Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KeMUr7CEH5_HcD4waZBVHgDfFDs.roa
File: KeMUr7CEH5_HcD4waZBVHgDfFDs.roa (raw, json)
Hash identifier: WnMM8ZrKJPuNhL3f38oZAnF90mctggC0V0ZWGtijGIM=
Subject key identifier: 29:E3:14:AF:B0:84:1F:9F:C7:70:3E:30:69:90:55:1E:00:DF:14:3B
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 041450F8
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KeMUr7CEH5_HcD4waZBVHgDfFDs.roa
Signing time: Sun 27 Mar 2022 00:07:31 +0000
ROA not before: Sun 27 Mar 2022 00:07:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208287
IP address blocks: 31.210.39.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68440312 (0x41450f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Mar 27 00:07:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29e314afb0841f9fc7703e306990551e00df143b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f6:91:49:03:57:9c:fb:01:9c:ac:51:10:8a:
e5:b2:e3:24:4a:ea:6c:62:a9:f9:80:8b:38:75:52:
05:d6:2c:e0:12:e8:e7:6a:bb:d3:ce:a5:c4:c1:fb:
94:0b:d2:7a:b8:7b:7b:e3:36:5a:c6:3d:e6:ff:44:
cb:e5:84:8f:ca:ac:0d:10:5b:cc:46:e7:64:ff:d5:
ea:fd:34:0a:61:5f:16:07:e7:78:55:27:5e:5a:95:
b3:df:1c:5a:69:10:d3:63:b2:9e:e8:14:1c:39:3a:
ba:e8:ab:47:68:46:57:d0:89:23:d7:e1:1d:fb:44:
7a:2a:93:05:46:be:ca:ae:64:1e:d8:cd:5d:43:a0:
11:47:e8:ff:0b:37:c3:b8:01:a8:b5:13:cb:3f:56:
5b:e3:69:54:47:fc:35:e4:45:0e:6c:c9:5c:13:b2:
12:c6:3a:3f:ca:98:b8:0d:52:ed:a1:70:bd:b0:3b:
e3:85:6a:c8:0e:76:68:8e:cf:66:87:f3:08:a9:12:
31:1e:a1:47:d4:4b:02:01:4c:3d:c7:b6:ee:63:78:
d3:30:a5:ce:ab:9f:d4:87:99:0d:53:64:1e:29:4b:
0a:a0:1e:c8:8f:53:6e:cc:ea:5d:11:f1:75:57:13:
66:f2:97:62:e5:2a:53:35:87:4e:bc:6a:e8:e4:31:
70:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E3:14:AF:B0:84:1F:9F:C7:70:3E:30:69:90:55:1E:00:DF:14:3B
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/KeMUr7CEH5_HcD4waZBVHgDfFDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.39.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8c:c2:ea:5e:f2:de:66:c5:e2:91:44:db:ba:a1:20:fd:78:
de:d8:fb:8c:a3:ad:93:5f:da:af:8f:b9:e6:81:99:1d:02:01:
f0:6c:3d:21:e8:fc:a6:be:3b:00:78:7c:5d:77:c9:02:b4:2d:
ea:69:2b:9c:80:21:a9:ae:0d:af:6b:a3:69:ef:d8:4b:e8:4d:
4a:83:9a:81:de:23:88:e9:de:00:a7:b5:2a:d2:86:98:2b:87:
f9:05:8a:64:50:41:b5:6b:48:ad:40:87:0e:60:93:a5:1a:9c:
b4:9b:b8:5b:46:e2:ba:ed:b3:77:70:fd:1b:2b:88:c2:da:1e:
d8:39:48:02:42:7c:19:b6:10:35:c5:4e:b0:5f:d0:6c:08:98:
58:a8:0f:90:85:26:1f:f8:e3:88:52:85:c3:a5:4b:85:21:4d:
b1:4a:a5:a0:64:97:43:aa:4b:cb:0d:cb:d1:8d:52:0b:9d:21:
ef:7d:28:88:a9:1b:4b:8c:db:95:64:4d:1b:48:e4:fa:45:73:
a9:d8:71:c6:9b:56:82:5a:40:99:15:f2:7e:d8:11:22:71:5d:
5d:57:bb:ad:ee:c3:c8:dd:6c:52:b8:03:cd:55:86:58:49:23:
c0:5d:38:ea:92:6a:12:f8:70:2b:88:67:45:8f:e8:40:6c:9c:
b8:8e:f9:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org