Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/lBvpYbEhSiouhUOlxket78w8DSk.roa
File: lBvpYbEhSiouhUOlxket78w8DSk.roa (raw, json)
Hash identifier: VZOLh0PBqa9fA5kkweHXXqovZ/Q1ahf5GHqD3mpFZLI=
Subject key identifier: 94:1B:E9:61:B1:21:4A:2A:2E:85:43:A5:C6:47:AD:EF:CC:3C:0D:29
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 3796CF50
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/lBvpYbEhSiouhUOlxket78w8DSk.roa
Signing time: Sat 01 Jan 2022 09:06:04 +0000
ROA not before: Sat 01 Jan 2022 09:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36614
IP address blocks: 85.31.94.0/23 maxlen: 23
5.11.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932630352 (0x3796cf50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Jan 1 09:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=941be961b1214a2a2e8543a5c647adefcc3c0d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ba:ec:26:64:d8:db:dc:3f:72:f3:c3:26:20:
11:2b:33:cf:c6:40:92:aa:b0:a7:f2:03:9c:e1:62:
15:5c:66:9f:04:c7:0b:1f:05:0f:b3:1e:93:b7:3b:
4d:fd:af:35:8e:3a:e8:6f:b0:6f:82:b7:5b:3b:43:
2a:c1:1a:c2:8c:28:46:28:9b:1b:57:0a:5e:81:08:
f2:5a:39:e3:f4:c6:24:1a:3f:eb:ba:a9:82:d1:90:
8a:08:1d:99:ab:29:1a:8b:69:af:bc:8f:3a:42:b9:
66:89:71:cd:96:da:20:23:30:a4:0c:e6:cb:aa:f0:
eb:99:12:df:fa:44:62:5a:5f:94:d9:e2:9c:c4:00:
4f:ab:84:ea:4a:eb:8f:af:6b:37:0d:88:66:94:d1:
2c:d7:1e:d3:04:87:cb:ae:2d:6f:0b:67:b6:86:09:
94:53:cf:ee:3c:8b:59:6d:43:8b:70:6c:20:86:3e:
e9:51:b7:cd:3d:66:46:98:e8:1b:c5:ae:17:86:d2:
ad:31:30:8b:99:5c:3d:5b:a1:bc:8c:88:ab:b4:4e:
75:88:a0:00:c5:0d:6c:87:25:32:3e:76:8d:4a:df:
51:4c:91:04:82:49:7f:10:bc:3c:c6:5d:dd:90:99:
8c:5e:92:d9:5c:75:f2:bc:30:bf:86:bb:db:f8:0f:
88:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1B:E9:61:B1:21:4A:2A:2E:85:43:A5:C6:47:AD:EF:CC:3C:0D:29
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/lBvpYbEhSiouhUOlxket78w8DSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.28.0/24
85.31.94.0/23
Signature Algorithm: sha256WithRSAEncryption
32:aa:68:c2:2d:a3:32:aa:11:72:08:77:30:8a:0d:6e:51:33:
81:d5:92:62:32:9a:b0:b3:0d:69:24:dd:3a:07:a4:24:96:20:
0b:7e:21:70:f8:6a:e3:ba:16:13:73:42:5d:06:70:d0:89:e7:
26:dd:3f:3f:87:56:f4:a8:47:67:ff:49:72:5f:45:2b:b5:14:
59:3a:06:e1:67:d7:14:3d:c0:70:aa:87:68:9c:51:17:05:eb:
9b:84:f5:27:84:ca:ae:d9:df:bc:1f:3b:e0:02:ff:34:8f:eb:
71:b8:18:72:c0:1c:87:5e:79:70:67:5e:cf:26:03:f9:20:e9:
61:cb:ce:bd:b1:1d:df:8a:60:eb:ee:53:0e:11:f1:bb:7e:b2:
ca:f1:b5:b2:2f:88:4f:12:ff:f9:27:63:7c:f6:55:ec:41:ec:
42:fb:e8:69:63:70:77:b7:e5:7f:e1:08:14:e1:17:f3:1f:bd:
70:97:7e:ca:6a:85:a9:6a:58:4f:cd:16:51:b0:de:29:3d:ad:
b9:3e:9b:76:e8:6b:ed:5c:ce:3c:eb:10:0b:f4:17:d2:a8:ce:
5b:35:ab:e1:82:e0:d3:68:b2:f2:85:69:9a:9c:cd:d2:4a:3a:
64:2b:76:4b:49:cd:b1:35:97:88:fa:56:d0:50:71:00:c4:6a:
0f:03:02:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org