Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/u-6dWSpJ7944KIcEPGpOSWGW4t0.roa
File: u-6dWSpJ7944KIcEPGpOSWGW4t0.roa (raw, json)
Hash identifier: llrQ5Ri14gJCEKR4h+3W/O3/MgWqtgWU1uTPcwkoWU4=
Subject key identifier: BB:EE:9D:59:2A:49:EF:DE:38:28:87:04:3C:6A:4E:49:61:96:E2:DD
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0512A1DB
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/u-6dWSpJ7944KIcEPGpOSWGW4t0.roa
Signing time: Wed 29 Jun 2022 14:02:02 +0000
ROA not before: Wed 29 Jun 2022 14:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208972
IP address blocks: 31.210.37.0/24 maxlen: 24
31.210.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85107163 (0x512a1db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 14:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbee9d592a49efde382887043c6a4e496196e2dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cc:61:bc:10:9e:06:53:da:cd:c2:2d:70:ea:
c6:a0:5f:04:85:5c:64:67:6c:1c:ac:06:2e:bd:81:
6a:b8:d0:c6:5c:72:4b:e2:71:fc:9c:82:81:7e:a1:
b8:e1:f2:1f:8d:7e:0f:d4:42:f9:8e:6c:ac:5f:62:
5b:e2:ae:b1:2a:d6:e7:97:b5:4d:1d:6a:af:ee:11:
47:67:ed:a0:df:3a:0d:8c:0b:b0:bc:8d:76:70:da:
6a:f3:3f:39:b0:63:67:5b:c5:e4:8f:e8:fa:19:c3:
dd:e0:85:03:b7:46:a9:b6:cf:a8:4f:1c:51:4b:b7:
fc:fc:0b:31:fb:d6:fc:22:0a:52:0a:ff:2e:8b:46:
15:30:b3:e7:08:e0:f2:4a:f0:ab:b4:86:e0:2d:34:
0c:60:fc:9d:99:5c:c4:aa:11:f4:62:2e:9d:05:65:
cc:05:10:14:ea:27:5b:39:43:64:85:d2:55:5b:0e:
99:65:9f:c5:b7:bb:1f:5f:c8:ff:f4:f5:70:af:14:
0d:41:a3:ac:23:c9:24:91:38:61:1d:05:46:bb:f7:
b4:71:ee:89:2f:8d:7f:66:f1:53:a5:ac:72:2e:b4:
6a:12:32:c0:92:8f:5e:73:e7:49:ad:a9:b9:dd:2c:
19:a2:f9:be:e9:66:f6:1e:fa:1a:e2:5b:c7:c5:f5:
af:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EE:9D:59:2A:49:EF:DE:38:28:87:04:3C:6A:4E:49:61:96:E2:DD
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/u-6dWSpJ7944KIcEPGpOSWGW4t0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.37.0-31.210.38.255
Signature Algorithm: sha256WithRSAEncryption
58:6e:de:1c:66:b5:59:06:8d:e9:24:38:f9:3e:31:bf:4f:88:
22:c0:de:a6:13:0b:e6:64:15:af:44:c6:3b:15:11:e7:63:c4:
96:c5:dd:97:fb:da:9e:de:33:a0:1b:3b:1d:ec:a9:63:b0:88:
f5:28:7d:e2:08:ed:f6:bb:d3:7a:c7:54:00:2c:bd:74:43:ff:
db:af:63:3d:d1:20:07:3c:34:5c:8b:cc:14:d7:ce:0a:85:42:
cb:38:d2:99:95:ad:71:92:e5:57:cc:5c:80:6d:3f:1f:43:4f:
00:37:79:c4:2d:4f:37:a5:57:b5:f1:11:c8:47:85:b5:5d:9e:
31:61:8b:d7:ab:37:5e:84:fb:87:b6:e3:75:88:1a:61:c9:7b:
c6:83:ce:5d:08:9b:c5:37:d2:65:65:5e:2f:45:2c:98:01:26:
41:16:1a:69:8f:57:f8:24:16:0f:70:67:bc:d3:42:ee:bc:2c:
1f:86:92:29:c5:ad:e1:91:68:fb:03:87:97:c8:38:74:0c:e2:
82:d7:c3:fd:a3:0b:ed:62:b6:ba:1a:a2:44:07:45:1c:ca:22:
66:b0:75:26:cb:04:f0:ff:2b:8c:f9:e1:6e:db:e4:7c:f9:f7:
28:10:b3:8e:46:66:c1:d3:4a:c4:ed:ca:f1:d4:16:4f:79:99:
59:e2:5d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org