Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/31LW_RM8FnSNYzwGLdFPSarZUDQ.roa
File: 31LW_RM8FnSNYzwGLdFPSarZUDQ.roa (raw, json)
Hash identifier: evF61QwBfdjZsuBYQrnoQmvpVAO3k/4UdTyhHrUe7jk=
Subject key identifier: DF:52:D6:FD:13:3C:16:74:8D:63:3C:06:2D:D1:4F:49:AA:D9:50:34
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0182EF340F2BC55DA726D2ECD7A60A87C5EA
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/31LW_RM8FnSNYzwGLdFPSarZUDQ.roa
Signing time: Tue 30 Aug 2022 14:42:22 +0000
ROA not before: Tue 30 Aug 2022 14:42:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59828
IP address blocks: 185.70.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ef:34:0f:2b:c5:5d:a7:26:d2:ec:d7:a6:0a:87:c5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Aug 30 14:42:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df52d6fd133c16748d633c062dd14f49aad95034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:73:c4:fc:ff:e5:be:0c:be:ea:cd:7d:70:02:
37:b9:23:0c:a7:c3:a8:eb:77:90:23:1a:a9:d9:7f:
b5:83:a4:51:4f:fa:82:88:0b:9a:5e:97:d6:41:1c:
38:09:a6:81:90:88:d4:13:15:c5:d5:cc:42:2a:9a:
ea:d6:7f:90:a6:b5:eb:f6:5d:de:75:3d:56:f8:f0:
0b:db:74:f1:40:7a:35:76:07:fd:aa:26:fd:31:8a:
99:5b:0d:01:6e:49:6d:b3:27:6a:7f:a1:5b:69:f2:
d9:81:31:65:7e:dd:70:d1:b5:11:c7:11:44:e5:d8:
be:8f:88:c2:82:c7:25:a7:aa:7e:33:a0:78:14:97:
e4:0b:fb:97:ed:05:1c:ab:71:4d:0b:85:81:74:67:
7f:b4:5a:93:a2:d1:3d:5f:2e:d8:06:89:e3:83:f9:
9e:75:ab:d9:d6:1b:e8:0e:ba:95:b8:65:c6:b3:e3:
53:58:d5:ca:81:40:a1:9d:ad:1b:6a:ab:b8:e6:ef:
32:ba:e1:ad:b2:db:23:63:ac:a8:e3:0b:d1:84:08:
48:d6:ff:9f:ef:a2:af:b5:07:14:e4:b4:d4:4d:43:
b3:7a:1b:2c:05:f6:36:59:bb:79:39:22:cb:7b:f5:
b6:99:02:49:29:23:7d:88:8f:fc:19:80:86:9b:34:
1e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:52:D6:FD:13:3C:16:74:8D:63:3C:06:2D:D1:4F:49:AA:D9:50:34
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/31LW_RM8FnSNYzwGLdFPSarZUDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.36.0/22
Signature Algorithm: sha256WithRSAEncryption
61:38:f4:27:63:88:24:1a:5d:16:2c:3a:d1:ac:03:ca:30:48:
b7:c8:ca:2e:b6:70:87:f0:48:2b:b7:4b:2a:49:8a:c3:f9:60:
43:2f:c9:f0:07:29:e7:84:2d:48:e3:7a:30:e2:7b:26:42:c5:
c4:fa:47:e4:d4:34:73:80:93:3a:e5:14:b6:85:f1:7a:b5:67:
61:f3:55:0d:54:8b:49:01:f4:9d:c9:77:c0:b2:0f:37:f4:7b:
3b:25:c5:22:e3:29:88:7f:2c:be:52:6b:d9:77:b9:85:c0:18:
09:63:62:9e:42:64:33:f2:6c:8f:6f:6c:9a:92:21:53:f4:5c:
f7:e4:cb:5e:c9:4d:8d:e9:7b:ed:18:3d:85:05:c9:75:7e:14:
87:f9:95:85:2c:42:ad:4d:67:bd:7f:e3:cf:99:e8:04:08:61:
f6:bd:72:da:91:bf:c0:4d:e0:4c:d0:10:6e:ee:80:4c:c3:5b:
f0:70:32:2f:cd:d9:ab:8a:bc:70:a1:59:b9:43:f3:50:fc:dc:
a6:db:16:28:5c:de:29:1c:d4:4c:68:7d:4f:24:2d:4c:0b:ed:
db:79:ae:1a:e3:e1:3b:3f:6c:5e:fe:4a:c3:a3:29:c8:20:79:
fb:40:c7:e1:21:53:a2:20:68:dd:f6:68:c0:e5:9e:65:f3:97:
2a:84:08:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:58 2024 by rpki-client on console-fra.rpki-client.org