Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/p9yD6Ig4_DfgatLqUgi0gYIs7sU.roa
File: p9yD6Ig4_DfgatLqUgi0gYIs7sU.roa (raw, json)
Hash identifier: x9S/xD2wxj3r1RfPYlYyveh28wmkD+WW7B9rRfqA6dE=
Subject key identifier: A7:DC:83:E8:88:38:FC:37:E0:6A:D2:EA:52:08:B4:81:82:2C:EE:C5
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 330A7061
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/p9yD6Ig4_DfgatLqUgi0gYIs7sU.roa
Signing time: Sat 01 Jan 2022 09:58:41 +0000
ROA not before: Sat 01 Jan 2022 09:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197743
IP address blocks: 31.3.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856322145 (0x330a7061)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7dc83e88838fc37e06ad2ea5208b481822ceec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7c:e8:d9:7d:a2:e1:78:d0:1a:3e:46:e2:d5:
c6:27:84:63:81:e6:cc:b0:e9:a8:dc:cd:1a:cb:59:
7b:2f:e4:d5:2a:b0:f6:28:80:c9:ae:1c:68:ac:5f:
24:e6:20:36:a2:f3:52:22:47:29:de:a9:49:41:7b:
20:72:0c:4f:bc:43:41:da:24:1e:48:28:b4:7b:b0:
dd:66:7b:22:87:0f:1f:36:cb:6c:43:69:03:f6:f6:
b7:af:fe:98:a3:48:0b:70:0e:43:93:7e:88:38:65:
a1:11:c5:47:6a:7f:fb:12:6d:d3:8c:5c:4d:6e:cd:
c2:ca:2f:78:7e:cd:52:11:b9:a7:1f:a3:15:ff:91:
a3:23:f9:aa:27:48:2a:11:8a:f0:1e:20:8b:fb:6e:
a6:71:2c:dd:46:c9:5a:7e:0b:01:b1:33:b0:ef:ec:
66:37:c4:95:83:65:14:8f:c4:1a:c4:95:c7:7e:2f:
1d:a5:94:e4:ce:b2:f9:26:f1:c2:40:ad:d9:3c:3e:
1b:7b:51:d2:59:4a:21:44:82:dd:88:73:6e:c1:34:
1c:e5:e6:cb:07:1d:d2:e0:de:77:12:dc:f4:87:7c:
b7:93:04:23:9c:5c:e5:de:61:f2:56:d1:ab:14:2e:
f5:d1:bc:74:8b:60:9a:ab:f4:83:de:fe:36:8d:bd:
ed:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DC:83:E8:88:38:FC:37:E0:6A:D2:EA:52:08:B4:81:82:2C:EE:C5
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/p9yD6Ig4_DfgatLqUgi0gYIs7sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.192.0/20
Signature Algorithm: sha256WithRSAEncryption
28:88:06:74:c3:ba:f1:43:7c:2e:c9:2a:68:c4:53:69:03:41:
2d:4a:55:8d:48:ba:39:aa:e5:cf:8a:b0:3d:28:2a:5c:87:31:
ad:bd:f3:68:35:87:d7:5e:c2:4b:e1:68:b7:56:7e:7c:09:ad:
8b:08:a0:be:5c:f0:41:e1:66:25:33:0e:fa:de:e0:68:54:0d:
1a:aa:4b:88:f1:8e:8b:d4:14:52:05:d9:ec:4d:32:36:0e:b0:
09:3a:2b:e2:0d:38:ab:fe:1e:60:c5:67:65:d3:92:ac:41:f0:
6f:f5:c4:ef:e0:9b:ae:b2:f9:26:7b:af:fa:72:d0:c1:33:1d:
a1:a1:12:c5:5e:23:8e:e5:2b:36:af:49:ee:d0:27:93:e9:3d:
41:3e:35:f6:4f:c0:85:e2:f2:4b:0e:ee:fc:c4:a4:92:12:b9:
f1:a9:d0:47:5f:d6:42:c1:30:22:09:14:29:7a:34:ca:cd:a4:
27:54:5b:b7:d5:8c:cf:86:72:38:37:0f:ae:a2:9a:9a:84:8f:
11:52:01:c3:f8:6a:7a:b2:db:37:7b:25:a5:6c:e9:92:cd:37:
b0:2d:63:ea:28:cd:2a:4b:d9:bb:e5:c6:81:86:43:38:f3:84:
15:a9:3c:5b:07:0d:59:ae:97:5b:a6:11:b5:27:c0:f9:bb:a2:
31:88:35:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org