Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/2m6uzZ_-qBuzt2bdMxS8BSjITME.roa
File: 2m6uzZ_-qBuzt2bdMxS8BSjITME.roa (raw, json)
Hash identifier: o44Kmh2nuTffI9S1z95eBecsRhFFccsjM4IQ9NmU4VI=
Subject key identifier: DA:6E:AE:CD:9F:FE:A8:1B:B3:B7:66:DD:33:14:BC:05:28:C8:4C:C1
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 1DE358
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/2m6uzZ_-qBuzt2bdMxS8BSjITME.roa
Signing time: Wed 25 May 2022 15:06:13 +0000
ROA not before: Wed 25 May 2022 15:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 31.169.68.0/26 maxlen: 26
31.169.68.0/24 maxlen: 24
31.169.68.224/28 maxlen: 28
31.169.68.160/28 maxlen: 28
31.169.68.192/28 maxlen: 28
31.169.68.128/28 maxlen: 28
31.169.68.96/28 maxlen: 28
31.169.68.64/28 maxlen: 28
31.169.68.240/28 maxlen: 28
31.169.68.208/28 maxlen: 28
31.169.68.176/28 maxlen: 28
31.169.68.144/28 maxlen: 28
31.169.68.112/28 maxlen: 28
31.169.68.80/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1958744 (0x1de358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: May 25 15:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da6eaecd9ffea81bb3b766dd3314bc0528c84cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c1:e9:e8:fb:95:cc:d6:cd:61:71:99:34:f7:
34:58:76:ac:3c:fa:95:20:4c:d8:88:f6:74:e9:4c:
45:b3:80:cd:c0:36:22:a8:06:1d:9b:0d:46:4d:16:
ee:de:3d:5e:7d:96:0d:9b:e8:68:f9:9a:8e:1a:00:
67:00:2c:eb:a4:54:61:00:9c:ef:04:6d:52:9f:bf:
26:86:40:6f:4a:0c:47:a3:5c:64:59:db:17:fc:98:
14:21:57:a4:8b:05:c9:d6:9a:23:29:7d:8a:86:81:
2b:cd:17:54:f4:cf:eb:b4:bf:41:59:3e:e3:ed:be:
78:a5:52:eb:86:52:29:cd:b6:a8:09:c0:24:72:a0:
fe:c9:26:cb:48:99:42:92:15:6f:ae:8c:85:e5:4a:
b6:d7:ea:3b:e8:8f:99:10:42:c9:91:ac:bf:b1:cf:
d1:9b:e3:a3:8e:34:80:e9:10:77:9a:0f:dc:f3:aa:
48:f4:3d:5f:15:b0:51:cc:a4:ce:65:15:7e:19:4d:
52:25:4c:6f:c8:b9:be:48:ac:2c:0d:84:77:e8:3d:
01:f4:47:ef:eb:f2:3c:2b:5e:b4:76:03:90:4b:86:
43:b8:33:bd:e8:43:f8:e9:08:a8:5e:aa:a2:29:3b:
51:a9:27:66:c9:6e:58:c4:8f:62:90:32:6d:22:a8:
b9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6E:AE:CD:9F:FE:A8:1B:B3:B7:66:DD:33:14:BC:05:28:C8:4C:C1
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/2m6uzZ_-qBuzt2bdMxS8BSjITME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.68.0/24
Signature Algorithm: sha256WithRSAEncryption
01:50:ee:22:c8:b5:80:3e:6a:14:5b:09:ad:56:e5:df:77:21:
b7:35:c0:6a:ea:ce:81:c1:d4:0f:5b:9a:a6:8c:35:0d:c2:e4:
d4:51:fe:7c:4e:f6:14:33:fb:34:7e:c9:9c:66:57:85:8a:ee:
c1:eb:45:a3:2a:89:e7:eb:12:5c:c2:69:46:e5:d1:0f:12:18:
a5:c3:e4:f1:65:f3:31:18:8d:5a:de:d5:54:17:2d:7f:f2:37:
6a:5e:f9:ba:f7:bc:ed:dd:9f:4f:76:85:80:bd:6e:3f:cd:4e:
8c:33:3f:06:95:7b:35:35:dd:00:66:f9:fb:56:b0:87:26:16:
83:ac:87:87:25:cd:72:22:cd:48:6a:e1:e4:9f:a5:b7:6a:b7:
d4:e9:53:2f:5b:d4:e6:15:4b:e5:e7:03:bb:fd:ea:03:b3:d3:
f4:1c:ff:1d:e9:9e:87:7f:25:ff:0b:4d:56:af:83:74:6a:3f:
4a:33:28:27:d1:40:54:42:dc:72:73:eb:97:ca:94:84:b7:a0:
1f:18:c9:e3:c2:34:ef:a2:2a:18:7a:2d:9b:98:fa:9d:da:c5:
0f:42:93:8e:e6:29:5d:d7:4b:0b:f9:51:9d:75:98:9f:98:f9:
a8:0b:cf:99:2a:21:5a:09:71:5f:e3:66:86:b2:fc:74:53:f6:
0a:ff:e9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:36 2024 by rpki-client on console-ams.rpki-client.org