Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7642b9-caa0-43df-8205-2f18aa636bca/1/vlRbw5YyEn-earXA0CSSSY3UEOs.roa
File: vlRbw5YyEn-earXA0CSSSY3UEOs.roa (raw, json)
Hash identifier: qw5nSft0y9orYlDrkWiRA78a4OC31vVHyajq1Yprkss=
Subject key identifier: BE:54:5B:C3:96:32:12:7F:9E:6A:B5:C0:D0:24:92:49:8D:D4:10:EB
Certificate issuer: /CN=e4b90db21816df01f70f296683fea2c0ac8161d9
Certificate serial: 01E68F00
Authority key identifier: E4:B9:0D:B2:18:16:DF:01:F7:0F:29:66:83:FE:A2:C0:AC:81:61:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5LkNshgW3wH3Dylmg_6iwKyBYdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7642b9-caa0-43df-8205-2f18aa636bca/1/vlRbw5YyEn-earXA0CSSSY3UEOs.roa
Signing time: Sat 28 May 2022 14:09:13 +0000
ROA not before: Sat 28 May 2022 14:09:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 87.236.144.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31887104 (0x1e68f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4b90db21816df01f70f296683fea2c0ac8161d9
Validity
Not Before: May 28 14:09:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be545bc39632127f9e6ab5c0d02492498dd410eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a5:09:2a:f0:9c:4a:59:fd:68:20:95:95:ee:
1a:6f:dd:cf:ae:5a:ed:28:38:df:d9:1c:c1:bb:40:
c6:d9:9a:e5:e1:3c:73:aa:39:36:97:0f:00:3c:5e:
14:cb:f7:5e:18:c5:b1:fb:64:1d:c7:8a:9c:16:94:
f9:33:cd:a1:08:7e:c1:e4:eb:c0:49:66:65:c6:d6:
f4:5c:b8:a3:1c:16:0c:d3:bf:3f:15:b1:0e:b7:b3:
f0:04:ad:7f:19:53:f3:6e:7a:14:8e:3a:e0:87:90:
03:48:c1:9a:ae:6c:38:9c:42:db:ff:13:ed:31:05:
0d:60:d3:c1:c0:a2:55:ff:4f:ef:f6:71:23:97:e8:
54:aa:39:69:7c:b6:69:3e:61:4a:2f:ed:69:c0:73:
42:53:07:32:9d:83:95:f8:07:f6:95:78:0a:07:45:
f0:12:30:d7:df:74:ba:47:8b:e8:b7:60:bc:25:f4:
45:2b:b7:00:f3:ce:3b:ee:6d:09:1d:0a:09:26:8d:
1a:c1:8a:5e:ea:5d:66:e6:4d:63:7d:38:70:d7:73:
17:5b:3c:f6:4e:b1:93:e6:6b:37:32:85:48:15:2f:
86:d8:40:e8:15:f8:b8:83:2e:1a:02:d5:98:32:b4:
b7:56:f6:c9:80:18:cd:e3:13:fd:3e:fc:0d:c3:4d:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:54:5B:C3:96:32:12:7F:9E:6A:B5:C0:D0:24:92:49:8D:D4:10:EB
X509v3 Authority Key Identifier:
keyid:E4:B9:0D:B2:18:16:DF:01:F7:0F:29:66:83:FE:A2:C0:AC:81:61:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LkNshgW3wH3Dylmg_6iwKyBYdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7642b9-caa0-43df-8205-2f18aa636bca/1/vlRbw5YyEn-earXA0CSSSY3UEOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7642b9-caa0-43df-8205-2f18aa636bca/1/5LkNshgW3wH3Dylmg_6iwKyBYdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.144.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:b6:d2:12:48:21:7c:23:f9:20:30:1c:a7:87:b9:6d:76:0b:
fa:70:6c:b2:41:42:65:bb:86:16:3f:08:08:e1:41:40:a0:41:
79:aa:eb:5a:58:e6:54:05:b4:89:b9:89:c2:bf:b5:b7:77:ba:
61:a2:ba:49:93:68:25:13:50:19:57:0f:3c:0d:85:ea:5e:cf:
01:21:5b:26:93:b1:2d:0c:fe:ac:a5:3e:c7:2c:fa:72:89:56:
a8:09:23:8b:df:8a:77:ba:d3:47:94:5e:f4:87:ef:6c:bf:e2:
fd:c8:70:e8:b4:12:7c:ae:09:9b:80:e7:ac:2c:ce:b9:16:b1:
45:f0:a7:a8:e7:c3:6a:45:08:4f:43:17:ce:8e:02:e8:6c:ac:
b2:66:ad:f0:57:76:bb:28:52:a2:a9:68:35:36:e3:9a:d9:a5:
28:1c:1a:80:bf:22:d9:f8:bb:d2:94:50:86:6b:df:31:3f:d3:
c7:05:69:4c:14:94:cf:eb:86:21:c7:d5:ba:88:6f:43:46:b2:
9d:ab:a8:42:6c:55:0d:cc:31:0b:4f:0b:e2:18:13:d4:32:78:
3f:cf:38:7e:84:65:b9:f7:bd:e1:2d:28:3c:a8:59:1c:fb:5b:
3e:0a:18:a9:e4:b6:98:ff:c4:1e:7a:76:b4:9c:58:5c:85:82:
fb:0c:72:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-fra.rpki-client.org