Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/6heSSXlOxzBfazhE1xqGVm8MbpA.roa
File: 6heSSXlOxzBfazhE1xqGVm8MbpA.roa (raw, json)
Hash identifier: Fr4W4gdqsRR3osSisVMqxf1jStBHJwcq5OUGjSa2j60=
Subject key identifier: EA:17:92:49:79:4E:C7:30:5F:6B:38:44:D7:1A:86:56:6F:0C:6E:90
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01851F649845DF4760A21BA9D4BBDE181553
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/6heSSXlOxzBfazhE1xqGVm8MbpA.roa
Signing time: Sat 17 Dec 2022 09:22:44 +0000
ROA not before: Sat 17 Dec 2022 09:22:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56766
IP address blocks: 31.133.38.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1f:64:98:45:df:47:60:a2:1b:a9:d4:bb:de:18:15:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Dec 17 09:22:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea179249794ec7305f6b3844d71a86566f0c6e90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:6d:b2:37:a9:44:9b:76:77:d3:9c:3c:de:
66:c2:c8:d6:8d:7f:ed:f0:a2:5e:f6:c4:f0:de:78:
44:04:50:94:97:c2:cf:b3:50:1b:40:a7:99:a0:1a:
a6:cf:8b:5b:50:96:1a:90:2b:75:8c:b8:fd:c5:8d:
9c:52:bb:2b:4a:2e:cc:0f:0b:51:ed:70:cc:5b:46:
56:d9:41:20:da:8c:03:8d:aa:81:7b:e3:16:c2:25:
ff:35:6a:28:f4:78:bc:95:d2:af:b6:68:4e:e0:95:
be:2f:9a:b2:f9:c8:60:6c:d7:b9:90:a0:58:22:a9:
1c:f0:67:3e:c6:9e:e9:f4:42:86:47:d5:da:98:a0:
54:46:ed:74:1e:e1:5f:1e:7e:f8:e4:4f:9a:ca:70:
b9:d0:47:39:3d:fe:5a:ad:b9:bb:25:91:4b:21:05:
f6:cc:9c:c1:88:f8:d7:6c:48:42:3d:29:00:ad:8a:
45:89:b3:43:ab:53:44:32:c1:ca:64:35:33:d2:da:
a2:82:ed:95:c5:8f:af:69:d1:47:d5:5d:28:22:e3:
1b:65:bc:bf:00:0c:51:c3:3d:c3:02:c5:4f:70:80:
c0:e3:11:c2:95:10:3c:c8:6f:83:04:26:02:07:60:
2b:8b:a5:0e:50:09:e1:4f:92:8e:c0:66:c9:ad:04:
a3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:17:92:49:79:4E:C7:30:5F:6B:38:44:D7:1A:86:56:6F:0C:6E:90
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/6heSSXlOxzBfazhE1xqGVm8MbpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.38.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:94:60:67:db:12:80:c8:7f:19:e5:bc:b8:44:b0:5c:3f:c0:
98:d5:de:97:64:71:2e:2a:60:c7:fb:03:98:dd:97:88:6a:44:
b1:11:42:9e:5a:75:15:b0:97:3e:2a:b7:96:73:c2:41:0f:8e:
6b:e9:a2:48:85:7f:16:05:49:2c:52:33:8c:ed:ac:f4:dc:66:
a7:29:f6:7f:4f:db:e4:e4:3e:cf:af:22:f0:cb:af:94:a0:f3:
49:81:b2:6d:9c:d9:3e:0f:2e:f3:c0:51:52:98:b6:0b:df:a4:
e3:1b:4f:6b:45:0a:65:e3:c9:cf:9f:5f:3b:16:b3:77:dd:0d:
11:ac:28:9a:d8:1d:a4:b7:3e:b7:34:9d:87:66:73:63:a2:26:
a7:7b:c6:ff:81:67:33:7b:5e:e5:4f:e7:b7:d9:07:83:16:46:
e8:7a:7c:17:01:7d:4f:b9:79:dd:2a:4d:8f:1e:67:7c:f4:c5:
d3:b6:14:c1:d2:46:66:b2:cb:d9:d2:49:ca:2f:34:1c:47:a7:
0c:bd:da:92:20:3c:32:ec:04:d6:7b:95:ad:11:3b:7a:75:f7:
df:b1:61:00:96:77:ac:2d:13:bc:47:8f:c6:c0:25:3a:9f:8d:
1e:b0:14:f4:be:46:b4:56:36:b4:98:58:5b:a8:7e:78:f7:67:
ee:d1:5b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:29 2024 by rpki-client on console-fra.rpki-client.org