Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/IJyrfDMkNaH7UE4QALx5ehK_suY.roa
File: IJyrfDMkNaH7UE4QALx5ehK_suY.roa (raw, json)
Hash identifier: EYHJS9ahESWwAtVY/M+7vz+Gs6zsPyoF1Xli4zdTWLQ=
Subject key identifier: 20:9C:AB:7C:33:24:35:A1:FB:50:4E:10:00:BC:79:7A:12:BF:B2:E6
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01CC6F14
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/IJyrfDMkNaH7UE4QALx5ehK_suY.roa
Signing time: Wed 02 Mar 2022 22:53:16 +0000
ROA not before: Wed 02 Mar 2022 22:53:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 31.40.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30174996 (0x1cc6f14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Mar 2 22:53:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=209cab7c332435a1fb504e1000bc797a12bfb2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d2:25:67:2d:1c:3a:bb:5e:19:2c:19:41:c3:
89:77:9e:fc:83:e3:d0:66:84:de:4e:1f:40:80:0e:
34:df:be:79:9b:75:cb:7b:8e:40:73:4e:3a:ad:4f:
eb:11:c6:69:2f:aa:6d:8e:21:e5:41:3a:ff:1a:7a:
72:3a:ca:40:69:8a:e2:35:d7:ef:1f:23:c1:18:9e:
bb:16:52:0f:c6:a4:db:91:03:f8:33:a7:7a:6e:d0:
15:2c:9c:21:47:a1:15:5c:31:80:b7:45:8b:f2:ea:
9f:c0:c4:34:8e:36:6f:48:be:07:a8:da:75:c5:dd:
f7:27:aa:2c:57:b7:20:89:b5:10:1a:53:27:9e:a5:
f4:09:82:d9:61:d5:3f:e0:3b:cd:1c:ca:13:66:5b:
06:a0:29:fd:3d:81:f9:b8:d3:34:d2:ef:08:7c:1f:
8c:1b:3e:5e:ee:4a:61:ee:d7:e0:fe:27:5e:63:bf:
09:d9:81:ad:c1:7b:fa:db:d1:2a:6a:aa:47:1d:ca:
01:ad:b6:cf:4e:59:e3:52:8e:8a:90:fe:da:c0:e9:
11:7c:3b:e4:17:d1:e0:14:3e:ef:21:94:ee:00:75:
45:2b:2d:c5:76:ba:68:f2:ce:aa:85:c4:28:b2:7e:
82:1c:d9:da:0f:d6:41:4d:37:f0:cd:8a:9a:66:f8:
36:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9C:AB:7C:33:24:35:A1:FB:50:4E:10:00:BC:79:7A:12:BF:B2:E6
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/IJyrfDMkNaH7UE4QALx5ehK_suY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.4.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f0:4b:8a:71:8a:59:25:5b:6d:83:a6:ad:f5:5a:29:e1:00:
ee:1b:11:1b:c6:ec:74:93:46:40:0e:10:59:dd:49:e4:6e:70:
df:a0:5d:b0:2a:dc:b0:37:a5:c5:a8:b8:d1:57:fb:6c:e8:43:
4a:4e:9a:97:8d:cf:d8:1f:a0:8e:b9:24:27:7f:2d:68:db:fe:
e7:f1:05:73:b7:29:83:df:6d:79:2b:0b:39:89:2a:ac:e8:e8:
f7:aa:f4:7b:3a:63:6c:f6:1b:e5:e0:ff:38:2a:2c:1a:65:0c:
50:65:28:9c:5d:10:ce:2c:f4:28:24:42:33:c9:dc:6b:ba:2c:
a7:08:ca:73:1c:33:2e:a3:d6:d4:cf:16:fc:e6:96:17:c0:aa:
cb:29:00:fb:b1:c3:02:f7:5a:27:49:b2:c5:09:66:f9:6e:4c:
a0:6a:05:cd:0e:24:66:3e:0e:35:3a:9f:9b:d7:74:8e:08:2a:
a1:4e:89:5c:b6:9e:7e:85:78:d0:ec:8a:2f:c6:03:60:d2:2a:
5a:8c:bb:da:57:12:6a:a2:47:1a:1c:1f:c6:fc:12:db:e6:08:
02:c3:36:5f:32:34:bb:2c:ad:16:cf:04:a2:09:3c:9f:9b:c7:
75:87:8b:e7:a8:79:24:45:b6:7d:c6:ce:99:79:f9:3c:82:72:
09:98:db:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org