Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/OX4g3XOFeESvOCZj8ArsUfMawRw.roa
File: OX4g3XOFeESvOCZj8ArsUfMawRw.roa (raw, json)
Hash identifier: k2wqD4s5RBW/xdvdhcKahRXPyMiTO03uS9WjuYPJeT0=
Subject key identifier: 39:7E:20:DD:73:85:78:44:AF:38:26:63:F0:0A:EC:51:F3:1A:C1:1C
Certificate issuer: /CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Certificate serial: 018308A609700E2BDF41284E569CBD5BE1AD
Authority key identifier: 9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/OX4g3XOFeESvOCZj8ArsUfMawRw.roa
Signing time: Sun 04 Sep 2022 13:17:22 +0000
ROA not before: Sun 04 Sep 2022 13:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209275
IP address blocks: 185.174.31.0/24 maxlen: 24
2a05:9bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:08:a6:09:70:0e:2b:df:41:28:4e:56:9c:bd:5b:e1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Validity
Not Before: Sep 4 13:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=397e20dd73857844af382663f00aec51f31ac11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cd:52:6d:91:05:e3:fc:ef:6c:dc:0e:e4:e9:
fc:64:c6:5d:9c:d3:22:a2:c1:22:0d:3a:17:84:f8:
59:22:73:93:3f:3a:6c:6e:d0:62:d3:f2:7b:af:0d:
bf:63:8d:11:2b:1a:60:7b:19:7e:9b:22:a1:42:9e:
e8:15:4b:10:dc:91:01:05:67:45:90:9e:52:4a:be:
e2:79:b3:66:3d:e9:9c:d9:b5:32:92:46:cb:58:3f:
89:bc:74:94:ad:8a:95:70:df:79:fa:a6:56:79:12:
b8:8b:71:14:f6:71:a6:90:23:14:34:2b:21:25:bd:
d1:ee:ed:bf:d4:b4:44:89:94:f9:4c:59:f0:89:1e:
91:bb:a2:d0:58:14:bc:a1:3c:be:30:43:a1:83:34:
18:99:09:f4:a6:b2:0a:8a:61:43:66:f5:d8:22:b0:
87:f1:57:51:80:05:13:3e:7d:84:17:f2:2d:6c:46:
a1:63:d2:a1:f9:50:e9:ee:9c:c8:c2:55:49:66:7b:
dd:91:80:17:0d:60:f5:fc:01:63:ee:03:49:c0:22:
ba:43:f1:89:95:dd:b0:2a:e7:23:c0:e7:06:7f:e1:
0d:0d:5d:52:95:1b:ae:68:b5:5f:d9:75:88:55:a0:
22:d2:19:2b:20:42:3e:21:3d:e8:3c:7a:32:f7:8e:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7E:20:DD:73:85:78:44:AF:38:26:63:F0:0A:EC:51:F3:1A:C1:1C
X509v3 Authority Key Identifier:
keyid:9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/OX4g3XOFeESvOCZj8ArsUfMawRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nVE44frPe2XbtXX6fUckDCeLNN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.31.0/24
IPv6:
2a05:9bc0::/29
Signature Algorithm: sha256WithRSAEncryption
68:cd:4e:da:16:f5:ac:bd:7c:7b:b6:a0:df:5f:d3:88:59:c0:
84:40:a3:fc:c5:a3:3c:e7:24:74:a7:38:69:62:6d:b6:25:28:
ad:a2:3c:13:2d:ce:e7:ff:fb:1b:32:6b:ae:cc:cb:76:89:dc:
26:f1:5b:42:e1:85:7c:93:17:a9:91:e9:32:31:cc:b4:93:bd:
81:a3:ef:96:d9:0f:04:1a:04:1c:d5:47:be:3e:b8:85:2a:32:
39:52:53:8a:23:0a:d1:94:7c:f0:e4:61:a5:94:29:bf:f9:a2:
10:e8:a4:35:5d:05:50:0c:f1:a1:24:6d:ab:b4:94:71:a2:6c:
69:1c:1d:34:05:cf:6b:2c:19:2f:39:c5:2a:de:ce:2c:b9:ad:
b0:ca:b7:ac:40:48:14:77:ad:ac:42:d3:e2:34:cb:3d:6f:dc:
fd:b0:f5:b1:26:0e:8e:55:56:69:8e:98:5d:6b:e3:e8:0a:2c:
99:45:98:35:76:7c:5f:2d:a0:07:c0:50:3b:ca:59:e1:eb:40:
62:ef:e7:dd:e9:fb:4d:63:e8:92:92:e1:1a:da:0f:b5:48:fc:
00:99:0b:74:e5:94:59:51:87:90:82:56:33:5d:d1:69:18:dd:
ca:83:37:c7:aa:bd:31:19:b2:f0:d2:14:82:73:8c:b8:60:cd:
7c:32:d4:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org