Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/K4LLeFjdFGI6wjD7HOq1uEFivkw.roa
File: K4LLeFjdFGI6wjD7HOq1uEFivkw.roa (raw, json)
Hash identifier: lW6tZY8Ir+IDmf/ypX4naR/LStkPFCMzlxcXmu0Of2U=
Subject key identifier: 2B:82:CB:78:58:DD:14:62:3A:C2:30:FB:1C:EA:B5:B8:41:62:BE:4C
Certificate issuer: /CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Certificate serial: 3630A88D
Authority key identifier: 21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/K4LLeFjdFGI6wjD7HOq1uEFivkw.roa
Signing time: Sat 01 Jan 2022 06:00:20 +0000
ROA not before: Sat 01 Jan 2022 06:00:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60251
IP address blocks: 5.23.50.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 909158541 (0x3630a88d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Validity
Not Before: Jan 1 06:00:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b82cb7858dd14623ac230fb1ceab5b84162be4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:24:d0:75:b8:ad:46:d3:47:20:2e:c0:8a:
0a:80:e3:45:ae:73:77:76:ee:4b:f0:fb:3a:c8:46:
0e:76:15:af:7c:38:38:6a:c7:a2:5b:13:47:75:de:
96:f0:b9:ef:23:e7:8e:d4:27:d0:9f:9c:60:cb:8d:
44:12:c5:d9:6d:2c:22:f0:cb:e3:23:ea:ed:80:52:
4e:b7:4c:b5:25:3e:e5:b1:37:01:0e:41:07:bb:85:
ec:b1:45:92:53:8d:d8:56:b9:fe:fb:ec:c9:b2:25:
6d:84:bf:03:1f:7b:c8:1b:f5:57:50:a0:20:81:10:
93:26:f0:96:2f:b6:58:6e:53:9d:48:0c:fa:36:9a:
12:54:21:11:6c:ea:72:26:52:b4:e6:4d:39:75:6f:
28:13:ef:cb:fc:17:f3:99:ef:05:0f:5d:db:93:4b:
b6:79:3d:55:8a:31:c5:d9:02:03:d8:08:60:01:84:
63:06:25:47:d7:83:b0:0c:5c:57:52:85:de:9d:fa:
b8:39:f1:f7:d5:83:bc:61:19:15:dd:57:0c:76:c7:
ae:ee:4e:24:d7:9c:dd:09:4d:f2:e9:69:53:67:5b:
96:65:65:fa:46:7e:a7:bb:a3:27:e7:31:f2:82:c5:
d6:5f:50:2f:8d:01:14:c6:ce:00:81:47:d1:59:ca:
7f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:82:CB:78:58:DD:14:62:3A:C2:30:FB:1C:EA:B5:B8:41:62:BE:4C
X509v3 Authority Key Identifier:
keyid:21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/K4LLeFjdFGI6wjD7HOq1uEFivkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/IWCyscgp2Ik2sa2u7Jf90bQNQeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.50.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:8b:ae:48:25:25:ec:11:03:10:35:1d:5e:54:ab:70:3e:02:
94:8a:47:4b:6d:67:da:45:30:e9:a6:1b:9f:b7:dd:20:1b:a1:
2e:f5:67:a4:56:ea:69:bf:26:42:21:42:88:d4:eb:87:8d:0d:
21:6d:c3:a5:d1:1a:fa:86:99:b9:a9:51:b3:6b:78:a5:4e:05:
3b:66:31:01:8c:a0:13:37:f8:72:fa:0f:96:2c:16:ae:7e:5e:
1c:44:5c:8d:e2:d6:01:91:97:89:44:be:67:94:c9:b7:88:f5:
4b:41:a5:69:fa:f2:97:f7:59:bf:22:66:ee:17:cf:c9:59:b1:
97:8b:36:3a:b3:8e:b3:43:ff:2d:e0:7a:a8:37:80:03:74:f6:
43:03:95:90:2e:7c:2a:15:28:8e:4e:25:ef:e1:08:b7:3e:1a:
0a:c8:d6:f1:a3:de:70:64:4c:a6:0e:4b:6f:0a:9c:1e:5e:c5:
51:47:f9:26:6f:75:c0:cb:61:fa:cd:ea:2c:b3:2a:ca:04:89:
e6:f3:aa:dd:da:39:28:34:b3:7a:87:a8:da:bb:f0:86:f3:1f:
ec:50:3f:ef:e8:32:ff:bb:32:54:b1:0e:fa:46:9c:f1:0f:2b:
31:e8:52:9f:fb:65:37:3e:2e:d1:e3:3f:0e:bf:d1:ea:cb:15:
34:29:cb:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:49 2023 by rpki-client on console-fra.rpki-client.org