Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/pOhd-g9Mb6_OFKKqUdXDUIhEv5Q.roa
File: pOhd-g9Mb6_OFKKqUdXDUIhEv5Q.roa (raw, json)
Hash identifier: IMGnGuDXOMvTMKqEaM10u9rzei0fexyXxiVAJqemRg0=
Subject key identifier: A4:E8:5D:FA:0F:4C:6F:AF:CE:14:A2:AA:51:D5:C3:50:88:44:BF:94
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 0183ECD4054E9557477E0442095460492E9F
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/pOhd-g9Mb6_OFKKqUdXDUIhEv5Q.roa
Signing time: Tue 18 Oct 2022 20:41:01 +0000
ROA not before: Tue 18 Oct 2022 20:41:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207574
IP address blocks: 31.24.249.0/24 maxlen: 32
2a12:4946:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:d4:05:4e:95:57:47:7e:04:42:09:54:60:49:2e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Oct 18 20:41:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4e85dfa0f4c6fafce14a2aa51d5c3508844bf94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:97:54:72:30:58:6a:eb:40:dd:70:5d:c1:34:
7f:55:94:35:ff:2b:85:6f:e0:ef:c2:0d:25:c1:b0:
b7:37:76:a4:fb:2c:39:04:ba:89:08:fe:4e:47:1e:
c6:fd:8b:78:e1:c6:d8:b9:c9:d6:04:07:39:fc:7f:
24:84:1b:da:81:9f:88:17:34:58:0c:03:bd:23:10:
5a:4e:fe:09:bc:68:68:a9:88:90:eb:63:e0:24:ce:
bf:6f:5f:1b:1e:32:3e:00:ec:62:4b:fe:59:9f:f1:
27:47:7b:01:83:99:86:18:5d:84:78:10:3b:76:21:
22:13:f6:13:cd:20:51:77:c5:6c:06:92:ad:4b:de:
6d:6f:11:6f:7a:8f:d5:02:4b:8e:8d:75:2c:6b:ce:
f6:44:40:b4:a9:12:7b:ee:f2:74:2e:94:5a:c5:de:
88:ce:e8:ca:b6:30:61:9b:25:63:bc:84:6b:d1:c8:
e2:6c:42:03:fe:e0:d7:e8:76:1d:7a:b8:da:ab:fc:
68:b5:f3:85:60:2f:08:bf:03:7b:f0:01:58:c5:f9:
c7:d7:5f:36:4d:dd:c0:ff:23:85:59:db:8a:20:2a:
27:82:bf:be:51:00:65:0d:f7:bc:a4:9a:8b:6a:57:
c3:03:a6:7b:76:e4:c4:7e:75:50:85:ea:a3:c4:b9:
c7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E8:5D:FA:0F:4C:6F:AF:CE:14:A2:AA:51:D5:C3:50:88:44:BF:94
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/pOhd-g9Mb6_OFKKqUdXDUIhEv5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2a12:4946:3000::/48
Signature Algorithm: sha256WithRSAEncryption
c6:23:9a:64:28:cd:3f:48:71:62:7a:e3:6c:10:f8:d4:0d:82:
2f:53:98:b8:21:c7:e7:a0:e8:ec:db:9a:c1:1e:dc:1d:25:6f:
c7:0e:32:2e:44:fa:89:16:68:45:0b:7f:b6:11:ff:79:01:cd:
d5:e1:c8:af:86:4d:6e:37:09:2d:0e:e5:e0:77:76:15:6a:62:
cf:8b:67:9d:b3:07:2c:c0:26:60:0f:2a:b8:b4:81:b2:5b:60:
ff:30:15:9b:af:37:5d:ec:93:56:62:3d:7b:92:aa:5f:ef:cb:
2d:b7:01:43:4b:ec:05:2f:72:8c:b1:f8:d8:2d:3b:d4:e4:88:
f2:b5:5e:21:6c:78:b0:91:7c:81:58:1c:ba:6d:d4:01:c0:9a:
df:4a:9e:2f:c1:19:79:99:90:c2:bd:61:e7:9c:22:48:a8:a4:
2c:bf:71:6e:2b:cd:9c:9b:d7:50:cd:60:d9:80:62:6e:3a:87:
ab:b8:43:17:a5:75:65:66:2c:ed:bd:20:48:d5:a7:72:d2:0c:
c7:2c:c9:12:6c:e3:35:a5:71:99:e9:6e:b5:e0:a7:0f:da:7f:
6e:aa:00:9b:04:57:2c:9f:08:85:a3:dd:d0:90:02:fc:00:3c:
4d:e6:84:3e:ec:87:53:96:1c:1e:bf:ee:02:8e:48:b1:58:57:
66:47:8e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org