Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Olihy7LsZeVGTyvfUPNGlpxwGbU.roa
File: Olihy7LsZeVGTyvfUPNGlpxwGbU.roa (raw, json)
Hash identifier: eXA4Vndk6kwpyV0BcNETlcn10McLrH/uoW6heLqMaPg=
Subject key identifier: 3A:58:A1:CB:B2:EC:65:E5:46:4F:2B:DF:50:F3:46:96:9C:70:19:B5
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 01851B25B84C9B89BC5BDB19614FA548A8CA
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Olihy7LsZeVGTyvfUPNGlpxwGbU.roa
Signing time: Fri 16 Dec 2022 13:35:34 +0000
ROA not before: Fri 16 Dec 2022 13:35:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56766
IP address blocks: 31.133.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1b:25:b8:4c:9b:89:bc:5b:db:19:61:4f:a5:48:a8:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Dec 16 13:35:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a58a1cbb2ec65e5464f2bdf50f346969c7019b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7c:53:b4:29:98:62:39:07:64:35:07:42:5e:
4b:0e:d4:6e:7f:e7:ed:fa:96:24:66:68:16:fa:2d:
1b:94:92:86:be:36:63:f7:8f:8a:76:ad:3f:28:78:
5d:ac:33:47:38:d3:e6:4f:19:00:3e:4d:71:12:ee:
cf:e0:d6:e1:f4:cd:9f:1b:3f:7d:62:af:b3:0c:36:
b4:fc:4a:bf:39:9b:d5:05:ce:66:27:46:17:e2:42:
46:78:38:6e:88:7c:57:af:f4:2c:56:94:8d:8b:18:
0f:f1:a5:9f:fd:7b:f3:06:65:f8:92:17:44:8f:b4:
34:00:a8:55:c7:00:0d:27:e6:5b:36:5f:7f:8d:a5:
4d:4e:dc:7d:2c:d1:d3:00:74:12:bb:7a:28:5c:79:
9e:48:9b:23:03:57:59:ac:5c:35:bc:a7:d4:70:98:
0d:5d:e4:74:08:3b:64:ca:4f:fc:cc:a3:b3:d1:fb:
37:d5:c9:93:37:43:bb:8b:8c:79:aa:20:04:c4:f6:
e2:b4:b4:32:73:b5:9c:2f:43:d4:eb:e1:6c:fd:f7:
b4:ad:ee:59:e3:f8:50:48:fd:0a:fd:8d:4a:72:53:
b9:0d:f5:7d:9e:88:48:d8:04:49:be:44:6b:76:7c:
d1:db:9f:6a:02:66:21:44:5f:4d:5b:57:6d:75:5d:
18:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:58:A1:CB:B2:EC:65:E5:46:4F:2B:DF:50:F3:46:96:9C:70:19:B5
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Olihy7LsZeVGTyvfUPNGlpxwGbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.43.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:0d:ef:5b:b7:03:7c:f1:0a:de:54:f4:b1:ca:ff:0d:95:af:
a8:a8:9b:fe:af:39:29:26:c6:d5:27:ec:18:b6:82:4a:0a:e3:
e3:b2:17:31:25:9a:ca:98:b4:b5:8c:a3:e3:f4:18:30:92:a8:
68:ad:91:66:a0:93:a3:80:20:5f:7f:8a:a5:a8:60:f0:6a:6a:
ea:f3:ba:38:53:a1:fa:a5:97:21:e1:6b:94:1e:9b:a9:60:b5:
8a:64:6f:5e:eb:62:42:0e:5e:1a:89:fa:cb:2a:9a:9d:5f:32:
67:b4:f0:79:50:b4:90:58:7d:ee:1a:c9:fb:a4:40:c0:fd:a2:
c0:a8:b1:8c:97:5e:bc:b0:7e:63:3d:f2:f3:6f:a0:8f:dc:cd:
a5:08:bd:cb:0d:0b:f8:0f:c2:69:b8:06:d0:4a:e4:06:35:1b:
ee:cf:2b:c4:af:8d:02:07:c4:ec:42:99:27:57:7d:00:dc:ac:
0d:21:4b:f9:5e:50:41:b6:cf:dc:d1:84:7d:34:d6:50:a3:df:
a1:46:92:dc:cb:4f:ef:3f:b5:bd:2c:83:ff:85:e9:85:24:31:
1d:9a:08:66:50:e8:de:e6:b6:1d:a9:d4:c8:30:b4:04:c1:60:
00:a1:d9:80:d8:30:90:42:3e:75:47:71:77:42:3a:5c:be:61:
7c:5f:2f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:24 2023 by rpki-client on console.sobornost.net