Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/c39a8c-3bb0-449d-89c3-6fba6a1e0ee7/1/AUSLB0Pld__u2oQ5L1AzTszDNzs.roa
File: AUSLB0Pld__u2oQ5L1AzTszDNzs.roa (raw, json)
Hash identifier: aloXmIPRDFHjNHgxSjk+Uo9Xib3HgO8g+coTRZz6cj8=
Subject key identifier: 01:44:8B:07:43:E5:77:FF:EE:DA:84:39:2F:50:33:4E:CC:C3:37:3B
Certificate issuer: /CN=52e71b39d7c49430bbc77bb65952e4021a025316
Certificate serial: 038A0C4C
Authority key identifier: 52:E7:1B:39:D7:C4:94:30:BB:C7:7B:B6:59:52:E4:02:1A:02:53:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UucbOdfElDC7x3u2WVLkAhoCUxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/c39a8c-3bb0-449d-89c3-6fba6a1e0ee7/1/AUSLB0Pld__u2oQ5L1AzTszDNzs.roa
Signing time: Sat 01 Jan 2022 09:04:13 +0000
ROA not before: Sat 01 Jan 2022 09:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39530
IP address blocks: 185.255.232.0/22 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59378764 (0x38a0c4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e71b39d7c49430bbc77bb65952e4021a025316
Validity
Not Before: Jan 1 09:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01448b0743e577ffeeda84392f50334eccc3373b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f3:67:02:9b:c4:ec:91:5a:ed:28:9d:d7:7c:
32:a8:b5:1a:0c:21:8f:cf:58:db:9f:7a:90:7f:31:
7e:23:3a:38:95:b7:e5:7b:f0:14:c9:26:66:53:47:
0f:08:6a:22:d3:f9:e6:66:9e:1d:c3:7a:a9:06:cb:
96:31:35:a4:35:0b:55:16:c4:fa:dd:09:89:c5:5f:
e6:ba:4e:33:c1:dd:13:54:ad:7d:84:d8:15:df:97:
19:3e:5f:e4:60:86:b1:f1:22:df:df:7e:cd:a1:35:
f7:c9:ba:b9:b8:91:9a:88:2e:95:0b:63:2a:d8:11:
05:15:d4:8a:55:48:99:34:39:c8:fb:bf:df:d7:66:
b2:fa:4e:f3:ad:01:ad:6c:fb:14:6c:e9:38:de:c7:
4a:e1:68:22:b1:7f:1a:db:fd:4e:54:95:a4:78:ca:
06:0b:db:ff:59:80:e3:ce:d1:80:c4:44:f0:b7:f5:
53:c1:ca:cb:ac:d7:ed:95:9d:12:2b:f1:87:92:40:
6a:ef:46:e7:00:3b:15:77:e0:13:0b:0f:39:0c:0f:
57:d3:12:60:3b:01:62:67:ea:38:a8:b7:18:4f:0e:
97:59:70:78:84:b6:f8:a5:af:db:85:bb:29:2b:c3:
c8:c3:34:92:29:4b:f6:be:ef:d9:65:19:a9:7d:b1:
12:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:44:8B:07:43:E5:77:FF:EE:DA:84:39:2F:50:33:4E:CC:C3:37:3B
X509v3 Authority Key Identifier:
keyid:52:E7:1B:39:D7:C4:94:30:BB:C7:7B:B6:59:52:E4:02:1A:02:53:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UucbOdfElDC7x3u2WVLkAhoCUxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c39a8c-3bb0-449d-89c3-6fba6a1e0ee7/1/AUSLB0Pld__u2oQ5L1AzTszDNzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/c39a8c-3bb0-449d-89c3-6fba6a1e0ee7/1/UucbOdfElDC7x3u2WVLkAhoCUxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.232.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:3b:94:be:1d:34:0b:54:06:f1:df:36:fd:5b:26:84:43:ab:
be:e3:9a:5d:f1:6a:00:5b:d3:4f:03:2a:46:c6:11:78:da:0d:
27:ab:d4:15:e3:1d:20:1b:a8:14:cc:5d:8e:41:65:4f:a5:9b:
1b:b6:24:6a:70:cd:c2:8d:44:03:00:6b:7c:31:58:8b:61:54:
86:71:92:1c:9d:94:cf:e1:a1:8a:90:80:03:81:67:92:d4:ff:
e5:f5:e4:cb:e9:fb:3f:b3:84:c9:52:51:ca:3b:b3:fd:fe:f8:
6c:06:ff:19:5a:bc:43:fd:f3:9a:73:30:46:87:d1:a3:e8:22:
fd:e1:89:91:ce:57:59:c5:74:bc:ee:43:a0:ed:13:da:b8:aa:
7e:f5:05:df:d9:82:aa:fa:42:f4:a0:61:69:d9:10:1f:90:f3:
4d:20:90:f6:21:64:c7:e7:ce:64:f3:a7:16:6f:06:0d:bf:dd:
1d:7d:c5:d5:29:ff:f7:44:bb:63:d0:1b:72:bb:42:14:fc:c4:
20:7c:12:55:6c:e0:14:ea:8c:3a:bf:2b:70:f0:29:66:87:08:
fb:f4:3c:1a:44:60:cf:0e:78:08:68:f5:f6:cd:c2:55:96:34:
65:69:24:a9:3e:e2:82:a4:21:bf:42:35:49:2a:28:8e:3c:8e:
e9:58:25:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org