Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/0aI4rySGXGEPbanDoD3O54_ERug.roa
File: 0aI4rySGXGEPbanDoD3O54_ERug.roa (raw, json)
Hash identifier: sim7lXB5wd0TXvWZQrGgomY9KQGBY3R2MthapgamCv4=
Subject key identifier: D1:A2:38:AF:24:86:5C:61:0F:6D:A9:C3:A0:3D:CE:E7:8F:C4:46:E8
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 3798CEF8
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/0aI4rySGXGEPbanDoD3O54_ERug.roa
Signing time: Sat 01 Jan 2022 09:06:06 +0000
ROA not before: Sat 01 Jan 2022 09:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207701
IP address blocks: 5.11.31.0/24 maxlen: 24
2a01:7a8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932761336 (0x3798cef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jan 1 09:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1a238af24865c610f6da9c3a03dcee78fc446e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:14:ac:89:2a:23:54:ac:7d:af:5c:70:2f:
41:b4:65:46:b0:26:3c:aa:9a:05:09:02:c5:00:2d:
a6:f2:e7:ca:f4:d7:c5:ab:39:a1:95:be:59:79:59:
1d:10:bb:a9:28:fc:61:c1:4e:86:be:72:48:4c:5d:
0f:59:74:b8:8d:69:5b:23:c7:ac:90:ea:39:29:a5:
95:e1:35:9f:d7:24:dd:29:c4:65:7a:2c:a3:fe:bb:
4e:5e:24:d2:38:d7:6e:38:d3:e0:87:de:ce:9d:2a:
89:0a:b1:5d:a1:54:9a:1d:02:e0:0e:03:d0:f4:f7:
06:b2:88:c6:98:56:fd:6f:25:d3:39:f9:fe:8c:ed:
65:39:ee:9e:e3:64:87:95:95:d7:79:bc:12:8f:68:
d9:47:a4:de:a5:14:c8:0a:5e:33:34:48:82:1b:a5:
0a:38:df:b1:f3:0c:80:83:1b:d4:d6:9e:81:bf:2e:
b4:82:29:3d:e4:45:7e:4b:d9:ad:da:c5:22:fa:93:
a8:09:0e:15:f1:be:3c:23:4c:7a:39:1f:52:bc:2c:
4f:34:23:bc:fd:de:c4:3c:1e:4e:f0:0d:a7:4b:6a:
ef:2a:83:22:1b:64:33:37:e3:ad:a7:2a:84:3a:e3:
26:2f:a2:8c:2e:c7:07:88:71:c1:50:28:7c:05:62:
8f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A2:38:AF:24:86:5C:61:0F:6D:A9:C3:A0:3D:CE:E7:8F:C4:46:E8
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/0aI4rySGXGEPbanDoD3O54_ERug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.31.0/24
IPv6:
2a01:7a8::/48
Signature Algorithm: sha256WithRSAEncryption
9a:f5:ff:c7:f6:09:ea:07:b8:9b:2a:f8:fe:f9:99:c6:67:b8:
2f:32:13:5b:9b:ce:f5:31:b6:ce:72:87:2d:e9:1a:fc:f7:57:
ee:3f:4b:f1:d9:bc:c0:d8:fa:4d:03:8a:ec:57:bc:21:09:2a:
d6:c2:3b:ec:6c:0e:57:66:4a:e8:2f:76:24:5f:b4:a5:01:3f:
60:a0:0f:e2:72:9b:fa:ed:06:2c:76:60:e9:46:ff:57:5c:57:
3a:5b:70:69:11:96:d1:e7:ae:8f:05:7e:e7:7b:a2:5e:7a:fb:
fd:94:b6:f1:4c:c7:bb:4b:8a:1a:27:72:4d:d8:af:24:26:9b:
c8:91:67:e4:9d:3f:9f:79:84:e6:dd:dc:63:85:49:42:fb:b4:
63:0e:5f:b5:51:25:95:21:f1:f1:5e:ce:5f:18:c7:b0:bc:4e:
17:3f:cb:58:d6:e7:3e:a9:24:36:9f:9b:cc:72:ca:e8:f9:c1:
1e:2f:cc:8b:5a:24:b4:71:27:e7:4e:56:a6:75:d2:fc:d1:3c:
82:2e:1c:47:01:57:2e:74:06:8a:73:32:70:8c:35:e9:32:ba:
b9:2e:5b:ec:36:70:16:65:d4:0e:3e:2a:ab:7d:7a:c3:d5:9b:
63:16:6a:95:43:0c:43:5a:a8:17:b3:4b:e9:56:45:16:6d:e7:
df:19:3c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org