Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/42kM-OL34ghNRevQCtcF9bFvh3c.roa
File: 42kM-OL34ghNRevQCtcF9bFvh3c.roa (raw, json)
Hash identifier: ONUCEnTvIOifKok2tqtkln6Z8I9OsxrA6MELXycGXc0=
Subject key identifier: E3:69:0C:F8:E2:F7:E2:08:4D:45:EB:D0:0A:D7:05:F5:B1:6F:87:77
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 03EAD538
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/42kM-OL34ghNRevQCtcF9bFvh3c.roa
Signing time: Sat 01 Jan 2022 08:02:13 +0000
ROA not before: Sat 01 Jan 2022 08:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211933
IP address blocks: 31.10.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65721656 (0x3ead538)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: Jan 1 08:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3690cf8e2f7e2084d45ebd00ad705f5b16f8777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ad:db:33:39:05:66:d0:0d:43:a6:88:e1:f2:
e5:7b:d3:ae:4b:c5:df:77:b3:14:91:e7:ba:34:a8:
ec:6b:16:08:aa:19:fd:3c:d9:e6:11:6c:5f:a4:a6:
fb:02:45:aa:f2:54:0f:a2:78:fc:d0:94:14:00:f1:
c7:63:48:7f:4d:e7:be:ea:56:be:33:82:32:f8:0f:
61:16:42:e6:e2:6b:52:ec:8b:2a:9b:7a:6d:6e:ba:
30:18:e8:64:5e:d6:98:2a:3f:ed:b0:46:73:20:51:
3a:40:85:78:0f:11:8c:e5:3c:d9:54:b9:03:1f:0d:
c3:81:84:d7:0c:06:60:56:5c:66:ee:f8:c4:30:27:
f2:3e:f9:7b:28:a6:fa:fa:72:4d:0a:db:c0:f4:b7:
cb:c9:ba:a6:6c:72:c2:f5:e3:2c:24:84:79:91:31:
41:ca:6c:a4:7f:62:5e:1d:b2:1c:44:0d:fc:67:9f:
9f:9a:77:71:b4:d7:84:77:f1:12:ce:7a:1e:25:3f:
ae:87:c0:4b:55:77:ec:76:3c:25:41:b2:17:01:ad:
75:66:c5:3a:7f:cd:11:8a:09:8c:e9:f4:99:ba:39:
bb:64:ae:33:b9:d0:2e:d5:36:03:48:98:77:18:79:
e1:eb:5c:f2:cd:e2:5f:dc:95:59:a1:b7:2b:81:2a:
2b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:69:0C:F8:E2:F7:E2:08:4D:45:EB:D0:0A:D7:05:F5:B1:6F:87:77
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/42kM-OL34ghNRevQCtcF9bFvh3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.6.0/24
Signature Algorithm: sha256WithRSAEncryption
78:5f:46:7f:1a:1b:15:a6:0f:58:44:d5:ac:56:90:4c:6c:c0:
86:0c:7a:3c:ef:a1:b3:77:5a:6c:d5:d2:60:19:42:0c:e8:6b:
81:21:9d:de:0f:af:7f:c9:0f:e0:9d:80:8a:36:21:a2:55:17:
95:ca:dc:2a:40:1f:5a:74:a8:8c:a2:07:e0:4f:c4:4c:2b:24:
0d:86:15:99:3a:ad:4c:28:09:1b:34:b0:55:50:c6:0d:3c:a5:
6e:ae:ed:5d:1f:8c:a3:14:ff:93:66:c0:57:68:21:eb:10:e4:
1f:de:eb:cb:fd:fe:c6:70:dc:cc:b2:eb:c4:da:c0:0d:87:e8:
3d:42:ce:96:7a:16:31:7d:ca:a6:40:6f:dc:83:da:ad:34:34:
46:57:f3:82:04:20:e5:ae:19:c2:87:91:97:1b:a8:5c:a7:20:
78:35:79:5e:79:87:50:3a:ba:7e:be:4f:31:82:81:e3:35:9f:
80:40:6b:f1:98:69:26:ae:a5:ee:c5:b5:78:f8:44:e5:d2:3f:
9e:d1:7c:c4:84:ff:a5:14:82:71:8f:51:0c:88:29:d1:93:69:
4a:26:26:76:55:87:6e:e4:81:90:d6:81:bc:87:9b:49:d0:01:
c3:b8:81:fd:ca:b8:16:c3:19:0e:c4:66:f2:d2:8a:9a:03:8c:
b9:3c:b0:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:15 2024 by rpki-client on console-ams.rpki-client.org