Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a600f5-9428-485c-b42e-64de34f1f464/1/5WJHzhLgu756Siff6SX82vxq8gY.roa
File: 5WJHzhLgu756Siff6SX82vxq8gY.roa (raw, json)
Hash identifier: I/f8rwgbI05KdrFg1itOUU61MFF6AqBb/N3WZZEUjmA=
Subject key identifier: E5:62:47:CE:12:E0:BB:BE:7A:4A:27:DF:E9:25:FC:DA:FC:6A:F2:06
Certificate issuer: /CN=72d1b5cb6fb0423986871ef01e663f365ce0d895
Certificate serial: 087F3C0E
Authority key identifier: 72:D1:B5:CB:6F:B0:42:39:86:87:1E:F0:1E:66:3F:36:5C:E0:D8:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctG1y2-wQjmGhx7wHmY_Nlzg2JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a600f5-9428-485c-b42e-64de34f1f464/1/5WJHzhLgu756Siff6SX82vxq8gY.roa
Signing time: Sat 01 Jan 2022 04:56:50 +0000
ROA not before: Sat 01 Jan 2022 04:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 5.145.32.0/19 maxlen: 24
185.74.128.0/22 maxlen: 22
2a00:d3e0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142556174 (0x87f3c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d1b5cb6fb0423986871ef01e663f365ce0d895
Validity
Not Before: Jan 1 04:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e56247ce12e0bbbe7a4a27dfe925fcdafc6af206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6e:b8:41:07:71:5a:25:90:2d:be:fc:7a:d5:
67:65:13:74:c3:1e:5e:9e:30:59:64:fe:55:46:4b:
97:d3:37:47:82:2d:01:47:e7:58:b0:bc:f8:a9:25:
9e:f7:40:98:be:62:ac:06:ae:c7:90:83:2e:8b:e1:
23:29:73:28:ce:02:87:5b:67:74:22:31:08:44:4f:
e8:fd:cd:db:8f:eb:fd:81:d9:52:ad:80:67:03:7c:
27:08:a0:ed:68:63:f6:59:81:9e:04:7f:48:32:33:
64:44:52:a3:e0:59:01:26:4c:64:11:f5:0c:e7:6f:
ec:ee:e9:7a:9d:60:24:c7:e0:b9:60:f0:e0:ce:75:
d4:5f:90:03:ee:7a:02:b0:16:51:2b:4f:a5:d2:fc:
2f:a1:4f:c0:12:86:03:92:9c:99:74:30:e2:fc:87:
e2:4a:36:89:f7:47:f9:24:89:de:e1:15:00:ce:e4:
82:ec:36:c1:70:8e:d6:c3:fd:93:ed:18:aa:eb:7d:
82:b7:a7:12:94:e2:2e:93:81:30:c7:a7:78:ce:b9:
f1:b2:5c:14:42:0f:31:81:a3:6b:29:c6:54:02:3a:
a6:a0:55:53:f9:8d:b6:30:17:56:db:c5:27:86:38:
c1:2d:ae:86:c0:c9:a6:35:33:bf:47:b9:22:c4:d7:
f3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:62:47:CE:12:E0:BB:BE:7A:4A:27:DF:E9:25:FC:DA:FC:6A:F2:06
X509v3 Authority Key Identifier:
keyid:72:D1:B5:CB:6F:B0:42:39:86:87:1E:F0:1E:66:3F:36:5C:E0:D8:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctG1y2-wQjmGhx7wHmY_Nlzg2JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a600f5-9428-485c-b42e-64de34f1f464/1/5WJHzhLgu756Siff6SX82vxq8gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a600f5-9428-485c-b42e-64de34f1f464/1/ctG1y2-wQjmGhx7wHmY_Nlzg2JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.32.0/19
185.74.128.0/22
IPv6:
2a00:d3e0::/29
Signature Algorithm: sha256WithRSAEncryption
a1:0c:5c:e3:c0:6f:d2:1b:2d:96:05:bb:47:df:49:da:73:35:
b6:70:3b:b0:c2:72:b0:7a:b9:bd:6e:a4:23:47:70:41:91:47:
0c:a6:57:74:60:23:64:50:7d:f8:22:b5:ca:a9:8c:5e:70:3f:
fb:91:8d:e9:91:1a:f6:7d:59:1b:7e:e7:2d:9f:ec:03:5e:8e:
96:a8:05:d7:55:e6:da:30:58:ff:11:7d:fe:0b:fc:c2:c0:3d:
03:6c:73:02:ab:5a:7f:bc:30:ac:45:13:a0:cc:3f:9c:0a:70:
8c:54:36:ea:d9:dd:d0:ac:5b:58:9d:6e:c1:c9:7f:5a:19:69:
dd:db:cc:ab:b4:a0:df:ad:38:81:e5:c5:74:a3:da:1f:d2:d8:
63:d8:f3:05:79:16:01:d4:5f:53:99:05:fd:53:d3:c2:0d:ca:
2c:78:0c:e2:a4:d4:f7:76:a0:a7:02:90:2b:cb:56:4f:c8:78:
30:a0:c2:5c:6f:08:97:5c:94:60:96:54:06:70:f7:a8:cb:24:
7d:80:7b:82:98:a5:2d:37:52:48:9d:03:97:b5:89:a5:8c:ff:
32:1c:d8:48:64:06:26:24:a0:e7:a0:c9:3f:ff:61:01:8b:8a:
a5:3a:2f:21:f2:fc:be:50:fb:94:0f:61:84:5c:24:0d:9f:8e:
e7:a7:42:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:52:09 2025 by rpki-client