Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/Z753aUok5aeMH-RhoF93MM-s5kE.roa
File: Z753aUok5aeMH-RhoF93MM-s5kE.roa (raw, json)
Hash identifier: lXLG7El6aVmwg27LEvzb7YIBdyErUIfjEpW8CuzzFRw=
Subject key identifier: 67:BE:77:69:4A:24:E5:A7:8C:1F:E4:61:A0:5F:77:30:CF:AC:E6:41
Certificate issuer: /CN=99ce77f7d916513b84914849950fe43f55694fda
Certificate serial: 03B795FF
Authority key identifier: 99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/Z753aUok5aeMH-RhoF93MM-s5kE.roa
Signing time: Sat 01 Jan 2022 14:07:29 +0000
ROA not before: Sat 01 Jan 2022 14:07:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210272
IP address blocks: 5.102.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62363135 (0x3b795ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce77f7d916513b84914849950fe43f55694fda
Validity
Not Before: Jan 1 14:07:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67be77694a24e5a78c1fe461a05f7730cface641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:eb:9f:cf:7e:5c:a1:65:05:6a:e2:72:3f:bc:
11:88:b1:7c:c9:d4:5b:c2:e6:36:13:37:20:53:f4:
fb:b7:8f:83:9a:5e:36:e8:ab:f7:15:c5:45:9f:eb:
b4:20:3e:6b:11:0f:17:11:cd:d7:36:31:69:e9:1c:
3b:04:bf:06:c3:15:c4:bd:92:53:f7:bc:59:a4:e5:
cc:65:5c:a5:a9:3e:83:f8:e3:0a:06:4e:d1:c1:09:
23:df:23:f1:58:79:48:b6:69:56:74:2e:1d:af:64:
44:af:d6:39:65:67:79:47:85:3e:59:15:61:35:59:
5d:c8:d5:c3:36:04:9f:05:c1:5a:2f:70:5f:bd:8f:
9b:92:68:2e:b6:52:13:30:64:4b:4b:ff:5b:65:7b:
84:35:3f:24:f1:52:82:60:25:bf:6d:21:05:87:20:
db:f3:5c:3e:28:dc:8d:24:28:be:df:91:5c:57:b1:
4b:10:e3:9c:01:be:f1:3e:ca:85:75:74:b8:d8:47:
44:81:ca:78:fe:54:ed:c5:ed:72:34:d7:86:57:90:
53:fb:cd:b6:d2:98:ce:16:85:76:c7:eb:19:ba:d2:
ec:e0:91:71:e1:d3:a7:08:d4:25:65:e1:3c:9c:8a:
23:ac:24:6b:34:ae:16:22:9f:28:55:42:b3:89:18:
95:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BE:77:69:4A:24:E5:A7:8C:1F:E4:61:A0:5F:77:30:CF:AC:E6:41
X509v3 Authority Key Identifier:
keyid:99:CE:77:F7:D9:16:51:3B:84:91:48:49:95:0F:E4:3F:55:69:4F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5399kWUTuEkUhJlQ_kP1VpT9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/Z753aUok5aeMH-RhoF93MM-s5kE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5cc337-bc56-4766-a450-f35373da7deb/1/mc5399kWUTuEkUhJlQ_kP1VpT9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.45.0/24
Signature Algorithm: sha256WithRSAEncryption
20:d6:09:de:0b:bb:56:a5:7f:86:3b:9b:12:12:11:26:fd:5c:
ca:0f:26:12:f2:12:d7:07:5f:d8:77:71:87:5b:db:b0:84:96:
6e:76:1c:5a:65:8f:46:60:e7:bb:04:0d:af:03:d0:5c:e9:d8:
d3:22:7c:7d:06:65:af:41:7c:a4:a2:15:6d:99:a1:04:7c:50:
ed:f4:d4:96:c6:ac:72:2c:82:85:e3:18:19:85:e5:d0:5d:43:
26:c3:96:80:59:88:31:1d:e3:f0:54:51:0e:59:31:1e:57:a7:
c3:d9:08:bf:bb:58:30:9c:8a:e3:2c:c4:64:77:ca:22:15:9e:
48:cc:11:3b:a2:ae:83:b8:20:f7:5a:77:db:b0:b8:a3:f7:14:
a4:56:a0:dd:60:ef:db:a5:56:53:4a:c9:ec:fa:3c:e5:b2:05:
2e:3c:47:81:28:b0:42:5d:d8:19:19:f8:c3:f9:c1:0d:f8:2a:
fe:2d:b3:e4:48:34:d6:d2:1c:a7:c1:14:41:e4:9e:6a:a5:f6:
55:71:f7:4d:15:ad:9d:3d:50:74:90:e4:6a:3b:47:0f:62:ff:
0b:e8:b7:3e:2d:46:49:62:0b:52:0c:a8:48:3f:6c:27:c7:56:
8f:40:69:ac:f6:57:48:e4:f3:49:93:8d:db:c8:fe:d1:d1:98:
1a:f2:57:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org