Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/XL9H_2ICD22IfpErMfBXjbmPjNY.roa
File: XL9H_2ICD22IfpErMfBXjbmPjNY.roa (raw, json)
Hash identifier: LatG6Ji4Fef/m0m7J3nFkLd3AHMh0nzvd21h7kLvxEc=
Subject key identifier: 5C:BF:47:FF:62:02:0F:6D:88:7E:91:2B:31:F0:57:8D:B9:8F:8C:D6
Certificate issuer: /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial: 06B74868
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/XL9H_2ICD22IfpErMfBXjbmPjNY.roa
Signing time: Thu 06 Jan 2022 10:30:42 +0000
ROA not before: Thu 06 Jan 2022 10:30:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40065
IP address blocks: 5.252.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112674920 (0x6b74868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Validity
Not Before: Jan 6 10:30:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cbf47ff62020f6d887e912b31f0578db98f8cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:d6:20:a5:29:02:4d:79:c9:77:18:a8:1d:
0f:dd:49:f2:ff:b7:9d:b1:55:69:4f:d1:64:b1:ed:
74:d6:a8:b9:dc:c7:fb:da:5e:6a:79:1e:82:fb:1c:
49:51:de:0d:bb:a1:01:e8:85:77:4e:44:7f:a3:4a:
81:6a:61:77:af:6d:03:3a:d2:e9:e7:5e:09:c5:98:
f8:7b:7a:a5:e5:8a:13:cf:e9:88:f7:a1:df:d8:a7:
09:f2:8b:a8:8d:25:b4:de:a8:fb:14:14:e9:ee:cb:
c5:df:d6:60:96:44:73:5a:28:39:80:5c:79:d0:dc:
22:a8:3e:28:b1:b3:0e:aa:29:b9:74:15:77:b1:d2:
5d:ea:18:8d:43:c3:b9:b1:92:0f:a6:2f:1e:0f:be:
ba:72:ab:26:3c:03:ad:44:02:1f:62:ec:35:ff:77:
17:c9:8e:c2:42:63:47:3a:5a:fd:07:f1:a5:6d:4b:
72:b5:fd:74:58:48:68:6f:7d:4e:d3:66:f1:9a:dd:
2d:f2:64:eb:d4:cf:2a:c6:f7:75:e2:62:2b:0b:f0:
a3:41:ea:d9:39:c2:eb:b8:f2:90:88:99:25:f9:c8:
85:f7:37:1c:7d:5c:b2:19:7e:c7:21:24:23:c9:ce:
09:0c:e2:67:d8:23:ad:56:87:21:c8:0a:c4:ee:bf:
94:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BF:47:FF:62:02:0F:6D:88:7E:91:2B:31:F0:57:8D:B9:8F:8C:D6
X509v3 Authority Key Identifier:
keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/XL9H_2ICD22IfpErMfBXjbmPjNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.164.0/22
Signature Algorithm: sha256WithRSAEncryption
81:3e:f2:06:5d:60:ac:32:07:6a:3a:1e:3d:5d:a5:36:42:19:
f8:17:45:b7:a2:51:87:ad:93:09:ad:fb:79:51:7e:8d:a0:35:
c7:43:38:fa:6d:11:d8:5a:a9:04:ca:d8:f0:6f:f0:53:a5:6d:
d3:0d:8e:a0:a9:98:83:25:eb:1e:61:63:96:11:0f:02:64:7c:
78:b0:18:67:cf:7d:f6:a1:3b:ae:80:ba:5a:b5:c9:f4:26:3d:
75:ce:19:90:3e:63:5d:a6:98:50:64:ab:46:56:c6:bc:08:98:
4a:4d:96:66:01:aa:cd:98:31:da:77:cc:1c:12:58:ad:a5:1d:
19:0e:61:7b:23:64:c7:83:f9:7d:e3:2f:74:4f:55:2f:25:43:
6d:84:d5:ee:4e:c3:69:11:fa:b1:64:9e:fb:9a:8b:b0:43:b4:
dd:11:74:4a:c8:b8:01:fd:c3:9e:cd:c2:5d:28:bf:1f:c3:f5:
e8:0a:3e:d9:e1:41:15:28:75:3c:05:38:57:82:d2:ef:71:47:
66:4c:93:2b:61:e9:50:6b:d1:0a:e2:bf:b2:9c:5c:30:30:8b:
11:0f:af:c0:c7:6d:e8:00:b1:ce:90:83:e5:7a:22:cb:fb:4b:
26:bb:fb:94:47:50:3a:a7:59:80:7a:35:43:8e:54:ad:b2:ae:
bf:a0:18:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net