Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ckOrEzLjBo4We0ehoFd_I5qHFM.roa
File: _ckOrEzLjBo4We0ehoFd_I5qHFM.roa (raw, json)
Hash identifier: nKZaxLaz5FSQ0xxzFGkjONvEcgnvnNuJi96HO/g+9ms=
Subject key identifier: FD:C9:0E:AC:4C:CB:8C:1A:38:59:ED:1E:86:81:5D:FC:8E:6A:1C:53
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018460E954857994E88AB380BB82919EDE13
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ckOrEzLjBo4We0ehoFd_I5qHFM.roa
Signing time: Thu 10 Nov 2022 09:40:14 +0000
ROA not before: Thu 10 Nov 2022 09:40:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57152
IP address blocks: 31.210.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:60:e9:54:85:79:94:e8:8a:b3:80:bb:82:91:9e:de:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 10 09:40:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdc90eac4ccb8c1a3859ed1e86815dfc8e6a1c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f7:e3:c4:53:a6:61:85:b1:35:e3:15:6b:b3:
a7:0a:22:eb:eb:8c:e2:eb:4d:17:a6:3d:57:24:fa:
ff:96:d2:d5:c9:26:c5:42:27:23:4c:b5:7d:ed:a8:
52:37:09:bc:88:d1:e3:5a:82:20:69:6d:3d:03:57:
00:d2:ec:41:2b:dc:b6:b5:37:89:2d:fd:a7:f9:8d:
87:85:d6:17:80:88:33:bb:e8:be:4f:e9:98:ff:45:
62:02:9f:8a:9a:c1:87:10:fa:2f:c2:9b:52:d0:ed:
d6:47:71:09:c4:bb:40:5d:d7:f0:f7:11:86:f2:f2:
ff:13:cc:10:85:ae:0e:1d:86:70:01:d2:51:8e:85:
a7:d1:5b:ad:5f:fa:9e:e5:fc:76:a5:18:da:77:41:
36:a7:b2:1a:16:47:d1:11:35:a0:8a:67:26:7f:1e:
9b:3e:60:d6:05:d3:60:cb:ee:09:85:8f:ad:86:08:
7a:9d:b6:dd:25:1f:7b:3f:eb:89:e4:1a:6b:e6:1f:
89:30:b1:51:93:77:45:fc:ec:10:7b:20:6a:96:d2:
15:64:5d:76:bf:d7:99:18:59:45:85:df:51:0c:9b:
70:d9:66:38:e0:9b:d7:60:e6:b0:5a:93:2d:61:85:
c3:fa:4b:21:8b:02:a7:00:a7:e9:83:e5:c7:18:54:
2e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C9:0E:AC:4C:CB:8C:1A:38:59:ED:1E:86:81:5D:FC:8E:6A:1C:53
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/_ckOrEzLjBo4We0ehoFd_I5qHFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.43.0/24
Signature Algorithm: sha256WithRSAEncryption
32:71:63:6d:ac:14:8a:c2:02:9c:98:25:21:8e:6d:5f:04:e4:
f0:dd:a3:7a:30:89:23:a8:73:eb:13:61:53:54:61:57:5f:e1:
27:17:b2:46:d5:ee:e3:2d:b0:e4:fb:f4:76:1d:2b:2f:a9:4c:
64:b4:49:20:56:d7:b4:8f:82:ab:79:1a:79:b6:20:04:c4:bc:
6f:be:96:2a:4c:a1:2c:41:57:83:c8:01:94:65:3a:d5:e1:25:
b5:9d:4d:55:7c:a1:1f:1d:21:a0:71:40:e3:95:62:ab:24:7d:
d6:75:73:d1:f6:53:34:5f:96:2c:1b:63:96:4d:c2:4e:72:4e:
ca:15:92:05:c7:e7:4a:46:0c:3f:30:c6:77:3e:15:48:d2:48:
2f:15:a5:6c:ce:9a:1e:05:cd:9a:81:d8:5d:2c:ce:94:40:42:
23:b0:fd:ae:5b:94:2c:3b:91:42:94:c2:29:32:88:8d:a6:5e:
6b:d1:3d:88:e7:4c:cd:15:52:33:38:12:90:0b:fa:e1:b3:bf:
cc:52:66:25:e0:c0:41:39:60:c0:f6:e7:3b:00:4b:69:47:12:
62:0c:41:fa:76:ae:0e:e0:de:d9:03:d7:0d:72:3f:8b:3a:a0:
8a:ee:25:62:6a:de:76:1c:4a:05:f2:36:39:47:2d:c8:2f:b3:
74:ed:34:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org