Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/jaSt3vMoxQm8UU5X9ICzpm2Hlvs.roa
File: jaSt3vMoxQm8UU5X9ICzpm2Hlvs.roa (raw, json)
Hash identifier: 8dwlQuWjQlimnDUWimAjq1orhlnnSg+1aj9DIyLuY4E=
Subject key identifier: 8D:A4:AD:DE:F3:28:C5:09:BC:51:4E:57:F4:80:B3:A6:6D:87:96:FB
Certificate issuer: /CN=0550b345d9ce66e312cc294912a2b4160dfe560a
Certificate serial: 0184A004BCCAC57377A60C1F2EEA6D79883E
Authority key identifier: 05:50:B3:45:D9:CE:66:E3:12:CC:29:49:12:A2:B4:16:0D:FE:56:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/jaSt3vMoxQm8UU5X9ICzpm2Hlvs.roa
Signing time: Tue 22 Nov 2022 15:46:15 +0000
ROA not before: Tue 22 Nov 2022 15:46:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 31.193.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a0:04:bc:ca:c5:73:77:a6:0c:1f:2e:ea:6d:79:88:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0550b345d9ce66e312cc294912a2b4160dfe560a
Validity
Not Before: Nov 22 15:46:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8da4addef328c509bc514e57f480b3a66d8796fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bf:c0:7e:64:c4:a6:23:f0:f3:44:44:d2:0b:
d8:1b:d4:c4:03:96:83:9b:cc:fc:3a:6f:db:5b:69:
a3:a4:a1:b9:fd:e2:4e:6c:b2:45:f4:e9:a9:29:af:
3a:23:60:55:f3:a0:1f:1d:5c:6e:af:77:ce:13:31:
26:8d:c5:6d:05:51:5f:10:7d:d9:e7:b7:01:ec:17:
aa:12:4a:92:ca:c5:40:1e:bf:75:a8:72:74:9a:0e:
88:8c:a4:44:0e:88:62:1e:6f:5e:75:b1:38:89:fb:
0c:03:ad:9d:5d:7d:37:ef:5a:2c:87:80:36:5d:ff:
35:1c:da:d7:01:f9:a0:fd:80:38:ed:1d:42:5f:4f:
84:76:ce:97:10:08:6d:1f:b4:d5:24:de:72:a9:25:
09:40:27:fc:34:c2:64:62:c1:ca:86:91:a0:8c:50:
35:e5:3b:c9:47:8c:16:75:63:bb:1f:be:15:b9:43:
4e:0a:81:aa:dc:49:48:38:da:07:f5:02:c9:e6:72:
d2:fd:38:50:c2:8a:22:6f:7a:31:e2:3d:95:cc:2f:
c8:8e:85:f8:78:8a:67:14:03:cb:f4:af:dd:64:94:
35:2f:24:a0:4d:0c:79:83:b3:ca:06:30:4f:ca:bd:
fa:87:d4:15:06:29:b6:0c:29:b7:ea:89:2d:3f:f6:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A4:AD:DE:F3:28:C5:09:BC:51:4E:57:F4:80:B3:A6:6D:87:96:FB
X509v3 Authority Key Identifier:
keyid:05:50:B3:45:D9:CE:66:E3:12:CC:29:49:12:A2:B4:16:0D:FE:56:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/jaSt3vMoxQm8UU5X9ICzpm2Hlvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b245de-c700-4206-9ff7-6d8bd97a11a1/1/BVCzRdnOZuMSzClJEqK0Fg3-Vgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.190.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c5:45:a4:85:30:b8:5e:cf:d9:48:5e:2d:4c:ea:a8:f4:e7:
19:71:ff:64:c3:9f:40:ba:8c:2e:11:c2:1e:7b:51:a3:8c:75:
84:7b:d7:cd:0d:bf:26:41:9c:78:ff:ba:c1:d8:cb:87:cd:7b:
98:53:14:21:8d:35:9a:96:a0:3c:26:b8:af:a2:a6:8a:ab:a5:
46:67:9a:20:40:75:35:de:c8:76:0c:cb:59:b4:4e:d8:19:db:
26:a0:54:92:f9:17:93:25:5b:55:5f:be:ed:1f:fd:39:b8:0a:
92:2a:78:67:9b:a4:76:ef:69:4e:5c:db:c8:df:ba:83:3a:2d:
bc:55:cf:e4:26:24:3c:4c:31:df:cd:df:d5:08:e7:2d:2e:6b:
6c:3d:06:89:67:09:cb:b7:88:a4:5f:cd:b3:db:cb:e2:f7:44:
a4:90:56:56:f3:07:56:68:40:5b:41:8a:13:f9:59:d1:67:50:
90:f0:34:1d:69:6b:bb:90:48:b4:7e:f8:9e:2e:ac:67:31:8c:
c6:41:33:b5:c5:83:44:ce:58:94:47:7e:13:84:7f:55:b1:dd:
81:30:ef:9b:82:3c:7e:f5:42:2d:17:50:e4:b9:22:e8:56:b9:
5b:5f:e9:8e:fd:38:54:ba:c2:98:7c:ae:7d:24:16:9a:30:cc:
3e:66:16:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:43 2023 by rpki-client on console-ams.rpki-client.org