Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/g_Oo_QcCdE0gOqgVmMER121bKtk.roa
File: g_Oo_QcCdE0gOqgVmMER121bKtk.roa (raw, json)
Hash identifier: P42I8mWj7ieaCckK+d8g6L41mC8LP7ErhE5jCHsmg/8=
Subject key identifier: 83:F3:A8:FD:07:02:74:4D:20:3A:A8:15:98:C1:11:D7:6D:5B:2A:D9
Certificate issuer: /CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Certificate serial: 13BA2384
Authority key identifier: 34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/g_Oo_QcCdE0gOqgVmMER121bKtk.roa
Signing time: Mon 23 May 2022 07:43:29 +0000
ROA not before: Mon 23 May 2022 07:43:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8449
IP address blocks: 31.192.249.0/24 maxlen: 24
31.192.248.0/21 maxlen: 24
5.57.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330965892 (0x13ba2384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34077b41e98873e7f06fb1df3f5d39c721b1343f
Validity
Not Before: May 23 07:43:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83f3a8fd0702744d203aa81598c111d76d5b2ad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:77:f9:2c:0a:d7:1c:8b:cf:f3:0a:38:b8:
96:4c:cb:37:db:08:f9:64:9b:52:27:fb:1c:30:3f:
3c:06:c1:31:0f:59:29:a7:79:bf:52:4b:09:35:07:
a9:e5:ee:48:40:86:8b:f8:b7:69:2f:26:60:d7:40:
11:57:c1:52:d2:1f:cc:55:74:dd:84:74:b9:f0:2a:
74:ac:07:e6:1b:ba:c7:2a:cc:2c:2c:e9:32:bd:7f:
8a:a7:97:47:c9:d0:1c:9c:50:ab:6f:38:38:f6:0c:
da:7b:da:4a:85:da:9b:9a:f7:26:24:ea:31:79:8b:
66:e7:20:b5:d4:1c:e0:61:c8:e9:8b:e5:0f:7c:86:
0b:a0:3c:e8:aa:94:73:a0:60:fa:cc:8e:fe:14:56:
18:a6:51:de:c1:d9:5a:4e:1f:81:19:ab:38:96:74:
ce:d9:c6:58:06:6d:aa:1a:de:a6:0c:78:e5:ef:f5:
5c:fe:fb:07:66:99:39:9f:eb:4b:b5:df:d2:ea:73:
c2:97:9f:05:5c:69:08:65:a8:85:7c:a9:2e:1d:19:
8a:db:4c:fa:d8:a4:e0:5c:90:d3:4f:13:71:38:96:
16:d0:05:b7:94:39:e0:5c:d6:c5:ec:20:49:52:e0:
7a:c7:e8:d7:cf:1d:29:3c:a3:f7:6e:d0:e7:c1:50:
a4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:F3:A8:FD:07:02:74:4D:20:3A:A8:15:98:C1:11:D7:6D:5B:2A:D9
X509v3 Authority Key Identifier:
keyid:34:07:7B:41:E9:88:73:E7:F0:6F:B1:DF:3F:5D:39:C7:21:B1:34:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAd7QemIc-fwb7HfP105xyGxND8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/g_Oo_QcCdE0gOqgVmMER121bKtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/448800-829e-4b7a-92c4-cb7cbca7c1e0/1/NAd7QemIc-fwb7HfP105xyGxND8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.8.0/21
31.192.248.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:3b:ed:c7:6f:26:1a:dc:0e:42:e5:dd:1e:d7:c3:84:2a:c3:
21:b7:8b:e3:84:ed:a3:1c:9f:2f:6a:69:73:bd:ba:8d:0e:11:
93:5a:f4:7b:04:4e:39:3b:70:eb:20:5d:74:a9:f6:e8:5a:76:
aa:97:ea:3a:e0:fd:bb:e7:16:2d:eb:d0:a4:a0:5e:31:c5:d9:
e5:1b:2d:5d:9d:cf:f9:f8:75:39:11:30:4f:35:99:a6:b4:a0:
b1:1d:d6:cc:78:8d:97:eb:90:f3:c6:79:7f:07:03:10:e5:9e:
63:59:c3:72:d2:0c:54:95:f5:f3:69:9b:8d:a6:60:1c:c9:d5:
5d:92:9d:e7:ef:9b:61:0c:be:ba:13:4b:05:45:30:c4:e1:bd:
83:21:45:f8:fa:95:84:67:8b:10:7f:8a:90:93:d4:cc:50:8b:
9f:5f:9c:2e:db:89:e1:01:0e:83:66:23:1c:42:ea:2b:7f:51:
58:1c:12:a6:dd:5d:17:a9:fe:82:97:d4:95:36:da:5a:a2:f4:
a5:3f:c1:97:dc:3c:41:a7:a2:b8:da:c1:88:37:e2:a2:a7:67:
ea:3f:fc:26:48:53:9e:f4:e5:b6:f8:19:b4:e3:4c:0c:4f:e5:
c3:96:20:50:d7:b3:a8:45:15:3a:9f:d3:e5:42:85:d0:ae:a1:
c0:11:70:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org