Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/SLbe9UQ21b0CdaGUijYUmKP951o.roa
File: SLbe9UQ21b0CdaGUijYUmKP951o.roa (raw, json)
Hash identifier: HAMouqaf2UZSeIRJMHjTKzUDVzormzBc0hi/lS7uvx4=
Subject key identifier: 48:B6:DE:F5:44:36:D5:BD:02:75:A1:94:8A:36:14:98:A3:FD:E7:5A
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01846092CC7E324E7EB2EEBABA4DF7B7DA65
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/SLbe9UQ21b0CdaGUijYUmKP951o.roa
Signing time: Thu 10 Nov 2022 08:05:44 +0000
ROA not before: Thu 10 Nov 2022 08:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56766
IP address blocks: 31.133.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:92:cc:7e:32:4e:7e:b2:ee:ba:ba:4d:f7:b7:da:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Nov 10 08:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48b6def54436d5bd0275a1948a361498a3fde75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:00:c4:c8:1b:78:26:d2:75:9e:33:27:3a:bc:
5d:41:3a:88:0d:71:34:8c:cf:d2:dc:23:9d:ad:5e:
7b:26:d9:5b:3e:90:f5:7b:5c:d2:10:0f:0e:4a:28:
6f:4a:8c:9a:57:b5:3b:72:96:52:83:89:e7:8b:ad:
3a:5f:2c:3a:fb:1e:c4:13:1e:9e:01:d8:af:44:70:
51:5c:38:41:c7:b0:fc:67:ee:47:d5:79:ed:ab:95:
47:26:e4:9f:83:7e:3c:07:d8:98:72:d6:64:26:ae:
da:5d:80:1a:8c:66:b2:e8:ac:74:84:01:6c:31:85:
e1:a5:86:4d:8b:5f:24:f7:27:da:0d:44:32:fa:74:
dd:07:2f:e1:06:86:60:ee:c1:27:fa:a7:0f:0e:f7:
02:c9:0e:8a:4e:28:27:35:36:0c:d7:1d:d4:45:fd:
ac:66:5c:f6:89:ce:a6:ee:7e:b6:c8:7d:67:08:88:
78:60:34:cb:43:f1:fc:52:f2:f6:57:16:fe:b7:c4:
c1:31:02:02:a3:8c:45:55:67:de:51:99:76:ff:6e:
9c:c1:e1:fd:96:bb:86:4a:dc:1a:5b:f5:c8:68:d5:
57:20:c2:62:af:5c:91:f7:81:67:91:fe:e1:1e:53:
e2:80:3a:63:da:53:04:82:37:f0:46:19:3b:b4:82:
99:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B6:DE:F5:44:36:D5:BD:02:75:A1:94:8A:36:14:98:A3:FD:E7:5A
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/SLbe9UQ21b0CdaGUijYUmKP951o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.43.0/24
Signature Algorithm: sha256WithRSAEncryption
44:d7:71:23:76:f3:3c:ca:f9:ab:af:08:94:a9:55:03:26:d1:
0e:44:61:04:62:0a:a0:14:d0:36:0c:83:42:84:11:6e:5a:48:
8f:bc:86:d3:0b:b5:5e:43:b3:70:6c:62:63:d6:70:99:9e:14:
2a:a3:ae:48:65:f2:23:fe:0c:71:93:43:a2:d0:d7:1e:8c:78:
e6:87:8b:76:54:c2:9c:88:c8:66:06:0e:04:4e:52:02:15:8a:
0b:76:2d:16:78:de:37:fa:8b:7a:ab:2e:4d:04:83:39:c5:30:
76:ea:f5:7a:d0:f6:33:18:23:36:9c:53:72:38:52:42:7e:1a:
4e:ad:36:c6:b9:c9:75:19:34:31:45:24:c9:36:72:5c:ca:16:
b0:eb:4e:fa:70:2d:dd:0e:fd:27:e9:b7:b6:7c:cc:d1:98:99:
6d:2f:a8:65:29:46:9a:9b:97:fe:7d:a8:fb:25:f5:de:a6:cd:
36:b8:09:d2:27:be:fe:0b:4a:54:25:33:a1:f3:eb:cb:d2:f0:
84:95:4d:e0:69:94:52:b5:81:6d:18:9b:0e:d9:4c:42:eb:e1:
1d:76:85:32:7f:f2:5e:3d:94:4c:16:4c:12:b7:2f:8c:2f:e5:
2f:57:0d:2c:91:c6:af:75:57:89:cf:9e:b5:c3:82:c9:64:0e:
45:25:32:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:41 2024 by rpki-client on console-ams.rpki-client.org