Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/ndMYrALUqxgQcGAiEfVh6XJCXVo.roa
File: ndMYrALUqxgQcGAiEfVh6XJCXVo.roa (raw, json)
Hash identifier: nqZNNSmkywQUB0jw9tTmXmED4lBRefNODI34yjsIK4A=
Subject key identifier: 9D:D3:18:AC:02:D4:AB:18:10:70:60:22:11:F5:61:E9:72:42:5D:5A
Certificate issuer: /CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Certificate serial: 01163198
Authority key identifier: 28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/ndMYrALUqxgQcGAiEfVh6XJCXVo.roa
Signing time: Wed 02 Mar 2022 15:18:44 +0000
ROA not before: Wed 02 Mar 2022 15:18:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48737
IP address blocks: 5.181.17.0/24 maxlen: 24
5.181.18.0/24 maxlen: 24
5.181.19.0/24 maxlen: 24
146.19.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18231704 (0x1163198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28af17c00757b9860ff6a56ffe2f47e69094e2f6
Validity
Not Before: Mar 2 15:18:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dd318ac02d4ab181070602211f561e972425d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fc:1b:70:aa:e5:44:d6:5f:fd:57:47:df:3a:
9b:66:f5:4b:24:9d:57:44:55:65:cf:6a:a2:6e:05:
8c:e4:a9:77:50:3d:b7:da:70:08:6f:e2:1c:6f:88:
8e:46:b0:25:63:2b:ff:ef:fa:68:8e:01:89:ae:a5:
b9:fa:a8:99:24:5c:20:a8:00:9f:a5:59:82:c7:30:
74:80:45:dc:f6:c0:57:4c:c7:05:28:94:80:e2:04:
06:17:40:15:0f:15:9a:ec:a7:2b:80:08:37:a3:f3:
f3:b0:bc:25:53:35:ad:54:72:bc:9f:65:36:9d:d6:
b0:03:a1:a8:9d:14:8c:72:d9:37:dd:d8:a6:06:85:
d5:d3:fa:27:63:53:77:2b:b3:77:09:8a:b6:9c:26:
54:c1:2d:39:af:bd:2e:3a:43:f3:22:cb:e6:80:46:
76:6e:15:1a:8c:32:2b:d3:50:22:cc:17:46:55:02:
3f:21:9c:5c:c8:41:ef:8f:44:5b:55:fa:a3:f1:5e:
92:66:d1:c5:5c:ad:80:db:d6:0f:96:5a:20:98:85:
79:13:1b:ee:49:16:16:bb:2e:01:22:93:9c:3b:4d:
82:ec:0e:9b:08:68:29:c3:f3:87:ec:d0:46:d3:57:
49:cf:13:31:c8:67:ad:ba:db:66:31:8d:45:b3:ae:
ad:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D3:18:AC:02:D4:AB:18:10:70:60:22:11:F5:61:E9:72:42:5D:5A
X509v3 Authority Key Identifier:
keyid:28:AF:17:C0:07:57:B9:86:0F:F6:A5:6F:FE:2F:47:E6:90:94:E2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KK8XwAdXuYYP9qVv_i9H5pCU4vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/ndMYrALUqxgQcGAiEfVh6XJCXVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/dea46a-b58a-4609-9df8-0e037f3d5805/1/KK8XwAdXuYYP9qVv_i9H5pCU4vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.17.0-5.181.19.255
146.19.12.0/24
Signature Algorithm: sha256WithRSAEncryption
97:03:71:b4:59:10:18:bb:17:55:1a:62:60:76:34:6c:b1:5e:
7e:87:65:3f:41:21:d7:26:2a:75:b8:a0:d3:fb:2b:e9:0e:22:
e2:5e:f4:95:fc:96:f3:ab:7c:2c:64:eb:f1:7d:a0:c3:1e:ef:
16:c3:f6:ad:59:ec:e3:ce:0a:d6:22:35:9a:0b:91:a3:10:5f:
29:9d:9b:b8:d7:dd:88:30:4f:0f:5e:62:ce:0a:69:21:6d:9f:
a7:74:63:22:46:0c:5d:94:6b:34:9a:03:01:11:42:9c:c5:5b:
b5:a0:a6:9b:63:7b:08:f6:50:2f:69:e7:cf:81:68:26:d6:6a:
02:90:20:e3:c2:9e:0a:25:28:73:42:21:b9:46:ce:55:3e:f2:
66:f5:5b:9c:5f:8d:d5:74:0f:8f:b5:c6:99:8e:cc:18:0e:d2:
39:e1:dd:70:7b:b4:0c:b2:8a:81:44:9f:4a:68:29:86:5f:94:
5b:47:21:e4:21:6d:12:fd:4a:9d:cf:86:8b:89:42:58:2c:36:
a9:78:24:7b:ff:47:2c:6b:32:4e:42:74:a4:ed:06:30:74:e1:
10:87:e3:ad:59:18:dc:bb:6e:0e:7f:59:e4:ee:1d:98:c2:2e:
df:1d:1a:2a:83:33:65:dc:47:4f:f9:43:69:0e:65:a1:07:91:
a0:3c:72:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net