Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/SxoVJrSUFNff-4qgUfsi8G62qDE.roa
File: SxoVJrSUFNff-4qgUfsi8G62qDE.roa (raw, json)
Hash identifier: flsM7UvyiXre2zegwXnvxnTJf7a1tgProHnoJZvHfD0=
Subject key identifier: 4B:1A:15:26:B4:94:14:D7:DF:FB:8A:A0:51:FB:22:F0:6E:B6:A8:31
Certificate issuer: /CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12
Certificate serial: 054DAA75
Authority key identifier: 92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/SxoVJrSUFNff-4qgUfsi8G62qDE.roa
Signing time: Sat 01 Jan 2022 10:59:12 +0000
ROA not before: Sat 01 Jan 2022 10:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213300
IP address blocks: 2.56.170.0/24 maxlen: 24
2a10:4040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88975989 (0x54daa75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92b5ac88f2cdb14934830c1ac096a5ef73098f12
Validity
Not Before: Jan 1 10:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b1a1526b49414d7dffb8aa051fb22f06eb6a831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:09:76:29:3d:19:fe:c2:6d:5c:f1:1a:a1:00:
19:2e:1b:28:5e:df:e7:5e:3a:09:c2:40:a8:82:98:
b3:f5:ba:5c:6d:14:f2:c1:78:aa:16:ca:76:87:a4:
a5:e2:9b:e7:02:b6:d1:65:b2:cd:41:30:97:6b:49:
d3:d8:a6:65:dc:a0:a8:d6:b8:5f:18:e0:de:c4:00:
c1:0d:e7:82:09:51:0b:ea:97:1d:1f:96:88:cd:f4:
a0:72:f4:ee:1b:75:b9:2d:58:59:43:59:78:37:86:
fa:b2:66:81:98:98:0e:ef:7c:19:3d:e7:11:4f:5e:
07:8e:a2:8d:e4:14:ec:18:82:0b:2b:b3:6e:a6:86:
39:8b:a2:98:ca:5f:ac:73:e8:63:87:b6:cd:51:21:
3c:8f:98:6d:7b:ec:6d:87:54:87:20:aa:1f:3b:ff:
c2:3d:51:bd:c5:80:ef:14:cd:20:a7:a3:45:63:de:
9c:db:c5:1a:46:a7:9d:1a:12:ce:2e:86:fd:a5:6b:
00:20:4c:64:b1:fb:02:e8:e6:23:13:dd:fd:f6:c1:
db:76:f8:1f:6a:7e:16:19:76:d2:83:39:9a:46:31:
88:6c:c3:c6:05:65:33:8f:4c:af:b2:64:95:d9:22:
1b:e2:63:9a:03:a0:8d:ac:1f:31:45:ab:18:20:e2:
55:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1A:15:26:B4:94:14:D7:DF:FB:8A:A0:51:FB:22:F0:6E:B6:A8:31
X509v3 Authority Key Identifier:
keyid:92:B5:AC:88:F2:CD:B1:49:34:83:0C:1A:C0:96:A5:EF:73:09:8F:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/krWsiPLNsUk0gwwawJal73MJjxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/SxoVJrSUFNff-4qgUfsi8G62qDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/e417bd-14eb-4ca5-80f7-36c46f90d9a5/1/krWsiPLNsUk0gwwawJal73MJjxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.170.0/24
IPv6:
2a10:4040::/29
Signature Algorithm: sha256WithRSAEncryption
83:3d:44:55:ae:99:24:fa:b1:07:f9:d7:4d:2d:68:88:9f:14:
68:90:de:64:58:68:3f:3a:04:9c:ad:d4:aa:1e:51:76:f1:7b:
5e:b2:6e:65:ed:81:67:40:06:b3:c2:9e:f5:2a:07:1a:59:f0:
db:72:78:92:55:8c:1d:f2:17:b4:03:c3:d4:6a:e6:84:8f:14:
15:95:61:e2:57:76:f2:ed:a3:88:de:fc:70:ad:cc:63:7b:3b:
e1:fc:cf:8b:a1:33:b3:4a:21:63:35:96:26:88:97:c3:9f:7b:
46:15:e3:f5:25:1b:2b:61:3c:5f:e7:c3:1a:0f:d7:6c:f4:41:
e0:17:47:2e:d6:25:32:f9:6c:39:0e:3a:fb:5f:7e:eb:17:23:
70:ab:3c:34:14:06:8d:6e:9e:ad:63:8e:15:b6:c6:a7:28:73:
67:03:2f:7a:32:bd:e3:1f:53:6f:0e:8f:7d:16:11:aa:d8:01:
56:43:c8:73:49:b7:a7:54:d6:1c:1f:b4:b9:a1:67:03:03:70:
1b:37:f7:ce:bf:63:b8:95:f5:e1:45:2b:d0:bb:71:4f:e1:22:
01:94:c8:33:3a:6b:94:5b:b1:0b:57:18:db:ea:87:fe:f9:f6:
e8:e9:57:7d:5b:26:49:52:88:1d:15:77:1b:08:e5:73:aa:8e:
e5:fe:ac:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:22 2024 by rpki-client on console-ams.rpki-client.org