Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sL5XjJviGrmHQ2DE5cd3DW7idsk.roa
File: sL5XjJviGrmHQ2DE5cd3DW7idsk.roa (raw, json)
Hash identifier: GZveeQry6UWss5CcfYOKjE+ilIfhHf5VTWTgE7ExqfI=
Subject key identifier: B0:BE:57:8C:9B:E2:1A:B9:87:43:60:C4:E5:C7:77:0D:6E:E2:76:C9
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 28523EC4
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sL5XjJviGrmHQ2DE5cd3DW7idsk.roa
Signing time: Sat 01 Jan 2022 16:10:14 +0000
ROA not before: Sat 01 Jan 2022 16:10:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209926
IP address blocks: 92.38.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676478660 (0x28523ec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:10:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0be578c9be21ab9874360c4e5c7770d6ee276c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2a:74:75:8e:3e:ce:32:13:73:1d:d9:6e:eb:
ef:23:e6:ef:e0:ed:f9:c7:af:4f:c8:9c:ed:a4:88:
93:b0:16:bc:14:c8:80:08:4e:3e:13:ce:18:97:22:
66:a0:53:ae:12:db:66:e0:04:c2:61:a0:c9:d2:40:
fe:c1:97:7c:82:de:bd:e8:21:4a:9c:dc:70:86:d8:
d9:47:fb:21:bc:5b:59:7f:3c:97:9e:5f:06:40:40:
41:31:4c:5b:0d:0c:70:2d:e6:25:45:94:06:09:02:
40:f7:73:8a:6b:13:36:b2:c6:2d:f0:b9:3d:61:fb:
41:4b:ea:7e:fb:5a:b4:28:b6:42:01:20:00:50:e7:
db:86:c7:39:4c:32:78:1a:03:d4:ca:d6:28:fe:a7:
cf:38:a7:c5:bd:69:cb:01:69:6d:04:17:ae:71:da:
09:ab:e4:3f:44:e3:ed:d4:3f:9d:32:1d:9e:8a:40:
8b:41:19:29:7d:a8:43:29:7d:da:b4:fc:7d:f0:8b:
ee:bc:04:6f:4d:d7:27:95:7b:73:e7:bd:d7:a6:92:
8c:f2:0f:1e:58:c2:fd:4d:57:8a:4b:90:a1:24:5d:
7c:14:d3:93:73:b9:34:18:11:eb:52:ba:d8:18:69:
34:b3:7f:75:4b:d9:3e:00:75:d7:09:f5:83:62:a1:
fc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BE:57:8C:9B:E2:1A:B9:87:43:60:C4:E5:C7:77:0D:6E:E2:76:C9
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sL5XjJviGrmHQ2DE5cd3DW7idsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.4.0/24
Signature Algorithm: sha256WithRSAEncryption
21:52:c4:66:78:d3:9d:6a:79:ea:1a:6e:9c:24:21:01:65:77:
17:4c:48:a1:26:f2:a0:3d:ce:f7:bb:d3:77:a6:c3:3b:0f:82:
d9:cc:f1:94:4f:0d:b1:15:e2:e9:da:ff:7e:8f:7d:89:94:8b:
db:4e:de:ed:96:38:c1:02:68:d7:05:5d:6e:70:b7:49:94:0e:
a7:65:2a:e3:19:fd:23:39:29:a7:7f:0a:57:b1:e2:a9:22:f4:
cb:98:0d:85:cf:a9:ca:ef:91:1e:a1:25:74:00:4d:db:34:d1:
fb:db:ee:c6:f6:e1:b4:31:3b:ed:29:8d:e4:1c:2c:8a:44:fe:
32:3a:f6:d0:cf:49:0a:98:8b:c2:3e:b2:29:9b:28:50:9a:69:
0a:7a:18:76:b6:4f:1a:4c:02:2c:12:1a:e4:9a:4c:3f:cc:dd:
47:bd:e2:be:97:0f:d1:f9:6f:ca:79:3b:db:a4:60:6a:75:c1:
ae:b0:ea:4d:d3:c9:73:24:4f:0a:5d:77:3c:81:03:e2:67:c0:
e2:e8:d9:2e:06:c0:69:c6:37:20:fa:84:c7:99:f7:36:96:7f:
4b:e8:2a:82:ca:4a:81:f4:6a:7e:df:f3:48:a1:22:30:35:19:
18:73:ca:72:d8:31:4b:74:7b:45:21:1c:6f:85:d5:21:5e:b2:
f6:17:51:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:52 2024 by rpki-client on console-ams.rpki-client.org