Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lf7t8TQmHmOJglNpyfta70T6WDs.roa
File: lf7t8TQmHmOJglNpyfta70T6WDs.roa (raw, json)
Hash identifier: uESe8EkFtKPETtCnHcNO8RkLd5czCqaFpHQvscNj6rI=
Subject key identifier: 95:FE:ED:F1:34:26:1E:63:89:82:53:69:C9:FB:5A:EF:44:FA:58:3B
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4863C476
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lf7t8TQmHmOJglNpyfta70T6WDs.roa
Signing time: Sat 01 Jan 2022 03:00:26 +0000
ROA not before: Sat 01 Jan 2022 03:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43696
IP address blocks: 31.184.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214497910 (0x4863c476)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95feedf134261e6389825369c9fb5aef44fa583b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8a:73:8a:55:9c:7e:77:27:a6:1b:97:41:fa:
72:1e:2d:b4:69:1e:8e:53:cb:b2:b3:63:05:34:07:
8b:d9:3d:55:f1:2b:4d:1a:8f:ce:6b:b1:f8:b3:69:
88:07:f5:a3:30:c5:e3:c2:0f:ce:6f:37:ae:43:d4:
06:c3:29:79:ea:e0:a0:9d:6d:21:f8:07:de:7e:1d:
39:17:81:76:07:00:f1:be:2a:5d:3e:37:ee:27:cd:
42:06:02:03:c9:41:a1:40:d2:b6:84:6d:b4:32:dc:
06:43:82:5c:ab:49:3b:16:9b:48:24:a7:09:e4:8c:
d1:eb:a2:03:61:ec:ce:5d:64:03:d0:b7:3f:db:d8:
88:fe:c4:ec:fc:c4:f1:49:2e:fa:0f:13:56:d7:59:
c2:f2:4d:76:e9:1e:5a:4a:38:2d:5c:ea:35:01:c0:
42:20:b2:a4:07:c7:bf:ff:3b:a7:fc:3c:68:16:e6:
20:f1:41:98:70:63:f3:b9:e8:f8:20:93:47:3f:52:
8b:47:92:21:ca:c7:39:c8:ff:0c:60:0d:3a:32:7d:
50:4c:69:dd:95:3b:6d:9f:77:b3:51:06:e5:a2:92:
e8:99:5f:40:26:eb:5d:a2:15:d2:19:c7:02:2b:6f:
ca:5f:65:2c:3c:47:bc:4f:c7:82:b3:3a:7c:6d:55:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FE:ED:F1:34:26:1E:63:89:82:53:69:C9:FB:5A:EF:44:FA:58:3B
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/lf7t8TQmHmOJglNpyfta70T6WDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.230.0/24
Signature Algorithm: sha256WithRSAEncryption
98:b6:8c:a7:4f:97:89:fc:d3:b1:7d:4b:ee:67:c4:d4:be:8b:
6b:7e:a1:4f:7d:95:63:7a:80:0a:a2:39:2f:95:f6:2a:b6:bd:
2b:68:ec:02:da:8c:85:e0:04:3a:5a:02:63:56:7f:4f:57:93:
12:f3:18:54:84:e2:97:72:ae:69:ec:42:4c:83:c0:22:6a:9f:
31:e3:fc:cb:57:f4:13:ef:af:3b:3f:1f:62:e1:df:9c:cf:12:
ea:e2:50:50:ab:65:57:d2:b5:8f:c8:c1:22:d4:9e:13:81:e6:
53:3b:fe:84:6d:05:8d:f8:c9:27:a8:d7:d5:51:00:41:3d:0e:
8f:31:f3:58:80:68:e7:17:b6:6c:f5:3c:f0:ed:a8:4e:5f:6e:
4c:8b:58:4f:b8:bc:50:c6:9d:ee:c3:be:00:7b:28:e1:bd:ac:
5b:60:88:5d:1a:4f:08:82:ab:33:f3:67:15:4c:18:ba:af:fd:
b7:fd:62:20:f5:9b:e5:d0:f4:d6:06:a7:ed:7c:dd:08:de:26:
8b:47:1e:4b:15:c1:9a:8f:c8:2a:a6:31:aa:1e:59:94:f8:85:
42:36:55:b4:ae:33:b0:10:ca:8b:72:be:77:fd:a9:9d:a7:83:
b2:d4:11:41:a8:68:68:a6:15:91:54:f0:65:af:d1:14:93:e1:
67:3a:97:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:29 2024 by rpki-client on console-fra.rpki-client.org