Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/SDOSjFYbWPDRiw41Vc3qDZ96otU.roa
File: SDOSjFYbWPDRiw41Vc3qDZ96otU.roa (raw, json)
Hash identifier: YhnQwZJT0Dh9TUeBhc0V3Q/T3n0Qjico563vPCZTVwk=
Subject key identifier: 48:33:92:8C:56:1B:58:F0:D1:8B:0E:35:55:CD:EA:0D:9F:7A:A2:D5
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 08BBF0CD
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/SDOSjFYbWPDRiw41Vc3qDZ96otU.roa
Signing time: Sat 01 Jan 2022 11:57:01 +0000
ROA not before: Sat 01 Jan 2022 11:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 31.14.74.0/24 maxlen: 24
31.14.73.0/24 maxlen: 24
31.14.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146534605 (0x8bbf0cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 1 11:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4833928c561b58f0d18b0e3555cdea0d9f7aa2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f5:78:97:04:9f:88:ab:2c:ba:f5:99:53:f6:
f5:cd:8f:78:76:ea:2d:02:a2:46:2b:19:84:f2:ae:
11:8c:e6:c5:17:56:fa:d9:d3:2b:cf:cd:7a:d6:bf:
46:05:28:f9:e9:0d:f7:1a:89:0b:6d:f6:4f:af:ce:
af:d3:ab:c0:c4:1a:a3:93:ac:d4:91:c4:5b:33:c7:
e3:13:0f:95:dc:27:d0:88:8b:2d:61:34:97:7a:df:
17:f5:1c:92:e5:6c:c0:d8:47:6b:96:9d:02:ac:0f:
e2:ba:45:b5:4a:c9:35:e8:0b:a1:45:00:1d:d1:9d:
2d:8d:ea:d0:12:60:0d:87:af:63:b4:8f:40:a7:60:
eb:75:83:6f:53:4b:be:d0:bf:32:ea:d7:50:66:0a:
ef:c3:f1:dc:b5:06:70:13:a7:f7:87:90:47:37:7f:
c9:75:45:bc:3f:f0:10:00:8f:5c:15:69:58:bf:5a:
38:92:08:a6:65:44:a5:79:0e:a2:ec:f3:17:1e:c8:
32:7d:9d:44:cc:77:2a:51:4d:fb:34:d4:1d:d5:3b:
13:f8:e5:65:5b:78:87:f6:3a:93:36:5d:6c:5d:35:
ff:76:ac:69:ae:fe:fe:eb:17:67:3a:42:a4:d8:c5:
51:67:93:af:76:5c:01:d7:67:06:e9:e3:15:72:cf:
b2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:33:92:8C:56:1B:58:F0:D1:8B:0E:35:55:CD:EA:0D:9F:7A:A2:D5
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/SDOSjFYbWPDRiw41Vc3qDZ96otU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.72.0-31.14.74.255
Signature Algorithm: sha256WithRSAEncryption
3a:1a:62:42:5b:b3:07:fd:3a:40:2b:2a:e2:f5:e9:f3:88:5e:
53:fe:e1:c4:09:fe:bb:30:91:3b:1a:8f:91:98:47:76:c0:9c:
c9:0d:74:74:86:9c:5a:33:b2:6a:74:61:80:28:67:e5:42:98:
8a:e2:8a:9a:db:8d:36:b6:f9:83:40:eb:ab:98:90:b8:1c:d1:
82:f5:a5:a1:19:19:31:39:1c:87:59:0e:a3:70:d1:b3:15:9e:
16:01:8c:bf:69:99:59:58:3e:7c:95:57:0d:ef:b3:8f:64:7b:
30:0d:33:ad:c0:ce:98:d0:75:d9:3c:10:a7:66:aa:39:36:bd:
72:6b:ad:51:79:00:4c:98:97:99:b8:f6:05:54:6b:c4:c1:dd:
10:08:f1:5c:bb:21:05:48:0e:2f:30:ee:d8:c4:99:03:2b:c9:
35:fa:c6:4a:60:af:d2:0f:54:d0:7b:f0:f2:aa:d7:db:73:b9:
db:b3:9c:01:ff:8d:fb:14:97:2b:4e:9c:5d:bb:88:3a:9f:e7:
f5:64:19:69:80:7d:79:54:5a:bd:67:52:c0:17:b9:19:b8:9d:
7d:8f:c5:0c:40:a2:9e:2f:54:a1:1e:58:1f:6f:3e:ad:7a:28:
78:b2:3e:10:36:15:f6:02:fa:c9:6d:83:c3:19:88:e4:61:b8:
43:62:61:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org