Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/mY7NkXZKK3DI50hQzSD7j8_Rtlg.roa
File: mY7NkXZKK3DI50hQzSD7j8_Rtlg.roa (raw, json)
Hash identifier: nECceassBfvgRnuR8NqkBjP0f4OovcrL0hV1bnXPGTk=
Subject key identifier: 99:8E:CD:91:76:4A:2B:70:C8:E7:48:50:CD:20:FB:8F:CF:D1:B6:58
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 09A1FBC0
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/mY7NkXZKK3DI50hQzSD7j8_Rtlg.roa
Signing time: Mon 11 Apr 2022 10:52:41 +0000
ROA not before: Mon 11 Apr 2022 10:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 31.14.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161610688 (0x9a1fbc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Apr 11 10:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=998ecd91764a2b70c8e74850cd20fb8fcfd1b658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d2:63:7b:05:5e:ee:68:2e:4b:fb:d6:dc:89:
97:ee:83:cf:cc:97:bf:7c:51:27:2b:5d:ef:7c:5f:
a3:35:f2:b0:47:9e:fa:57:d5:e4:7b:66:75:c9:9e:
0a:b9:4e:2e:cd:cc:c3:c2:97:dc:51:7b:de:47:59:
6d:b2:51:83:00:4f:84:27:52:4b:44:66:94:95:5b:
61:41:d8:7b:87:7d:51:81:05:3e:d4:f7:95:fa:84:
7a:3c:b8:1b:b6:e9:3d:82:bd:66:89:42:06:8c:79:
2d:92:97:fd:0a:7c:f8:58:38:fa:41:e9:f3:40:4d:
de:fd:c6:11:50:f1:eb:c0:68:6e:24:82:1a:c7:11:
ed:b9:c4:a4:88:f1:33:90:a1:a3:4c:7c:be:a4:e4:
30:14:a6:16:d4:3e:28:5a:5f:5b:8c:14:72:1d:e3:
88:59:5a:93:29:59:42:39:82:b0:f7:e1:91:0e:a7:
25:2a:88:a6:4a:75:f8:ff:0b:34:75:20:3e:c1:05:
4c:89:80:20:cc:6a:29:05:64:ed:85:61:cc:ea:f2:
03:1b:33:01:34:12:78:da:72:4d:e2:ba:ba:9b:27:
c8:8c:cd:67:82:31:a9:71:1e:3a:94:3f:0c:70:c3:
cf:ed:9d:5c:aa:7c:ff:2a:9c:bd:e4:43:7a:86:0a:
b8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8E:CD:91:76:4A:2B:70:C8:E7:48:50:CD:20:FB:8F:CF:D1:B6:58
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/mY7NkXZKK3DI50hQzSD7j8_Rtlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.75.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:48:07:20:84:5e:30:3a:1d:74:37:a1:71:af:5a:f9:dc:94:
df:73:68:4c:ca:87:76:fc:58:bc:ee:07:6c:0b:7e:d9:5c:11:
14:8a:68:03:3d:ac:57:78:32:22:ba:ea:36:a9:52:11:04:d7:
b3:83:f0:6a:da:31:95:f8:56:0c:01:50:5c:28:bd:08:84:1a:
5d:15:04:d3:97:6b:9a:17:33:6e:02:e5:00:f1:07:f2:f0:ce:
ba:2e:68:7d:6c:7b:0a:5e:f2:c7:02:d9:1a:ef:66:89:31:19:
8f:ad:0d:91:1c:20:e2:9e:31:96:f3:9c:89:f8:47:b8:b0:30:
89:17:d7:95:38:b3:b8:5a:a1:8f:28:ce:56:ac:a4:f9:b5:18:
46:6c:27:17:d3:1f:14:fa:08:88:d9:8c:2a:13:76:cf:a6:3c:
13:4b:00:9d:f6:1a:dc:cd:79:c4:a9:f4:8d:c5:7a:13:4a:cc:
50:36:cb:67:bb:45:c8:2d:42:9f:7e:8e:1e:f1:80:11:a4:09:
ac:d7:35:9f:5e:96:f0:f6:0d:82:07:3d:c9:13:c9:74:d7:b6:
a6:43:25:ef:b5:84:e5:9a:3a:9c:a0:c5:75:53:73:36:a6:78:
f4:72:28:28:93:83:66:9c:94:f6:4a:70:23:45:fb:35:7d:ba:
c7:14:08:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org