Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/vHdowLY_sawCp8z5Fg8RrbT3qDc.roa
File: vHdowLY_sawCp8z5Fg8RrbT3qDc.roa (raw, json)
Hash identifier: RX84baYVzl2UK18mngL1bUDlupoRFsfr4sR7mm0qnTo=
Subject key identifier: BC:77:68:C0:B6:3F:B1:AC:02:A7:CC:F9:16:0F:11:AD:B4:F7:A8:37
Certificate issuer: /CN=91c2c2912e10581587052a5ca770910b26174f14
Certificate serial: 179D5F2D
Authority key identifier: 91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/vHdowLY_sawCp8z5Fg8RrbT3qDc.roa
Signing time: Sat 01 Jan 2022 15:07:31 +0000
ROA not before: Sat 01 Jan 2022 15:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49505
IP address blocks: 31.41.40.139/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396189485 (0x179d5f2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c2c2912e10581587052a5ca770910b26174f14
Validity
Not Before: Jan 1 15:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc7768c0b63fb1ac02a7ccf9160f11adb4f7a837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:05:af:94:fa:d6:06:77:83:6a:eb:e2:bf:1f:
83:6a:f0:1f:22:f1:56:b5:eb:f6:c3:c9:ea:8f:d1:
1b:06:9f:80:cf:09:9c:3d:54:00:68:3c:78:91:44:
87:1f:90:17:bc:37:d5:54:09:d4:ee:f7:67:ed:a1:
58:0e:c6:dc:0c:83:06:71:69:3b:f8:8d:2a:55:2e:
94:9e:e6:5b:0a:9c:6f:b8:ec:e5:b7:bd:ed:f5:94:
e6:fa:85:af:10:01:d9:50:56:9e:05:14:6a:04:3f:
ca:08:06:e8:a3:1f:1d:5d:82:04:41:7c:e7:db:5f:
9e:97:9a:d1:18:0a:a4:41:4f:3e:f4:e2:bd:61:44:
02:9d:90:fe:b8:9d:9b:da:4f:84:96:02:0a:dd:77:
ee:d0:45:e8:a0:88:bb:65:ae:36:28:e2:34:16:53:
8e:21:4c:cb:7e:e9:3d:49:e2:07:86:e6:4d:fd:54:
bb:4a:08:bb:22:ed:a9:ce:95:37:d9:24:b9:8d:c6:
6b:df:a6:74:6b:58:de:40:b6:f9:05:98:3c:fb:b6:
51:0f:dd:49:6b:ec:60:1e:57:8e:d0:72:f9:87:6a:
05:fd:25:18:1b:cd:72:44:72:b7:30:24:17:c4:99:
a4:7f:45:14:4a:ae:80:89:94:8e:73:0c:a0:16:7c:
70:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:77:68:C0:B6:3F:B1:AC:02:A7:CC:F9:16:0F:11:AD:B4:F7:A8:37
X509v3 Authority Key Identifier:
keyid:91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/vHdowLY_sawCp8z5Fg8RrbT3qDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.40.139/32
Signature Algorithm: sha256WithRSAEncryption
83:9c:30:a3:5d:c2:47:b3:38:2a:1f:65:83:0b:39:21:36:1a:
b3:83:8d:41:1c:65:5f:bc:33:9d:db:a2:ea:21:6a:20:a9:a4:
3b:fe:66:20:d4:60:07:5d:92:df:79:14:4c:2d:89:94:a8:50:
17:a3:5b:8c:b3:66:c9:94:82:3c:5c:0a:df:4f:e4:28:b4:ef:
66:29:a3:9e:0b:4f:a1:d3:85:fd:77:90:9e:8a:e3:3f:4f:30:
cd:23:c5:91:67:2b:00:94:ac:75:f6:f2:cf:4f:ec:23:50:0c:
a9:21:99:bd:a2:cf:44:46:5f:3d:b0:fe:73:8a:e0:fa:e8:44:
09:48:bd:6f:d1:95:dc:09:90:49:2b:a4:09:ff:6d:20:e9:a1:
46:ca:2a:30:96:6b:b8:9a:72:47:bd:db:8c:ee:cc:db:5f:d3:
35:dd:cd:81:6e:7b:9f:b1:28:bf:88:20:51:06:08:c0:a6:a9:
42:bc:0d:03:8d:56:bd:ca:99:0d:6d:4b:26:ac:18:9a:a7:12:
90:cb:42:01:81:46:d2:df:93:43:87:7c:7e:5e:67:26:66:eb:
94:01:eb:52:f1:b2:c9:21:08:6f:f9:51:78:0e:5c:43:f5:7b:
6c:f0:10:dd:c2:27:58:aa:c0:b8:0c:ec:f4:7e:10:91:81:35:
0f:2a:44:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org