Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/VXDh3P1sweB1FbXYpVR6CF0PzEM.roa
File: VXDh3P1sweB1FbXYpVR6CF0PzEM.roa (raw, json)
Hash identifier: 75RAvEWJn7VvPFPb1+TbkURMLPrH2Xi7WJvgFrh9lNo=
Subject key identifier: 55:70:E1:DC:FD:6C:C1:E0:75:15:B5:D8:A5:54:7A:08:5D:0F:CC:43
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 3856F7AA
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/VXDh3P1sweB1FbXYpVR6CF0PzEM.roa
Signing time: Fri 25 Mar 2022 08:34:41 +0000
ROA not before: Fri 25 Mar 2022 08:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207734
IP address blocks: 5.11.22.0/24 maxlen: 24
5.11.21.0/24 maxlen: 24
5.11.26.0/24 maxlen: 24
5.11.26.0/23 maxlen: 23
5.11.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 945223594 (0x3856f7aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Mar 25 08:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5570e1dcfd6cc1e07515b5d8a5547a085d0fcc43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:3d:61:de:8d:cb:18:21:9e:47:5c:af:18:
a1:d4:e4:e3:58:fa:0b:c2:3a:0a:c7:04:65:81:8d:
fa:91:39:df:38:4e:da:7f:43:28:35:0a:b1:f0:b6:
eb:8c:f1:fb:62:2c:39:4b:a8:0a:d4:1d:ab:64:30:
69:1c:ba:7d:f4:99:6d:0a:09:b5:38:21:61:27:9a:
78:85:ee:3e:9c:5f:82:19:e5:80:48:c2:b9:24:be:
95:72:69:a5:79:43:fd:c1:06:2d:1c:e8:8c:2e:a8:
5a:66:ae:78:d6:c5:65:a8:d8:3b:c4:7a:9e:29:41:
97:26:df:19:e9:95:68:e9:53:30:d4:14:78:d3:b2:
6e:04:f7:ce:3c:7b:6c:f5:cd:04:c2:4e:27:db:7e:
23:d4:96:87:2b:5a:07:18:b4:0c:f8:51:3f:84:93:
18:6a:22:e5:25:e3:f2:a9:dd:3f:e7:68:73:ef:86:
83:19:f9:c3:7c:69:35:71:51:19:40:54:a1:93:65:
91:c7:bf:ed:ee:01:3c:19:04:11:d8:34:9a:71:85:
17:4a:82:49:5b:af:dc:cb:fe:79:3e:63:95:93:a5:
bd:3a:ed:63:a0:83:80:eb:b3:96:0f:2f:bf:bc:c0:
9f:90:9e:cf:a6:af:3d:39:16:dd:33:d7:b8:28:d5:
17:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:70:E1:DC:FD:6C:C1:E0:75:15:B5:D8:A5:54:7A:08:5D:0F:CC:43
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/VXDh3P1sweB1FbXYpVR6CF0PzEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.21.0-5.11.22.255
5.11.26.0/23
Signature Algorithm: sha256WithRSAEncryption
08:d7:a7:a0:1c:ee:92:d4:72:3a:e8:ab:4d:da:c7:39:72:60:
1e:48:d9:86:d0:c4:65:c0:1d:d0:0a:d4:a5:5c:6f:6d:a6:6d:
e8:9d:98:ec:eb:d2:ce:b9:87:1c:51:e6:a4:e1:78:87:94:57:
f4:89:8b:dd:5d:53:cd:81:f6:5a:bf:58:a5:2e:db:f1:cd:77:
63:de:58:a7:d0:de:14:d2:5c:47:a8:d9:c2:68:e2:be:7d:e4:
5b:e5:1e:60:e5:57:50:ae:09:36:40:59:73:5c:67:3d:f6:de:
d8:02:30:e3:ac:a0:d2:65:ab:a7:03:14:ad:a8:4c:f5:46:d3:
d5:2d:72:d9:a2:56:ea:f5:8b:15:54:0f:0e:bc:a9:2f:f6:67:
f0:2d:66:e8:dd:f7:45:29:3b:0f:5e:ae:68:13:08:68:74:ee:
56:66:14:14:e6:d3:4b:2c:d0:48:f1:26:74:fd:a2:6a:65:d1:
3b:64:ed:16:8e:4c:f0:73:9a:9a:89:86:70:55:1b:a8:4c:16:
82:8d:df:ff:63:a0:cd:d6:ed:5f:a9:ea:7d:e1:ca:d8:14:a0:
b6:ba:5b:23:08:79:ba:c0:02:d3:a2:89:8c:ee:cc:64:8a:7e:
23:87:d0:3e:e9:a0:e7:85:05:77:0d:f5:c9:02:69:16:f0:d1:
fa:a5:b1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:02 2024 by rpki-client on console-ams.rpki-client.org