR1RWtVaEpsUV9rUDFWcFQ5by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGUvNWNjMzM3LWJjNTYtNDc2Ni1hNDUwLWYzNTM3M2RhN2RlYi8x
LzdoTlNtZ2ROUmJlUkstNUpTMnRXRmw2QWRDYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGUv
NWNjMzM3LWJjNTYtNDc2Ni1hNDUwLWYzNTM3M2RhN2RlYi8xL21jNTM5OWtXVVR1
RWtVaEpsUV9rUDFWcFQ5by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVmLzANBgkqhkiG9w0BAQsFAAOC
AQEAOW9splV54YI32DnFnFzFfKRZXyn6TqE2TrCDqL9ee/K/j6zbIVCX8c3Yfsg2
64+Gi6xgSX0BMRRdz3kUgQjyzBLpEbfrjxzK+A1hzOcsRCTNs61agEJ0w3uq5XDD
ElVf9xS1123FfTsDvMe5NUY/1hBBL2M61QLtXIqpta2UJh22l+8LuDMXH6LAxw2L
Xz1jfrildE8y2cWtvaxlC7N9DHKUHw8dsQjxsxo1jzYZ8oSpqDAYKvjESItp0XVh
ocC7VwZzXyORfa/yRj20PpKlvRWF8b3ZaiFN3PF1fvo9vn7QqiHITU+cJXLzyshC
kmZ2zy5UY0xjP7zLRnwInvnvyQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:34 2024 by rpki-client on console-fra.rpki-client.org