Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/K5Ga_LI2HcXicUwe730p4ZRrbEk.roa
File: K5Ga_LI2HcXicUwe730p4ZRrbEk.roa (raw, json)
Hash identifier: sLjYDrBvGJE4fioNs7JY04TI0ItdCP7DWAQ1i73Euc0=
Subject key identifier: 2B:91:9A:FC:B2:36:1D:C5:E2:71:4C:1E:EF:7D:29:E1:94:6B:6C:49
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 0BD361C7
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/K5Ga_LI2HcXicUwe730p4ZRrbEk.roa
Signing time: Sat 01 Jan 2022 10:53:50 +0000
ROA not before: Sat 01 Jan 2022 10:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39089
IP address blocks: 31.133.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198402503 (0xbd361c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Jan 1 10:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b919afcb2361dc5e2714c1eef7d29e1946b6c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b4:00:08:e0:a0:5e:dc:4b:9d:ad:da:b8:b5:
ee:02:5c:5b:83:b3:91:aa:df:3b:be:4e:c1:55:54:
1d:da:36:69:1d:e1:37:d0:6c:a9:b7:66:d0:6d:2e:
01:5d:22:42:6e:77:f2:5d:78:ee:54:22:a2:c7:91:
4c:37:51:29:b6:04:36:2e:a5:37:60:32:54:b1:83:
3b:cb:d8:4c:42:9b:ab:83:77:b6:a2:61:a6:ef:b7:
78:fa:03:ea:4c:bf:36:5e:b3:a2:1f:55:52:e2:56:
75:f8:b3:12:41:a8:a3:25:6f:8a:1e:32:d7:34:6b:
15:84:af:d1:e8:48:77:04:9b:aa:8b:26:8b:21:98:
36:01:20:5a:f0:4b:fd:15:a6:5b:d0:30:94:6c:32:
73:62:69:09:28:1e:6c:a4:68:03:54:30:3d:81:2a:
37:25:b7:5d:87:2a:d6:c9:95:c4:7a:a0:e4:e7:20:
f8:24:84:94:c5:e2:61:3e:6d:d0:c0:aa:39:e5:ea:
c4:21:05:1d:2d:83:2a:63:d5:46:af:0d:e6:b8:80:
0d:65:12:4c:bb:7a:ab:c9:84:8e:53:ba:86:6b:a0:
f5:bd:b3:04:72:38:2f:32:65:62:4f:55:11:e7:47:
9f:cd:72:ba:03:d4:f4:69:aa:bc:41:e7:0d:9f:05:
44:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:91:9A:FC:B2:36:1D:C5:E2:71:4C:1E:EF:7D:29:E1:94:6B:6C:49
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/K5Ga_LI2HcXicUwe730p4ZRrbEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.56.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:c8:f2:c2:af:f7:26:ed:12:9b:41:7e:4c:ad:51:9b:f8:2b:
8e:8a:f0:90:58:4a:82:49:01:41:bb:e7:c0:a8:85:f7:56:3e:
95:46:66:de:c0:83:32:f2:5a:04:8f:34:d5:4d:8b:bc:46:f0:
a0:73:2f:f4:83:d8:9b:4b:eb:39:e1:60:6e:a1:a3:8e:50:ad:
94:81:05:0b:7b:a0:eb:88:76:74:b5:a1:ae:61:51:7a:3c:6a:
ba:4e:cf:54:86:a5:5c:89:10:11:92:50:72:7e:9b:2c:df:51:
5a:a7:a3:c4:57:9c:bb:28:10:71:2b:69:24:ae:a7:aa:66:0e:
5e:37:c2:a6:b0:16:26:27:01:bc:5e:20:c1:29:73:b9:0a:01:
42:73:ef:7a:d8:60:98:65:d3:f7:9c:f3:89:cf:a0:07:84:de:
48:44:14:68:0f:39:95:89:1c:86:1a:3b:31:e5:17:62:18:51:
d6:e3:0d:df:9e:01:86:3f:d0:61:d7:f9:00:95:f6:02:22:c9:
83:f4:68:9f:1f:81:95:01:30:66:c8:c5:da:2c:7a:0f:75:21:
60:75:18:85:c8:4a:4b:77:f6:e4:c9:29:be:ff:66:70:ad:3c:
8a:e4:8a:81:0e:61:9b:1b:11:2e:98:b2:41:ed:04:6b:72:73:
c0:ab:39:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:41 2024 by rpki-client on console-ams.rpki-client.org