Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/xr5kWbbj8ng_TLyv9Q171rDrWa0.roa
File: xr5kWbbj8ng_TLyv9Q171rDrWa0.roa (raw, json)
Hash identifier: ou7BBNLAlAqdZyLH+QszsVA+LbL74oDswIJvHdVSKMQ=
Subject key identifier: C6:BE:64:59:B6:E3:F2:78:3F:4C:BC:AF:F5:0D:7B:D6:B0:EB:59:AD
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B611B84
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/xr5kWbbj8ng_TLyv9Q171rDrWa0.roa
Signing time: Sat 01 Jan 2022 08:58:39 +0000
ROA not before: Sat 01 Jan 2022 08:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50875
IP address blocks: 212.15.25.0/24 maxlen: 24
31.145.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190913412 (0xb611b84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6be6459b6e3f2783f4cbcaff50d7bd6b0eb59ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:87:bc:1b:24:6b:cb:50:ad:f8:eb:cb:d5:3f:
39:f1:7a:e8:d3:35:45:2b:db:13:a9:18:07:04:11:
80:b8:06:08:19:5f:e9:2f:14:b7:ac:1b:96:e6:df:
3d:71:d4:3e:d1:07:75:03:95:ed:76:57:9c:01:99:
c4:b2:4d:b0:52:15:ed:10:aa:51:ba:c7:42:47:dc:
72:26:d8:bf:35:55:36:54:38:a1:6b:70:20:ef:98:
27:63:eb:87:82:04:19:c5:5b:84:a7:24:1e:d1:75:
2a:f0:f8:92:fb:d6:aa:e8:3d:cd:d2:45:fc:79:26:
a4:8c:d0:90:c4:de:7a:a4:ff:83:e4:37:f3:f8:5d:
6d:f5:dc:e9:3e:d3:c9:30:65:23:bf:b0:5d:29:10:
c6:b6:e8:82:57:0d:e0:bc:89:3c:0b:97:df:5c:f2:
68:4d:32:e9:92:d3:bb:2b:03:85:50:c7:7c:54:60:
b8:51:b3:a8:5c:f4:d5:0f:77:1b:58:d0:b6:07:7a:
ad:04:32:2a:75:5f:bc:08:a7:0d:6e:1a:c8:e9:cb:
31:04:56:ab:4d:6e:55:15:22:88:a7:85:8d:23:cf:
8d:91:f8:34:35:63:43:c1:62:0d:e7:4a:be:d9:fd:
f0:ff:1e:34:b8:04:d0:37:b2:e9:86:a6:e0:4d:28:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BE:64:59:B6:E3:F2:78:3F:4C:BC:AF:F5:0D:7B:D6:B0:EB:59:AD
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/xr5kWbbj8ng_TLyv9Q171rDrWa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.82.0/24
212.15.25.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:7d:9f:d7:3a:a0:d6:85:1c:cf:5c:63:07:da:fa:f2:e2:d3:
88:c4:7d:83:5e:ba:7e:b7:57:59:69:cb:8e:b7:a6:d2:d0:5d:
17:0d:fa:a9:fc:d0:71:a3:c5:8b:b1:5a:5b:32:c3:79:56:3b:
a1:55:3c:62:43:45:68:7d:f7:26:f8:86:d4:61:3c:5c:2c:74:
1a:85:71:25:90:19:16:00:6b:2d:60:b8:71:6b:4f:e4:e6:1c:
52:b9:17:95:4a:59:e8:d0:95:59:79:f1:4a:5e:14:d2:43:60:
87:c5:0c:43:95:e0:f0:03:ec:8d:c7:13:65:bd:68:2c:1b:3e:
63:51:c7:5a:c3:e2:bb:c6:a0:3a:02:74:83:2b:81:e1:d3:87:
52:f6:f5:f0:bb:dd:51:8f:5f:c9:60:e9:d8:ee:7b:ff:cb:49:
4f:45:c0:be:27:77:52:b7:8a:d1:be:2c:64:94:ed:b5:e4:61:
7c:4f:5b:9d:78:30:39:22:d9:b6:66:06:11:fe:e4:ac:82:64:
1a:05:7b:9b:fb:1c:81:ba:54:a8:25:c4:6e:49:90:a6:dd:0d:
ae:fe:30:aa:e4:c0:92:9d:6e:53:3d:e3:26:ce:67:76:e1:ef:
b3:e1:0c:fb:b2:d8:b7:f7:69:bf:16:59:e1:6b:ff:2e:2d:6e:
97:7e:58:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org