Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/pbxrZgQrfdwiVT7LfAwcguuhg8o.roa
File: pbxrZgQrfdwiVT7LfAwcguuhg8o.roa (raw, json)
Hash identifier: HUTErKjJhYkJw5MT2oYc2dXIitGMDSkwM0pisworkgo=
Subject key identifier: A5:BC:6B:66:04:2B:7D:DC:22:55:3E:CB:7C:0C:1C:82:EB:A1:83:CA
Certificate issuer: /CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Certificate serial: 031A7E53
Authority key identifier: 82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/pbxrZgQrfdwiVT7LfAwcguuhg8o.roa
Signing time: Sat 01 Jan 2022 00:53:54 +0000
ROA not before: Sat 01 Jan 2022 00:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210043
IP address blocks: 155.140.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52067923 (0x31a7e53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Validity
Not Before: Jan 1 00:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5bc6b66042b7ddc22553ecb7c0c1c82eba183ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:61:5e:59:35:d3:60:69:c0:16:8e:d6:5c:e2:
44:75:58:72:64:41:4d:40:8d:e1:10:6d:e7:1f:1f:
80:32:e6:8d:7f:b8:14:8d:3d:f8:aa:37:93:62:8c:
25:7c:2e:3d:36:69:70:e2:5c:ea:bc:f4:3e:ae:43:
d7:fc:27:2b:27:c7:ad:f4:95:bd:80:36:9b:e6:9c:
f3:02:e8:3f:05:7e:c3:cf:11:81:17:a5:fe:4a:5d:
b5:1f:60:f7:a7:42:4e:0d:0f:e4:ef:f7:d7:c5:55:
1a:51:74:71:84:cc:88:6d:0e:d6:9a:82:9b:a2:75:
93:31:98:35:0e:b4:74:37:15:3f:1d:ee:86:d1:17:
95:6c:96:f3:9b:c0:1a:78:9b:87:0b:98:86:bf:e9:
33:90:1e:c2:70:39:03:62:b1:e9:16:44:96:d2:b4:
2a:7a:f7:af:8e:57:bd:8f:0e:b1:69:28:b8:cc:14:
42:20:03:41:55:15:9f:42:69:1e:d6:8c:06:d7:77:
b4:69:45:bb:86:21:b5:a1:8b:41:44:c9:d2:fc:76:
91:77:4f:01:90:dc:d7:ec:b6:e1:72:7b:2f:41:3f:
d6:c3:cc:c5:48:4e:9f:9e:40:51:98:c4:4d:ba:b4:
a8:39:d0:83:5a:d7:48:d2:07:68:5a:4f:f7:53:d5:
75:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BC:6B:66:04:2B:7D:DC:22:55:3E:CB:7C:0C:1C:82:EB:A1:83:CA
X509v3 Authority Key Identifier:
keyid:82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/pbxrZgQrfdwiVT7LfAwcguuhg8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/gvolsvyxRoEUtziSirINh2G_iDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.140.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:33:86:98:6c:74:ce:c6:46:09:31:ff:24:ee:05:49:6a:ed:
fb:43:c9:bd:11:94:b6:71:cc:b6:31:fd:ac:a1:cf:20:50:9d:
92:30:51:00:83:59:ef:37:f7:22:87:d7:ef:0c:25:ee:0d:27:
12:7e:22:0a:32:56:2f:22:13:be:5c:94:68:9c:2c:f0:d0:5d:
05:49:66:93:e4:91:0b:13:b3:ab:f7:5b:92:e4:da:9a:dd:7a:
fd:6d:6e:e5:99:3f:6c:e8:21:bd:1a:4d:29:07:46:bc:b2:c0:
ea:e9:4c:33:bb:46:1a:79:36:07:7e:3a:f3:52:00:85:1b:59:
0c:32:c0:f3:79:c7:0f:2e:13:d4:a9:23:4e:42:fb:ca:07:fe:
28:d3:f1:5b:d3:8e:c2:c0:27:b9:ef:11:b6:63:d2:8b:77:44:
48:cd:d9:16:32:64:dc:70:2d:a2:e1:5c:61:0f:04:c5:65:ff:
fe:b8:86:6d:5e:d7:0b:b5:5c:90:e7:a7:29:81:97:54:86:07:
dd:8b:26:cc:d5:7d:af:3b:33:49:30:d2:24:c0:2c:a3:f1:8d:
70:8c:c3:50:64:2f:c6:3c:f0:0d:85:38:d3:37:c4:c6:50:e3:
10:0c:3b:85:49:cc:9e:0d:6a:19:64:e7:70:a0:80:0d:49:95:
f4:bd:c0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:35 2024 by rpki-client on console-fra.rpki-client.org