Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/_EUDaX9HEGw-5QXpxMlISqq8ADA.roa
File: _EUDaX9HEGw-5QXpxMlISqq8ADA.roa (raw, json)
Hash identifier: bMbVCj3rGGHP02F/oyOCCaX+/tKF4To8wMv+LE02CjU=
Subject key identifier: FC:45:03:69:7F:47:10:6C:3E:E5:05:E9:C4:C9:48:4A:AA:BC:00:30
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018BDEB1E1E9A721083F6C92248898A645AC
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/_EUDaX9HEGw-5QXpxMlISqq8ADA.roa
Signing time: Fri 17 Nov 2023 19:11:21 +0000
ROA not before: Fri 17 Nov 2023 19:11:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216033
IP address blocks: 31.40.160.0/23 maxlen: 23
31.40.150.0/24 maxlen: 24
31.40.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:b1:e1:e9:a7:21:08:3f:6c:92:24:88:98:a6:45:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Nov 17 19:11:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc4503697f47106c3ee505e9c4c9484aaabc0030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8b:29:18:10:af:63:63:e5:76:00:2d:55:28:
41:25:76:cf:24:7c:7d:7f:1b:78:87:74:fe:c3:90:
c9:de:ac:97:ad:8d:c3:8c:b8:ac:bd:7c:37:87:fb:
da:cf:a2:dd:4e:0c:09:6e:58:7f:3e:86:ed:5e:7f:
c8:51:5b:95:bd:28:8e:88:67:a3:13:33:83:a6:ca:
46:eb:23:be:e3:d2:51:7a:45:d8:2a:29:b6:2d:32:
e7:64:1b:20:d1:81:a7:de:67:d4:97:69:28:24:b1:
a0:21:02:f5:ff:f4:d2:ce:16:b7:68:27:b9:13:d0:
3f:30:e4:c6:80:9a:b8:26:91:d7:c3:ac:e3:cb:79:
d8:48:f6:3f:85:38:ef:df:22:1a:71:74:4b:29:85:
86:c3:d7:0d:af:c7:be:c8:bc:ca:27:10:13:fb:18:
ff:f6:ac:dc:e1:7a:00:6a:f7:0e:8e:d4:e7:96:2b:
75:0d:77:07:49:f5:7b:d6:30:c4:4d:7e:40:d1:c4:
12:34:d4:1e:c1:76:40:99:c2:5a:6e:4e:73:34:be:
61:6e:64:61:e9:a0:0d:8c:38:b0:17:57:7d:03:b1:
57:af:91:33:e9:77:fa:dd:84:ff:29:b2:9f:31:b1:
6c:59:6d:db:59:22:c2:dd:63:65:30:4e:63:a3:db:
35:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:45:03:69:7F:47:10:6C:3E:E5:05:E9:C4:C9:48:4A:AA:BC:00:30
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/_EUDaX9HEGw-5QXpxMlISqq8ADA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.150.0/24
31.40.154.0/24
31.40.160.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:16:c4:d2:d0:4d:5e:f9:08:91:f4:1e:ba:9a:48:b8:39:12:
c0:8c:7f:12:7a:de:a6:49:90:40:3b:5b:ed:89:c6:b2:4e:ad:
ac:cd:47:cc:89:d8:0c:3a:c8:44:92:5a:78:28:71:10:60:b8:
fd:f7:72:9b:64:d7:26:23:20:8f:7f:47:8d:d1:79:9c:e5:b0:
cf:5a:13:02:b8:cc:e1:a3:2d:9e:76:aa:5d:e5:69:67:b0:68:
36:74:c2:f2:12:30:71:a2:77:ca:84:ec:28:8f:a6:7e:b7:8d:
73:1f:28:16:63:f2:bc:20:72:91:00:c5:8e:77:b5:bb:ea:3c:
b0:a9:83:3b:2a:5b:03:e1:77:d7:fb:07:86:2f:88:53:79:16:
3c:02:1e:18:91:e5:c3:c1:3c:fb:62:cf:25:57:11:22:49:df:
de:a7:9d:3e:c4:85:68:55:41:3e:1e:c0:a1:eb:f8:c7:82:9a:
41:45:57:a7:e8:ab:e0:b2:05:76:b8:dd:6f:c3:ef:01:18:c7:
52:ba:a1:d9:d8:49:ad:cf:9b:09:8d:3d:9e:7a:b1:84:54:73:
33:d9:14:24:4a:f2:35:58:9f:b5:e9:5f:7e:7d:98:fb:4a:4a:
f3:a9:2a:6e:e9:53:1b:13:a2:bb:35:9e:fc:1a:4f:70:d8:e3:
61:22:6b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:28 2025 by rpki-client