Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/Ba4x-JKw-_BatSw0_CHlI5eG1WA.roa
File: Ba4x-JKw-_BatSw0_CHlI5eG1WA.roa (raw, json)
Hash identifier: 6GopvGDB/0k7b55RBmxH9qo3TijeHmNZ9GybfsANp/E=
Subject key identifier: 05:AE:31:F8:92:B0:FB:F0:5A:B5:2C:34:FC:21:E5:23:97:86:D5:60
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 01846231D25B2F223C1AB27347459AB0B7DE
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/Ba4x-JKw-_BatSw0_CHlI5eG1WA.roa
Signing time: Thu 10 Nov 2022 15:39:03 +0000
ROA not before: Thu 10 Nov 2022 15:39:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11237
IP address blocks: 81.31.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:62:31:d2:5b:2f:22:3c:1a:b2:73:47:45:9a:b0:b7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Nov 10 15:39:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05ae31f892b0fbf05ab52c34fc21e5239786d560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:89:3b:2e:da:7a:d8:06:df:db:d1:e6:fe:ce:
f4:62:1c:27:cd:6d:9e:66:c2:25:b1:37:63:1f:eb:
d5:31:54:f1:b8:73:e2:48:4b:bb:50:47:ed:22:91:
30:0c:df:1c:d9:2d:26:f3:19:46:0f:73:82:bd:e4:
69:ee:69:1e:0f:7b:cd:61:95:b2:a4:3a:76:28:45:
39:20:ab:e2:f7:64:c9:13:ed:4c:0e:04:11:e4:c1:
23:d3:3a:65:66:26:e5:0b:8e:ba:1f:b7:19:a3:6c:
53:b0:15:22:5e:58:93:69:76:68:39:98:b5:e0:22:
7a:05:3e:b6:23:15:5f:47:66:c4:e2:74:d8:5e:e5:
f8:d2:c3:8a:56:de:d6:99:15:af:51:11:b4:eb:89:
d9:b9:8d:76:ec:be:b5:8b:eb:81:82:26:a2:13:6c:
a8:3c:6e:ec:52:f5:c7:55:c4:57:c9:91:8e:b8:cd:
2b:10:e5:b3:23:ff:7a:d1:02:95:5a:4a:4f:b8:d7:
54:f3:e9:36:c4:3f:14:04:ff:98:5a:bc:a4:ad:41:
f1:38:b5:ed:b6:57:2c:e6:d2:78:fd:dd:41:8c:6c:
b8:23:fe:e2:d1:6a:5d:5d:86:ba:d5:9c:22:1c:6c:
26:59:24:48:e7:ed:57:4b:76:71:32:b2:a1:0d:2b:
76:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AE:31:F8:92:B0:FB:F0:5A:B5:2C:34:FC:21:E5:23:97:86:D5:60
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/Ba4x-JKw-_BatSw0_CHlI5eG1WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.232.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:a1:74:f1:7f:0e:29:00:1b:f2:d4:19:9c:5c:69:b1:53:a0:
8c:02:44:e5:9c:0f:3d:0f:77:8f:6c:f2:d5:45:c3:8a:36:15:
f8:95:6d:78:da:ef:72:10:92:7b:11:56:d6:fc:90:dd:aa:c1:
e9:dc:46:7f:dd:d9:35:cb:ff:b6:79:37:98:a9:f8:d2:aa:24:
d7:4d:42:cb:d5:da:96:07:82:82:51:2b:9d:d1:30:c2:72:d0:
f3:10:44:dc:33:cf:c3:6c:e6:3d:a0:8d:c6:c2:00:cb:8e:92:
51:b1:c8:2a:97:6e:cf:20:74:37:12:27:71:38:76:69:6d:35:
4b:bb:75:ab:86:03:8c:1f:88:8e:97:8d:5f:8b:53:ad:8f:56:
e9:ca:6c:40:72:01:5d:00:ca:91:a6:e1:58:2c:54:59:81:49:
7e:6d:40:93:d8:09:15:ff:12:6a:0b:08:97:35:7e:b5:d0:1f:
c9:08:e6:5e:56:8c:8e:65:01:48:31:8b:85:8b:0a:db:53:3d:
fb:85:8c:0e:d3:17:3d:f6:b4:ab:17:7c:57:1b:57:71:2d:64:
31:84:ab:bd:41:f6:3a:64:0e:fa:18:9b:19:8b:12:76:30:cf:
2e:53:6d:e6:46:70:7d:c4:41:0c:27:26:e6:73:ba:c6:24:80:
0b:4c:b3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:09 2023 by rpki-client on console-fra.rpki-client.org