Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/AjLnW3YYmV7qKJwoisGXNQuC7Ug.roa
File: AjLnW3YYmV7qKJwoisGXNQuC7Ug.roa (raw, json)
Hash identifier: tcbWpeh4tj1mpffoQhLIFdX2oqJ21s5roj3kVuXVMDs=
Subject key identifier: 02:32:E7:5B:76:18:99:5E:EA:28:9C:28:8A:C1:97:35:0B:82:ED:48
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 0873DC80
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/AjLnW3YYmV7qKJwoisGXNQuC7Ug.roa
Signing time: Sat 01 Jan 2022 04:51:33 +0000
ROA not before: Sat 01 Jan 2022 04:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39383
IP address blocks: 5.183.171.0/24 maxlen: 24
5.183.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141810816 (0x873dc80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: Jan 1 04:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0232e75b7618995eea289c288ac197350b82ed48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f5:f8:cd:1f:27:4d:f6:25:51:e5:c7:af:e8:
07:eb:23:dd:e0:15:f2:1a:50:79:8d:47:97:c1:94:
e6:5d:f5:78:5e:47:66:ff:a5:ee:e5:3b:e5:8b:be:
5c:31:b5:f2:60:0b:d7:a5:cf:7a:08:3a:23:55:15:
44:53:8a:1e:c9:d9:c0:e2:20:20:0f:76:93:40:ee:
76:7e:0c:69:39:78:fd:b4:bf:cb:27:da:7c:51:7b:
5f:64:3b:27:22:61:de:e3:c4:ec:a7:b0:42:12:e8:
11:d9:69:ce:a5:65:81:f5:0d:b6:ba:bc:22:3c:1d:
c4:4d:8c:bd:9d:bb:64:e0:0f:9b:c8:85:47:e2:8f:
fc:4e:8e:2a:37:6e:4f:b3:d7:38:cc:86:12:82:a4:
ef:64:cc:03:63:88:3d:cb:4d:92:4c:a9:6f:b3:a9:
00:ce:36:1b:4c:a2:3f:e0:d1:c4:b0:9b:69:14:65:
c3:5e:13:d8:d5:18:8c:16:d1:44:cb:b5:1e:4d:e4:
ee:44:9a:fa:78:48:df:54:21:0b:4f:18:3e:e5:d9:
a6:c1:22:4d:21:11:d0:5a:f7:f7:b2:45:73:17:ee:
65:50:1d:f9:65:44:38:c0:1c:71:2d:55:0f:c0:d3:
9f:32:5d:c1:7d:78:58:25:cc:2e:6c:40:74:ac:50:
70:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:32:E7:5B:76:18:99:5E:EA:28:9C:28:8A:C1:97:35:0B:82:ED:48
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/AjLnW3YYmV7qKJwoisGXNQuC7Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.170.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:77:da:c3:d3:f1:38:bf:96:84:19:21:3f:f3:67:bc:a3:c0:
d5:50:f9:f1:4c:87:6d:d9:36:19:2b:a0:3e:6f:75:f7:13:85:
e7:6f:71:e9:15:4e:97:9e:39:ea:94:fe:0d:36:e9:98:ef:8f:
79:06:c8:6c:9b:15:ce:c7:10:3d:dc:56:89:2d:d1:15:cb:8d:
c6:c1:7d:f7:98:bd:d1:f2:b4:aa:b9:d3:46:5c:5b:9d:96:82:
7c:31:f0:30:6e:ba:3c:77:0a:73:3b:48:14:30:09:f6:b4:18:
e1:9c:16:c2:48:5f:e4:75:56:31:b9:40:e9:09:c6:bc:d9:97:
b8:a4:c1:8e:fc:26:9b:68:06:01:17:23:25:8c:99:6f:32:4e:
b3:05:43:18:58:ca:d7:91:c4:8d:89:f5:28:09:35:7d:40:f9:
13:59:28:b1:6d:38:7c:dc:66:37:9e:0d:fc:4f:8f:c2:bf:6e:
4c:e3:9a:83:d8:64:8d:02:78:fb:09:64:30:47:de:b3:5d:f8:
b0:8f:a2:a2:9a:21:e0:02:1e:8f:06:cd:87:da:3b:f1:5a:b4:
74:36:6c:cb:cb:7a:32:91:d0:dd:69:8e:e6:ac:11:1b:40:fd:
1b:2f:8b:85:0b:29:4c:08:bf:04:85:96:67:9b:4f:2a:85:07:
85:58:91:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net