Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bqo7BzDmMsTilTNWPQg-xF12Eio.roa
File: bqo7BzDmMsTilTNWPQg-xF12Eio.roa (raw, json)
Hash identifier: 3B6eAZH+F6LJzmt0FbJs1bhUa0PJBu3U9gl+KgJqutk=
Subject key identifier: 6E:AA:3B:07:30:E6:32:C4:E2:95:33:56:3D:08:3E:C4:5D:76:12:2A
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4879D994
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bqo7BzDmMsTilTNWPQg-xF12Eio.roa
Signing time: Sat 01 Jan 2022 03:00:38 +0000
ROA not before: Sat 01 Jan 2022 03:00:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202984
IP address blocks: 31.184.240.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1215945108 (0x4879d994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eaa3b0730e632c4e29533563d083ec45d76122a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:53:f2:aa:be:bf:43:b7:31:a1:b8:c9:d9:
d2:f0:e6:a0:c9:d0:34:a3:3b:9c:3a:c7:20:f0:77:
37:01:19:88:4f:1e:51:fe:40:f4:c8:e2:28:db:ed:
14:00:b2:1a:0b:f4:98:e6:6a:0e:96:76:e5:b1:0d:
85:98:b7:b8:c0:b5:7f:03:90:87:c2:10:65:97:96:
50:fc:ba:2c:bf:83:26:1d:14:eb:0f:aa:d6:ef:de:
1b:0e:e8:e6:81:72:2f:cb:54:6f:d6:55:4a:f1:b6:
2c:5c:c0:a6:74:ab:4b:be:a0:b4:be:c3:c6:95:5e:
81:ae:c8:04:17:71:bf:7d:da:a3:ba:63:28:ff:51:
72:fe:87:70:9e:91:d8:40:01:6e:d1:dc:12:62:2e:
ca:21:0d:b4:24:4b:17:f3:ab:96:3f:51:dc:cf:a0:
c6:a0:ca:67:78:d6:b1:33:d5:8a:28:a4:b4:2e:20:
52:3c:2e:15:9f:75:b3:43:1a:d0:84:2b:2e:d9:ac:
36:09:9f:3b:eb:4e:72:4e:3b:d1:b7:10:54:bf:8e:
d4:a1:b3:23:25:1f:4c:ea:05:34:bf:2f:e0:7b:fe:
bd:d4:c6:83:6d:c3:c8:2e:1b:3a:ab:86:d4:19:fd:
5f:11:82:b0:92:28:c4:e4:a5:c6:4a:13:6c:89:aa:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AA:3B:07:30:E6:32:C4:E2:95:33:56:3D:08:3E:C4:5D:76:12:2A
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/bqo7BzDmMsTilTNWPQg-xF12Eio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.240.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:ad:0f:3b:f1:b3:57:24:7f:ae:c3:8a:3f:e7:ac:63:b0:45:
e1:ec:6a:a5:e2:49:ad:b8:20:3d:d3:bd:ae:6c:2b:4d:71:cc:
29:fd:dc:aa:c1:02:f2:a9:e5:96:9f:67:da:19:7b:22:82:2d:
38:36:b6:50:43:3f:f2:ef:f2:01:20:89:b9:db:a5:c5:be:90:
6f:da:01:66:09:62:53:08:78:d2:0e:ec:ea:ce:cc:9b:b7:eb:
9a:d5:d6:e8:b9:b3:e6:e3:92:63:a3:d0:4f:6f:3b:6f:fc:11:
77:8e:d7:86:c2:39:ab:b3:80:11:5e:80:8c:82:15:e8:24:07:
c8:d4:9b:d4:68:2d:03:d0:32:34:7e:3e:e7:56:6b:11:8f:c3:
21:5a:93:35:3e:2f:38:2d:f8:ef:47:1d:e9:40:c5:9d:62:cd:
8e:60:53:79:bf:dd:ac:75:28:4e:23:bf:1a:2a:c0:a1:9b:8c:
78:c6:9a:3f:1d:25:6b:46:26:17:42:b8:0e:eb:42:38:13:4f:
2c:64:ec:f2:09:58:75:ac:05:a3:8c:e3:54:23:c3:27:ff:96:
e0:18:3d:f9:a4:8c:9a:40:37:4f:80:2f:a5:48:79:7b:7a:9d:
4d:a1:12:f5:50:c3:9b:62:a5:49:04:9d:0a:c2:6e:1d:7b:1e:
39:05:e1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org