Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/bHSZ4fVacGxeavLFE0vpi_kyD6U.roa
File: bHSZ4fVacGxeavLFE0vpi_kyD6U.roa (raw, json)
Hash identifier: p1B7sa02D89ajagEdPQ4vvSbKloZBDG9qsJlWzH/Occ=
Subject key identifier: 6C:74:99:E1:F5:5A:70:6C:5E:6A:F2:C5:13:4B:E9:8B:F9:32:0F:A5
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 01CE9DA8
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/bHSZ4fVacGxeavLFE0vpi_kyD6U.roa
Signing time: Sat 01 Jan 2022 03:59:22 +0000
ROA not before: Sat 01 Jan 2022 03:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206273
IP address blocks: 31.130.244.0/22 maxlen: 22
178.212.60.0/22 maxlen: 22
91.218.154.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30317992 (0x1ce9da8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Jan 1 03:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c7499e1f55a706c5e6af2c5134be98bf9320fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:12:bf:65:92:95:58:02:32:40:ce:1a:7f:23:
2e:af:73:6e:f5:9c:1f:ed:32:32:10:8b:b7:24:28:
14:cc:2f:9b:a3:0f:e5:6b:e8:a8:b7:d3:09:fc:0f:
05:e9:f9:0d:49:61:80:6f:90:7c:ce:37:a0:c4:05:
15:9f:26:1d:0f:fc:b4:b7:81:65:d8:33:b8:9c:a5:
87:4b:fe:c6:af:f0:de:ba:37:f5:d2:c0:e4:0c:90:
24:f3:bd:63:f5:6b:fa:68:48:ed:88:87:75:59:7f:
01:2b:34:8d:e2:10:96:9c:04:ab:4d:27:5e:29:88:
67:b0:15:31:ca:7c:83:b9:3b:73:67:80:6c:46:0a:
47:35:bf:08:ba:ff:c5:86:3f:c2:c9:d6:da:60:f3:
2d:3f:67:3d:b8:5f:b0:cd:65:68:45:27:c3:2e:c6:
fc:f9:44:52:8f:b6:b4:6a:62:d9:a8:c3:33:0a:82:
44:20:47:a8:9f:a5:be:26:db:b5:c5:32:73:c8:85:
ba:bf:15:4e:74:25:84:59:25:94:82:e3:78:1b:93:
13:82:2a:8d:44:c7:98:7e:85:13:74:82:25:09:81:
eb:65:ff:a4:09:90:78:5b:e6:6f:37:45:86:e6:d9:
42:17:c3:94:71:1a:c5:26:8e:0a:a5:76:14:0d:9f:
8f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:74:99:E1:F5:5A:70:6C:5E:6A:F2:C5:13:4B:E9:8B:F9:32:0F:A5
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/bHSZ4fVacGxeavLFE0vpi_kyD6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.244.0/22
91.218.154.0/23
178.212.60.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:72:0c:d0:cb:04:76:9a:84:e9:74:15:c0:76:d8:79:00:76:
8a:7c:c7:4b:5a:01:38:e1:b8:8a:2b:27:b0:71:61:54:75:bb:
ea:09:aa:ff:9c:83:08:f9:6b:73:a5:9a:58:a3:0b:dc:15:b4:
a0:5c:40:b2:1f:ae:14:1c:92:41:d4:e2:e9:6d:b2:09:6d:06:
8c:c0:bc:ba:5d:cf:fb:e6:f7:8a:28:b0:a8:37:90:38:a3:40:
3e:09:12:39:da:48:97:93:a1:ff:13:85:00:9f:13:72:50:a9:
be:f0:6a:d7:39:5d:04:5b:ea:f4:dc:3f:d8:0d:8e:38:06:db:
c2:8e:41:cc:fa:7b:95:e6:b5:7d:e6:d5:fa:b9:56:87:70:2b:
33:ba:91:c5:6a:ec:d0:ae:72:7e:78:38:7b:07:c5:0a:e9:aa:
65:34:dc:58:8d:e0:aa:87:5d:71:93:23:62:75:d4:1a:48:f1:
e0:35:87:f9:ef:1c:7f:6b:70:3e:b4:ca:e9:b2:3c:7d:a4:8d:
4a:87:69:dd:4b:ca:38:57:c5:bb:da:19:80:9e:7f:1a:22:a3:
ef:f4:ed:a5:78:cf:81:ef:07:9f:84:8d:40:4f:d6:a6:a2:57:
d9:05:1f:c1:87:88:32:ec:88:e1:1c:2e:bf:66:68:c5:03:52:
4a:65:cc:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org