Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/WnA4hSjex2cxdhM6rer4AUUXVps.roa
File: WnA4hSjex2cxdhM6rer4AUUXVps.roa (raw, json)
Hash identifier: 5lzE5WhL0Qu4N+dW6JC5hgNbjyykNz55bSmeiHIzzHg=
Subject key identifier: 5A:70:38:85:28:DE:C7:67:31:76:13:3A:AD:EA:F8:01:45:17:56:9B
Certificate issuer: /CN=869569a2526687da91a7ecd4f567f5409cdffe79
Certificate serial: 07392EA0
Authority key identifier: 86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/WnA4hSjex2cxdhM6rer4AUUXVps.roa
Signing time: Mon 07 Mar 2022 20:22:23 +0000
ROA not before: Mon 07 Mar 2022 20:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198887
IP address blocks: 5.56.8.0/22 maxlen: 24
5.83.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121188000 (0x7392ea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869569a2526687da91a7ecd4f567f5409cdffe79
Validity
Not Before: Mar 7 20:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5a70388528dec7673176133aadeaf8014517569b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:14:df:25:42:96:6d:fa:dd:e9:5a:2f:83:6d:
24:ed:6e:51:96:db:6a:22:68:93:64:7c:55:4a:16:
ab:fa:74:f6:3e:ad:48:b0:02:72:da:9b:3a:3b:66:
8a:e7:d0:1c:56:ad:76:6a:d5:3a:c7:07:27:de:c2:
9f:6e:7e:77:ad:13:d0:b8:91:f4:b3:fe:e9:c2:0a:
1b:68:3c:e6:f6:58:88:71:9b:36:7d:5d:ec:b6:ed:
ea:73:35:d2:88:9f:94:f3:7e:16:07:51:c8:37:47:
43:b4:a5:23:51:1a:3c:41:97:8f:be:c1:06:51:7a:
fb:62:9c:eb:c8:61:16:9b:fa:af:d1:a5:be:73:61:
7a:be:52:36:aa:ba:4c:92:81:a0:a4:bd:67:40:35:
fb:94:86:2c:36:70:66:04:25:a5:b2:42:ae:7f:46:
78:ba:e9:25:cb:1a:25:52:64:07:3e:2a:6a:0c:ea:
ff:52:5c:67:87:5d:de:55:4b:74:d0:1e:4e:90:30:
09:d3:ee:49:8d:6f:29:3b:c0:4e:f7:a3:fc:37:91:
73:11:28:fb:0b:dd:53:e5:bc:ac:82:d8:ff:30:7f:
0b:2c:dd:32:f0:b1:bc:1b:07:f2:a4:22:f0:db:8c:
f7:34:39:64:12:18:74:1b:8d:99:48:2d:64:27:cf:
c8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:70:38:85:28:DE:C7:67:31:76:13:3A:AD:EA:F8:01:45:17:56:9B
X509v3 Authority Key Identifier:
keyid:86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/WnA4hSjex2cxdhM6rer4AUUXVps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/hpVpolJmh9qRp-zU9Wf1QJzf_nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.8.0/22
5.83.124.0/24
Signature Algorithm: sha256WithRSAEncryption
85:54:7b:10:15:3b:10:6f:e2:eb:cf:cf:a2:cd:0d:3f:6f:d6:
e5:1c:ac:2f:66:d0:7c:ff:29:48:0c:b8:04:7a:05:55:aa:83:
83:46:1e:75:17:c6:37:59:22:7d:13:ec:25:24:a7:03:1e:d4:
23:a7:6d:b8:71:cc:84:37:c0:c6:d5:76:f2:42:7f:84:e2:b3:
a9:23:07:f9:46:df:1d:ad:67:37:27:35:75:07:d6:a2:6c:c8:
30:f2:db:86:0b:d2:fc:e7:09:ed:49:64:e1:fa:f2:63:71:93:
1d:79:58:e1:4a:b8:1e:e9:1b:b8:99:df:35:2f:ae:c6:4d:71:
e7:80:be:c8:f2:66:4c:c2:bc:a5:66:12:c5:b1:0c:46:c8:57:
fc:54:e2:ce:94:31:39:68:59:bf:d6:75:ee:0a:c6:2f:f4:65:
e1:f2:b6:ce:da:f8:de:f1:d3:67:aa:68:33:25:ed:22:fb:9a:
64:23:7b:33:6a:bd:41:3a:e5:b5:c0:1c:f0:33:61:5b:23:b2:
fe:17:14:e5:c1:0f:38:40:08:6a:47:12:8b:8a:8f:3e:f3:cb:
93:76:87:f3:86:65:28:6d:c8:db:32:83:8f:17:03:06:b6:bd:
e9:58:dc:7a:a5:a6:f9:1f:94:c8:f1:08:a3:9a:6d:f6:c1:0b:
48:06:2a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org