Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tL5XLMEs5NZDTEBXGVxUqNeK9WQ.roa
File: tL5XLMEs5NZDTEBXGVxUqNeK9WQ.roa (raw, json)
Hash identifier: xJtvAWX59v96g+9RAb9m9k8aBZyeaK3e3oXVccgSKtQ=
Subject key identifier: B4:BE:57:2C:C1:2C:E4:D6:43:4C:40:57:19:5C:54:A8:D7:8A:F5:64
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 282798DA
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tL5XLMEs5NZDTEBXGVxUqNeK9WQ.roa
Signing time: Sat 01 Jan 2022 16:09:43 +0000
ROA not before: Sat 01 Jan 2022 16:09:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202290
IP address blocks: 31.148.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 673683674 (0x282798da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4be572cc12ce4d6434c4057195c54a8d78af564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0b:2b:0a:f3:0d:be:8d:a2:ae:33:58:13:c6:
7f:18:a2:e2:81:0d:b0:7d:86:90:a4:14:9a:85:41:
04:7a:d9:29:55:6c:77:01:a2:12:1f:c3:8d:0d:ee:
fa:81:69:e2:70:a6:64:79:09:86:76:32:a8:33:a8:
79:9a:d5:dc:8d:e4:e5:e6:83:f3:57:f6:8a:8c:67:
81:0d:5d:58:ec:6c:30:2b:1f:c9:bc:0d:5d:9a:19:
5d:c1:fc:1c:c4:20:22:00:38:cd:45:6a:48:c4:ba:
9c:be:e2:c0:1e:a0:63:77:21:db:0c:9e:2d:e7:b4:
8e:a5:fb:40:b4:85:34:42:01:47:29:8c:7f:66:08:
c5:84:79:c1:65:e5:19:45:2c:e0:d5:1b:97:22:3c:
bc:e6:e9:2e:6e:3b:6b:04:75:b4:db:66:f5:3a:a4:
d5:14:99:d6:cb:46:3e:a8:49:5c:ac:97:d4:21:7d:
a2:d8:bf:13:08:16:3f:d1:b7:ac:d6:27:73:f3:82:
d8:cf:24:f6:da:7c:aa:be:e4:87:4e:f0:d5:b3:c3:
2d:dc:d9:01:34:68:f2:e8:e9:09:10:07:22:9a:c2:
b4:fa:b6:ce:88:6f:d5:b6:e3:aa:df:66:92:4d:12:
cb:46:a0:e4:81:55:b9:89:cf:2e:57:4d:dc:a0:a1:
ca:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BE:57:2C:C1:2C:E4:D6:43:4C:40:57:19:5C:54:A8:D7:8A:F5:64
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tL5XLMEs5NZDTEBXGVxUqNeK9WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.169.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:69:b9:e9:ff:76:55:c4:00:bd:31:c0:42:ad:38:30:88:2b:
1e:9c:22:36:5d:a8:c4:f9:c8:7f:f9:a7:75:ec:99:60:b7:40:
61:ae:bc:85:dc:5e:85:5f:d2:8a:37:eb:49:f1:04:5b:98:77:
27:75:c3:1c:08:1e:a1:78:ac:29:cd:a0:0d:a8:d5:9b:7e:c1:
26:6c:f2:a5:ba:18:48:44:4c:5d:ee:34:3a:84:fc:a6:f8:20:
5a:50:5a:5b:48:d5:6c:c8:6d:72:69:1c:35:31:1e:d0:15:fd:
b9:36:be:06:60:40:27:18:de:ee:ea:85:a7:b6:f8:94:00:0d:
b6:f3:2f:d9:dd:d7:33:58:5c:42:71:c8:82:5e:e3:da:27:33:
76:0b:55:1c:54:3b:2f:48:c3:02:7a:1b:75:25:fd:f2:19:45:
58:b9:aa:00:df:ea:4c:01:88:92:ff:89:98:e8:ee:18:ae:17:
0b:dd:f0:13:9d:20:59:23:0d:62:e5:b9:20:a2:09:62:e5:8b:
b7:92:ae:91:75:47:e7:79:67:5f:0f:5c:b9:08:e9:1c:85:35:
a7:04:1e:9e:e3:90:0e:16:62:5e:0a:03:70:dc:b8:f1:06:97:
7d:a9:52:fd:2d:bc:ed:97:ed:62:45:3a:39:df:58:fd:24:e7:
af:5a:68:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:25 2023 by rpki-client on console-ams.rpki-client.org