Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/816948-8312-4619-88ab-9f67ff6afd50/1/tlFdKBEBWOvklv6RPMNPdl2xQiU.roa
File: tlFdKBEBWOvklv6RPMNPdl2xQiU.roa (raw, json)
Hash identifier: BUh9G06XJD4EFkPHjtB/ifL77VsxHn9D38ZTb7c4bFs=
Subject key identifier: B6:51:5D:28:11:01:58:EB:E4:96:FE:91:3C:C3:4F:76:5D:B1:42:25
Certificate issuer: /CN=5bdc41674d65d2af9174b1abace0b371362b4851
Certificate serial: 018570FB9650F8DA06F51EDCF0919D117E9D
Authority key identifier: 5B:DC:41:67:4D:65:D2:AF:91:74:B1:AB:AC:E0:B3:71:36:2B:48:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9xBZ01l0q-RdLGrrOCzcTYrSFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/816948-8312-4619-88ab-9f67ff6afd50/1/tlFdKBEBWOvklv6RPMNPdl2xQiU.roa
Signing time: Mon 02 Jan 2023 05:36:54 +0000
ROA not before: Mon 02 Jan 2023 05:36:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56476
IP address blocks: 31.42.192.0/24 maxlen: 24
31.42.192.0/19 maxlen: 19
31.42.194.0/24 maxlen: 24
31.42.195.0/24 maxlen: 24
31.42.193.0/24 maxlen: 24
31.42.198.0/24 maxlen: 24
31.42.199.0/24 maxlen: 24
31.42.196.0/24 maxlen: 24
31.42.197.0/24 maxlen: 24
31.42.201.0/24 maxlen: 24
31.42.202.0/24 maxlen: 24
31.42.200.0/24 maxlen: 24
31.42.205.0/24 maxlen: 24
31.42.206.0/24 maxlen: 24
31.42.203.0/24 maxlen: 24
31.42.204.0/24 maxlen: 24
31.42.208.0/24 maxlen: 24
31.42.209.0/24 maxlen: 24
31.42.207.0/24 maxlen: 24
31.42.212.0/24 maxlen: 24
31.42.213.0/24 maxlen: 24
31.42.210.0/24 maxlen: 24
31.42.211.0/24 maxlen: 24
31.42.215.0/24 maxlen: 24
31.42.216.0/24 maxlen: 24
31.42.214.0/24 maxlen: 24
31.42.219.0/24 maxlen: 24
31.42.217.0/24 maxlen: 24
31.42.218.0/24 maxlen: 24
31.42.223.0/24 maxlen: 24
31.42.220.0/24 maxlen: 24
31.42.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:96:50:f8:da:06:f5:1e:dc:f0:91:9d:11:7e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bdc41674d65d2af9174b1abace0b371362b4851
Validity
Not Before: Jan 2 05:36:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6515d28110158ebe496fe913cc34f765db14225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ad:09:44:7d:f7:74:68:bc:30:e2:73:1b:f3:
5d:ca:42:09:9e:6a:78:62:31:52:de:3c:8f:9b:32:
af:a2:72:4f:b5:52:ef:f0:85:d4:8c:13:b3:52:df:
69:27:11:62:25:75:53:d2:43:94:1c:ca:51:df:23:
4c:b0:d3:9b:6c:a6:b4:ca:c7:5c:92:f6:0f:eb:37:
6e:d1:98:4e:be:1c:14:a6:3b:74:1b:48:40:96:dc:
3e:a9:7d:66:a3:3b:3b:f9:c5:5e:4d:14:9c:b7:26:
08:bd:d5:6a:28:43:9d:67:48:41:d7:d8:67:18:e7:
ba:67:a5:ad:66:bb:7c:08:22:6e:71:63:c1:29:44:
95:e0:e7:82:6e:05:40:4a:93:67:35:bf:f3:0e:e9:
64:a0:7c:2a:6e:4d:a2:5a:a8:b7:4d:85:b7:ee:26:
c6:00:2f:b8:33:68:c0:8c:02:d8:6f:68:d2:19:04:
00:21:59:be:4e:30:d0:72:de:b9:70:ce:2a:ea:04:
62:09:8f:6f:7d:64:25:3f:95:63:45:ef:62:a6:ab:
f8:90:87:e7:05:d2:3d:fc:2d:9d:e2:d8:bc:68:8f:
75:f9:31:16:6a:56:39:01:2a:e6:48:55:37:f6:36:
30:1e:c5:6c:b4:60:b0:77:6e:29:72:21:c0:f9:56:
c2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:51:5D:28:11:01:58:EB:E4:96:FE:91:3C:C3:4F:76:5D:B1:42:25
X509v3 Authority Key Identifier:
keyid:5B:DC:41:67:4D:65:D2:AF:91:74:B1:AB:AC:E0:B3:71:36:2B:48:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9xBZ01l0q-RdLGrrOCzcTYrSFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/816948-8312-4619-88ab-9f67ff6afd50/1/tlFdKBEBWOvklv6RPMNPdl2xQiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/816948-8312-4619-88ab-9f67ff6afd50/1/W9xBZ01l0q-RdLGrrOCzcTYrSFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:e8:60:9d:1c:ce:0e:ce:40:82:80:1b:ac:30:1a:ac:37:4c:
be:b6:50:2a:ab:74:15:56:f5:ae:88:d8:eb:ea:15:55:a1:3b:
bb:78:d2:80:ca:91:f4:a3:aa:ad:62:83:2e:c2:59:81:db:a4:
77:9d:a7:93:5e:31:e9:14:8b:83:74:15:1d:83:68:6d:75:39:
ac:00:ab:2a:18:63:29:7e:1f:ee:e5:d4:ff:7d:19:7e:43:48:
34:54:64:f7:cb:da:d6:0d:27:60:0d:d3:74:60:aa:a4:07:b6:
02:44:c5:02:09:db:05:f3:bc:2f:8d:75:b8:2a:ba:e2:ee:56:
fc:38:ba:64:2f:6a:cd:70:fa:33:7d:19:7b:3b:8e:e6:5f:98:
e5:65:60:b2:cf:25:94:e1:69:9a:da:12:7c:06:23:84:3e:09:
af:c3:8c:b4:42:64:7e:73:64:6d:41:7d:e6:6a:5c:f1:0d:dd:
ba:8b:df:39:5e:08:eb:e2:c8:1f:c7:49:8e:8c:e5:ab:04:79:
2b:96:a7:0f:a4:da:66:cb:35:53:d9:96:54:d6:b6:0b:64:60:
2a:de:d4:bd:3d:f6:8e:dc:84:65:44:52:58:e8:da:5c:2f:d2:
64:91:7a:e4:1c:0e:27:d7:c2:da:2b:4a:20:ae:98:a7:85:33:
a3:8f:d0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:11 2025 by rpki-client