Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/iDX8pxZBzwSngoTLX74YK6R3MxE.roa
File: iDX8pxZBzwSngoTLX74YK6R3MxE.roa (raw, json)
Hash identifier: 21ZxxpYQHKRca1nPPBgk4HDGrRduYBmWIouzAfcYexk=
Subject key identifier: 88:35:FC:A7:16:41:CF:04:A7:82:84:CB:5F:BE:18:2B:A4:77:33:11
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 01820FC9F6FE6DA5862EED6DC12F2D1CDCCA
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/iDX8pxZBzwSngoTLX74YK6R3MxE.roa
Signing time: Mon 18 Jul 2022 05:31:10 +0000
ROA not before: Mon 18 Jul 2022 05:31:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213145
IP address blocks: 31.155.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0f:c9:f6:fe:6d:a5:86:2e:ed:6d:c1:2f:2d:1c:dc:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jul 18 05:31:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8835fca71641cf04a78284cb5fbe182ba4773311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a9:48:6e:2f:92:c9:09:49:db:85:d8:05:1b:
ff:32:3e:6e:dc:04:b9:0b:d2:0a:29:0e:bb:34:d7:
5b:b9:95:ff:1c:e2:25:fc:4e:d2:63:55:90:a3:56:
0b:46:cc:7d:a8:19:86:49:ff:d7:df:ab:bb:48:65:
c7:2a:45:1d:bf:f2:79:58:0f:f7:fe:45:25:d9:1d:
5f:27:ac:1d:54:3b:b8:13:89:fc:05:2b:1f:98:dc:
37:23:19:8d:45:88:08:db:2f:be:f3:a6:7f:d5:cb:
e7:ac:cd:1c:86:9e:06:9d:ab:b6:74:d2:86:e7:6f:
29:08:c1:b3:ec:b2:69:e8:eb:ab:88:7b:6a:22:62:
fd:21:92:48:5a:78:25:e0:26:98:cf:89:83:f7:ef:
65:de:46:ab:c3:bd:7f:8d:bb:8c:eb:64:05:fe:c1:
79:19:0d:ef:f3:38:27:09:65:5e:c6:96:28:f9:74:
9c:32:ce:41:6e:81:7f:b7:38:a7:2c:be:c3:7a:9a:
69:b2:59:fb:d4:d7:2d:e0:3d:3e:dd:23:ec:0d:3b:
66:53:88:6a:3d:02:c6:7c:a6:c0:a5:a9:39:53:94:
6d:43:34:a9:4e:43:a3:63:e5:92:27:50:1d:21:21:
84:a1:43:94:a1:60:03:bf:16:50:52:25:32:ae:76:
0a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:35:FC:A7:16:41:CF:04:A7:82:84:CB:5F:BE:18:2B:A4:77:33:11
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/iDX8pxZBzwSngoTLX74YK6R3MxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.155.7.0/24
Signature Algorithm: sha256WithRSAEncryption
04:97:a4:ed:f4:4b:76:8b:75:4f:13:75:36:f9:29:36:4d:6a:
ff:c7:1a:92:df:44:22:21:56:cf:0b:0d:a0:c1:71:fb:03:b9:
cf:e4:64:0d:04:bb:68:2c:ab:f8:3e:85:13:4c:b0:90:63:45:
e0:9f:61:3d:a3:1c:bb:9b:f0:9b:e5:29:84:b7:4a:92:06:9a:
7a:1e:ee:37:d7:cf:f8:df:99:a6:61:30:80:4b:37:af:96:0f:
05:50:e8:98:fc:37:95:d2:14:e0:8f:34:bd:d8:5a:29:c6:3a:
1c:3c:61:f3:b1:d5:a0:85:a4:9e:9e:1b:38:ee:0a:69:f3:ed:
10:b5:9a:3b:b3:0f:15:0b:47:2b:a7:4e:7b:fa:37:bc:8c:86:
04:0b:8e:35:50:93:76:25:91:f6:d6:f5:db:34:5a:fc:49:42:
59:24:21:52:0e:25:59:2b:9a:62:0d:2f:5d:f9:58:60:0e:30:
24:f9:87:1d:75:d5:01:9f:97:bf:35:9c:5b:b9:da:69:c6:9a:
ba:0f:ae:df:82:1d:6c:11:1a:ad:54:cd:1f:af:07:0e:c0:7f:
40:8a:1a:38:35:9a:33:24:ef:06:34:50:11:e7:96:bd:6d:a3:
5b:a0:21:30:fb:d6:57:63:64:96:d4:48:44:e4:ab:e4:ec:c6:
97:0a:a8:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org