Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/e2A1Ik8H3ANg-rpYxmvVMcNdF3Y.roa
File: e2A1Ik8H3ANg-rpYxmvVMcNdF3Y.roa (raw, json)
Hash identifier: NhCoh+pdEMVoOQ0rcAOgW2v4C3UlYtksJ4/VEkLi5EU=
Subject key identifier: 7B:60:35:22:4F:07:DC:03:60:FA:BA:58:C6:6B:D5:31:C3:5D:17:76
Certificate issuer: /CN=078ed1a0153762a922e55e0f948cd1a5411c7a89
Certificate serial: 01856F94A36B25C5CA4F1292C1E267079597
Authority key identifier: 07:8E:D1:A0:15:37:62:A9:22:E5:5E:0F:94:8C:D1:A5:41:1C:7A:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B47RoBU3Yqki5V4PlIzRpUEceok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/e2A1Ik8H3ANg-rpYxmvVMcNdF3Y.roa
Signing time: Sun 01 Jan 2023 23:04:50 +0000
ROA not before: Sun 01 Jan 2023 23:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211741
IP address blocks: 31.43.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a3:6b:25:c5:ca:4f:12:92:c1:e2:67:07:95:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078ed1a0153762a922e55e0f948cd1a5411c7a89
Validity
Not Before: Jan 1 23:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b6035224f07dc0360faba58c66bd531c35d1776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d2:11:93:e0:f2:fc:76:be:19:34:4f:ed:1a:
1f:2e:50:06:2e:df:1e:67:4f:ed:76:92:3a:58:8a:
41:ce:61:f9:9b:ff:15:2d:21:7f:37:1e:b3:9b:e9:
4b:08:6b:66:2c:22:9b:71:1e:60:79:12:65:d1:0c:
bd:22:b4:54:f2:63:ff:61:fe:cc:b1:19:db:b3:0d:
c5:3e:87:cf:80:5f:99:47:52:4a:5c:36:3f:6b:2b:
48:e3:87:db:5d:12:b3:3b:9b:95:a9:c5:5b:01:14:
50:45:21:50:77:14:36:17:90:dc:9b:4a:ce:e6:35:
b5:fe:a5:90:77:8f:91:28:94:1a:b7:7a:34:47:b4:
35:4b:e9:75:a8:9b:4d:3c:5e:25:77:0b:c6:9a:03:
54:f9:d8:14:ab:db:ac:33:dc:20:78:fc:4b:6f:21:
e0:56:4c:22:35:90:67:b6:f5:30:eb:e2:a7:41:2f:
5a:c6:e3:19:bb:04:05:4e:88:76:50:d6:ec:c1:7c:
57:c9:5c:15:bc:ed:6d:62:6b:9e:62:4b:bc:83:9c:
dd:58:7f:dd:e5:e5:ef:be:29:c8:39:d5:aa:3f:36:
f2:c1:c8:10:2b:5a:9b:c8:ea:06:ba:1a:53:b9:b1:
ed:94:9f:0c:76:dc:f2:cd:8c:ad:36:9e:f4:3d:2d:
10:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:60:35:22:4F:07:DC:03:60:FA:BA:58:C6:6B:D5:31:C3:5D:17:76
X509v3 Authority Key Identifier:
keyid:07:8E:D1:A0:15:37:62:A9:22:E5:5E:0F:94:8C:D1:A5:41:1C:7A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B47RoBU3Yqki5V4PlIzRpUEceok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/e2A1Ik8H3ANg-rpYxmvVMcNdF3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/92d33c-8a69-4db3-b628-b62db772bbfa/1/B47RoBU3Yqki5V4PlIzRpUEceok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.188.0/23
Signature Algorithm: sha256WithRSAEncryption
64:53:9d:8b:0f:f8:bc:40:0e:49:a8:c1:86:cc:c2:40:04:d8:
1d:ed:2d:1b:fa:4f:e3:49:31:96:c9:b5:df:fb:19:26:df:b1:
9b:bd:b7:6f:f3:b8:f4:ba:ea:36:b7:77:88:7d:83:5b:2e:70:
a5:b1:df:7a:66:7f:ea:01:8c:26:4d:83:c4:dd:20:9c:0d:ad:
a8:24:af:51:32:e7:6e:19:6e:19:46:0f:2f:d9:55:c8:f5:62:
fc:34:8d:d1:bf:4c:c7:f3:8f:4d:67:e3:4e:e8:ec:26:ec:4b:
d0:9b:4e:10:59:bb:07:b9:40:12:fd:a5:75:09:5a:e2:47:ec:
6a:29:ba:f8:04:99:b8:f8:2c:ab:f7:52:1c:e7:70:8e:99:07:
38:95:f2:3f:a0:64:b1:7a:e6:61:c1:f3:bf:9d:22:70:58:b2:
10:c3:33:60:e3:d3:62:b0:b8:84:78:c0:fc:16:d6:fd:f8:42:
94:5d:97:d2:7d:95:c8:e8:ef:23:57:4a:91:a2:df:dc:cf:fa:
c2:78:e1:72:76:fa:c7:d7:65:a0:0a:75:db:99:e9:4b:34:76:
47:46:e9:8e:b2:dd:40:e9:81:7f:af:a8:b3:c5:ab:84:1b:6e:
9d:80:bb:dc:d2:7e:26:f5:57:30:3f:a5:46:68:a7:a6:a5:e0:
c7:b7:06:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:19 2025 by rpki-client