Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/d97443-9a5f-4655-80cc-82159d94d3e9/1/Yo-gCuUrm-wV7_t1i4aUYF0wwDQ.roa
File: Yo-gCuUrm-wV7_t1i4aUYF0wwDQ.roa (raw, json)
Hash identifier: OCuiS/qe2+pQV+Vm/VBfs6ZODX9caTvJ3agUi/W0REo=
Subject key identifier: 62:8F:A0:0A:E5:2B:9B:EC:15:EF:FB:75:8B:86:94:60:5D:30:C0:34
Certificate issuer: /CN=d92954ef7d9b84b83380bcbe517850e55a79c75b
Certificate serial: BC79D4
Authority key identifier: D9:29:54:EF:7D:9B:84:B8:33:80:BC:BE:51:78:50:E5:5A:79:C7:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SlU732bhLgzgLy-UXhQ5Vp5x1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/d97443-9a5f-4655-80cc-82159d94d3e9/1/Yo-gCuUrm-wV7_t1i4aUYF0wwDQ.roa
Signing time: Sat 01 Jan 2022 09:01:31 +0000
ROA not before: Sat 01 Jan 2022 09:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 31.222.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12351956 (0xbc79d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d92954ef7d9b84b83380bcbe517850e55a79c75b
Validity
Not Before: Jan 1 09:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=628fa00ae52b9bec15effb758b8694605d30c034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c6:a7:22:a6:1b:2f:0d:1c:b9:47:fd:73:a8:
23:84:23:14:a2:7d:e1:5c:c9:d4:f1:cb:50:b5:0e:
d6:eb:29:c0:2b:00:9f:0f:ae:80:4c:c3:61:8a:88:
46:37:62:8b:d9:00:b9:23:5c:9a:76:96:fc:4b:47:
a6:10:bc:52:c5:56:48:ea:9b:13:7e:2a:fa:c0:e5:
ee:14:a5:20:df:e8:da:d2:36:16:b9:fc:4b:dc:4f:
b5:fb:14:e3:36:24:ee:80:1f:ee:94:68:9f:f3:a4:
56:5d:65:60:ab:12:59:d4:a0:c9:9a:13:59:99:6f:
82:8c:53:f1:0d:1d:a4:86:6b:f0:dd:e8:40:40:ec:
65:3c:c0:ea:97:8a:8b:66:73:ef:68:b4:75:3e:ea:
84:06:a0:82:6a:d2:df:1e:a4:3e:b8:52:2d:14:1a:
9f:d7:59:62:32:fa:e4:1b:6f:2a:b8:17:4b:fc:0c:
25:ed:0e:4b:4e:03:8f:21:55:4f:09:bf:69:98:52:
bd:0c:6a:88:a9:4e:a1:3b:3b:9d:66:71:8b:87:5c:
51:cc:60:68:72:4d:8d:87:74:c2:e0:0e:ae:76:90:
ee:8d:82:0c:0b:92:ff:50:21:dc:e9:78:5d:c0:a6:
01:3f:a4:37:7f:2d:a5:5c:d5:4f:51:39:28:00:9b:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8F:A0:0A:E5:2B:9B:EC:15:EF:FB:75:8B:86:94:60:5D:30:C0:34
X509v3 Authority Key Identifier:
keyid:D9:29:54:EF:7D:9B:84:B8:33:80:BC:BE:51:78:50:E5:5A:79:C7:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SlU732bhLgzgLy-UXhQ5Vp5x1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d97443-9a5f-4655-80cc-82159d94d3e9/1/Yo-gCuUrm-wV7_t1i4aUYF0wwDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d97443-9a5f-4655-80cc-82159d94d3e9/1/2SlU732bhLgzgLy-UXhQ5Vp5x1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.247.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:1b:b9:8e:a6:08:dc:fb:5d:71:17:58:cc:13:48:01:07:62:
9a:00:82:9c:1d:b4:fd:79:96:55:60:27:dc:ea:66:6d:e5:76:
7a:60:d0:ba:96:9a:94:c5:35:92:a4:a6:22:ab:83:4a:83:54:
cf:a4:f9:19:1f:75:aa:45:b8:9e:4d:fd:8d:44:a2:e5:83:f6:
41:82:18:a2:ae:00:29:c8:be:48:0e:f5:b2:de:1f:e8:25:2f:
a1:04:59:a3:3e:76:a0:82:1c:3d:1c:76:3a:b2:7c:c4:12:ae:
70:ad:c3:a8:bd:64:17:d4:9a:e3:45:a0:a5:0d:07:e8:6a:db:
c8:f3:3b:8c:f6:1c:d3:79:94:59:d8:c8:00:0f:a3:f8:d0:be:
eb:61:63:a7:7f:24:f4:0b:e7:d9:4a:53:62:10:fd:98:2c:18:
78:2c:c5:40:b4:71:2f:a9:73:44:d2:87:98:27:0f:bb:29:a6:
ef:5e:90:33:22:41:4d:d1:32:4a:aa:a8:72:64:6c:4b:6a:d1:
9b:c7:12:79:c6:a2:dc:ad:0f:49:9c:bc:6c:87:1e:17:46:0b:
b4:9b:ab:dc:de:b5:dc:ec:ba:ac:8c:88:43:03:5d:02:e2:24:
99:6c:fe:d2:f6:2f:44:3b:50:3c:ec:ff:11:27:22:89:6a:a5:
96:53:bd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:41 2023 by rpki-client on console-ams.rpki-client.org