Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/sbVEA19O0LdXKAUlqrhMZ2gfBqk.roa
File: sbVEA19O0LdXKAUlqrhMZ2gfBqk.roa (raw, json)
Hash identifier: F8s4JWyFtWzI1CT7Z5jsD+QR24rgV3y9KXXU4oT0bu0=
Subject key identifier: B1:B5:44:03:5F:4E:D0:B7:57:28:05:25:AA:B8:4C:67:68:1F:06:A9
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01840980F655AAC042EDE2FB5C70AED94AF9
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/sbVEA19O0LdXKAUlqrhMZ2gfBqk.roa
Signing time: Mon 24 Oct 2022 10:19:17 +0000
ROA not before: Mon 24 Oct 2022 10:19:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29147
IP address blocks: 82.137.156.0/24 maxlen: 24
2001:b08:a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:09:80:f6:55:aa:c0:42:ed:e2:fb:5c:70:ae:d9:4a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Oct 24 10:19:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1b544035f4ed0b757280525aab84c67681f06a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a4:d2:27:c4:c2:97:cb:9c:00:b0:73:e0:72:
48:43:67:8a:64:99:58:f4:e2:29:31:b2:90:ef:62:
9a:f5:dd:91:e7:16:df:ed:a5:fc:13:74:20:ff:5b:
d9:79:26:fe:96:ef:b9:fa:d9:fe:10:1d:bc:82:0c:
83:7f:08:d4:ca:a1:96:fb:3f:cc:7c:5c:bf:95:66:
db:30:18:fa:b3:eb:4c:6b:ee:2c:6b:ba:23:55:21:
15:bb:84:9d:3e:76:79:d1:8e:22:9c:1f:07:fa:70:
b5:75:75:ef:7d:07:22:f5:e6:3d:85:ee:a1:f0:40:
1b:b2:fa:a8:67:48:d3:b5:dc:4d:72:d0:95:f6:12:
67:10:26:a9:4d:9d:52:e4:a4:7a:ca:56:f7:26:9f:
09:f8:9e:e5:60:7b:bf:ec:85:0b:b8:93:1e:be:84:
28:9a:ef:75:bc:7e:0f:a1:42:88:a2:81:ef:db:f3:
4b:d8:b6:04:4b:f6:2e:d1:4f:c9:ac:e7:91:0e:3d:
02:27:ab:f7:b6:d8:53:23:e1:ae:ab:8d:13:33:67:
a7:6f:9e:2f:6f:ae:c5:8c:0e:7f:35:8b:6e:97:17:
8e:71:3a:3c:7a:2d:11:5b:a3:48:2a:69:73:41:d5:
a7:e0:c9:1d:49:12:e3:e8:2f:8e:82:26:0e:b0:66:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B5:44:03:5F:4E:D0:B7:57:28:05:25:AA:B8:4C:67:68:1F:06:A9
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/sbVEA19O0LdXKAUlqrhMZ2gfBqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.137.156.0/24
IPv6:
2001:b08:a::/48
Signature Algorithm: sha256WithRSAEncryption
1f:45:b1:fa:e0:79:35:60:a6:f0:51:e7:7e:93:ea:0b:db:12:
85:81:56:c8:ef:67:62:c2:41:cb:5a:d5:2b:2a:c5:3c:19:ef:
9f:3a:11:06:e6:f7:83:18:f9:17:db:c1:04:96:30:e7:02:6e:
a9:ed:56:c9:d3:e0:cd:b6:28:11:3c:99:5e:14:26:07:61:1f:
1e:57:50:cc:df:41:48:a1:7c:0c:e4:25:c6:7a:2a:ba:38:05:
0e:78:e0:a4:bc:80:2e:7c:e5:f2:48:43:2e:58:aa:74:df:4c:
4e:39:36:41:48:ea:68:e7:79:c8:c7:3a:bb:af:4b:23:b8:4d:
67:3a:b0:00:0f:f2:a2:5d:ff:7b:f3:66:28:3d:07:94:02:a2:
50:bd:0f:cd:99:b5:be:7d:25:ad:fd:36:84:a6:48:e7:40:cc:
da:57:34:7a:3e:a4:33:dd:de:b4:42:94:d8:cb:d0:9e:e1:62:
7d:dd:e2:1e:71:ac:61:56:20:a7:9f:d3:de:2b:9c:7f:e0:c5:
72:b6:43:f0:57:26:1c:66:dd:eb:48:0b:ed:45:db:fc:88:9b:
e7:95:e5:80:44:76:17:d6:ea:98:52:c3:31:a7:08:76:be:e3:
6f:27:0e:e5:c9:61:16:fd:6d:cd:c9:77:95:8f:f8:09:f8:b2:
ab:a6:0a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org