Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iOO7BBZn0OYEdb2ikpbqht_g2JQ.roa
File: iOO7BBZn0OYEdb2ikpbqht_g2JQ.roa (raw, json)
Hash identifier: abuN7EG7AKZ6mFim8/Vc3g1vy3bwOG3F7M6u0OLIIYg=
Subject key identifier: 88:E3:BB:04:16:67:D0:E6:04:75:BD:A2:92:96:EA:86:DF:E0:D8:94
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2791D1B8
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iOO7BBZn0OYEdb2ikpbqht_g2JQ.roa
Signing time: Sat 01 Jan 2022 16:08:20 +0000
ROA not before: Sat 01 Jan 2022 16:08:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44343
IP address blocks: 31.148.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 663867832 (0x2791d1b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88e3bb041667d0e60475bda29296ea86dfe0d894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c6:74:0e:13:a0:64:b3:34:cf:ce:60:69:9f:
61:70:a1:c6:fb:66:65:37:dd:35:98:94:a5:03:58:
12:bf:8d:c9:f3:ae:db:05:f9:1e:68:a5:75:ef:8c:
d1:6e:02:c9:13:b2:22:23:dc:d8:d8:e0:96:39:c6:
73:1d:4f:72:0b:28:ad:73:d5:59:2e:ac:84:09:47:
e1:04:ac:b4:3f:cf:e1:62:21:1c:d5:e3:a6:05:51:
0e:6b:6a:76:ca:50:02:0a:a9:4c:e1:c3:c6:aa:d5:
c1:69:c0:1b:84:73:56:15:65:8b:9c:d8:15:7c:06:
3f:81:cb:a2:c5:2e:f6:68:a5:6f:5f:11:40:47:a5:
cd:d3:6b:ff:a3:f6:bd:16:ee:c6:a2:76:8e:af:91:
60:0a:84:15:25:e8:0c:9c:f0:3a:33:ae:d1:69:c1:
b0:ad:ad:83:81:9e:10:12:64:c8:1b:9a:bc:d1:6b:
10:32:9a:38:77:bf:a9:da:d0:b2:12:1c:eb:7f:85:
6a:c1:a3:d7:4a:3e:78:a5:c4:3d:4c:9c:88:f6:99:
27:6a:6a:3f:72:c2:b0:c2:1a:d9:8a:b1:9e:2b:3b:
74:76:96:b3:09:fc:f6:5b:94:b4:d6:62:f5:16:4d:
20:62:36:39:9b:8d:8f:ce:fc:f8:58:1e:03:b1:81:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E3:BB:04:16:67:D0:E6:04:75:BD:A2:92:96:EA:86:DF:E0:D8:94
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iOO7BBZn0OYEdb2ikpbqht_g2JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.30.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:50:46:f5:52:29:48:64:87:45:e5:87:d7:e1:aa:d1:4a:dc:
16:e0:f8:fe:70:ec:61:b5:de:ce:a0:4e:81:16:f9:32:23:c3:
61:c1:19:a8:4a:52:14:db:4f:ea:b2:1c:0e:b5:c0:b0:1a:4c:
7d:2c:ac:d0:4e:ae:42:65:56:ad:63:a5:95:d8:d6:48:ce:3b:
9d:10:7a:9c:0d:7c:b5:3c:54:00:dc:88:e2:7a:ec:80:ab:3f:
ae:b1:d9:a8:fb:e4:2a:ad:dd:5c:57:50:0b:01:cc:78:9c:6e:
b6:03:e7:07:ee:22:7d:3e:dd:e0:cb:c8:52:49:12:c7:6c:3f:
8a:41:35:bb:b4:4e:c2:5b:a5:20:e6:06:f1:1c:c9:33:71:18:
15:69:88:59:52:fb:4e:f4:6e:26:ee:90:14:1f:af:3a:8e:62:
f8:7e:d5:56:ac:ee:3c:75:73:c6:e1:a9:36:9d:59:18:5e:0b:
4c:5c:ab:3c:6a:d3:74:46:a3:91:2a:e6:73:8d:73:79:55:c9:
f5:f4:93:37:87:b4:0d:34:00:17:ca:d8:00:0b:2b:ed:ca:50:
ea:7e:83:a0:42:fe:77:5b:24:e5:86:b8:66:f5:0a:aa:ba:08:
f1:b4:91:6c:f8:ec:f5:6e:1e:82:3f:d0:09:d0:0e:a6:96:2a:
8a:3f:bc:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org