Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/U6p6mVzUj4n2qkjop5tR4OrrEU4.roa
File: U6p6mVzUj4n2qkjop5tR4OrrEU4.roa (raw, json)
Hash identifier: e3ZEA1wKGxdrCzMH/xD7gjBYoL9k2dmlYom5ahxrNGg=
Subject key identifier: 53:AA:7A:99:5C:D4:8F:89:F6:AA:48:E8:A7:9B:51:E0:EA:EB:11:4E
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 21CD
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/U6p6mVzUj4n2qkjop5tR4OrrEU4.roa
Signing time: Wed 18 May 2022 16:39:45 +0000
ROA not before: Wed 18 May 2022 16:39:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 31.169.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8653 (0x21cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: May 18 16:39:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53aa7a995cd48f89f6aa48e8a79b51e0eaeb114e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5a:a8:66:a8:e8:38:3e:ad:8c:00:6f:f5:5a:
7c:68:6d:06:ef:38:04:2d:cf:2a:0d:64:3e:e7:07:
e4:27:82:20:e6:93:3c:ab:48:24:ec:21:18:32:1b:
a2:2b:83:65:31:ca:4e:08:50:78:b7:51:c8:f4:f4:
60:c6:ca:79:d1:32:75:7a:b1:77:7e:e0:92:4b:ca:
17:e6:f4:f2:57:7e:9c:71:34:02:f8:30:1b:62:01:
4f:1e:6e:be:18:fc:7e:9d:a1:11:34:cf:99:fb:b7:
07:1e:93:9f:c2:72:52:3b:b8:d6:e7:d0:6d:4d:4b:
41:22:e7:b0:c6:c9:27:e7:47:e6:1e:17:48:6e:bd:
0e:e3:ef:dc:ed:c5:fc:72:b8:11:89:e1:3b:42:e8:
4a:ee:8d:d6:85:af:e2:f5:32:8f:74:5f:13:dc:83:
e7:61:2a:93:3d:e8:f9:c1:e5:36:2a:aa:78:f2:9b:
a9:23:3e:87:41:a2:f9:a0:0b:35:b1:6a:a6:b9:97:
63:18:22:e2:c7:df:1c:fa:c9:02:e1:de:db:ae:70:
a6:07:73:61:cb:6c:d2:66:cb:98:8d:ff:56:51:3a:
5d:1c:ec:7d:9a:d2:5a:d0:4f:0d:4d:cb:c1:d8:82:
b3:ca:d7:37:3e:65:41:85:d5:f2:ce:76:ef:85:05:
bc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AA:7A:99:5C:D4:8F:89:F6:AA:48:E8:A7:9B:51:E0:EA:EB:11:4E
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/U6p6mVzUj4n2qkjop5tR4OrrEU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.68.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:e5:f5:34:70:5e:58:66:a8:c3:cd:99:c8:cb:84:b2:49:ba:
0d:b6:5a:e5:89:34:c1:51:ab:b1:c8:2c:60:7e:ca:8c:22:11:
b3:82:5c:7d:53:5e:85:07:d7:f5:52:f3:d0:6c:dc:1c:0b:2c:
0d:62:1e:4b:ea:87:5e:e8:c4:85:65:43:63:c0:0a:11:a2:f4:
43:19:9a:df:a1:ab:27:7b:47:63:45:33:27:05:c0:11:cb:f5:
e1:c9:3d:ec:85:be:a6:ee:51:ca:86:45:d8:cb:32:f1:f6:b9:
cf:d4:53:5e:e2:12:72:b3:81:69:e1:ee:d6:49:48:ed:1d:cf:
2d:cb:0a:df:35:76:34:0e:8a:d1:7f:7c:13:a2:5c:f0:65:8b:
23:17:c6:5f:a6:66:94:8f:e7:d5:b8:10:73:91:02:7d:32:d0:
6d:be:32:b6:01:9f:12:71:f3:37:45:ab:9b:59:1e:ac:51:29:
40:e1:d4:83:e8:e5:1d:b9:ba:b9:d3:a3:34:8c:48:de:bd:6d:
62:01:d8:24:da:c4:37:84:6d:f4:89:ee:61:e6:58:4b:63:44:
d5:17:54:b5:b7:b2:63:5e:1d:38:04:3c:19:50:99:2b:d8:e5:
9f:d2:c4:d6:03:dc:d9:6a:83:49:cd:01:ad:cb:a0:fd:e3:6e:
3c:a5:93:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:36 2024 by rpki-client on console-ams.rpki-client.org