Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/bKC1aGS5QK1-DdOZPUqBZvhJm3c.roa
File: bKC1aGS5QK1-DdOZPUqBZvhJm3c.roa (raw, json)
Hash identifier: OHUtA6QY8QqXvUhOuypnOXFJEaDcMUW0Bl3KTyMUo/c=
Subject key identifier: 6C:A0:B5:68:64:B9:40:AD:7E:0D:D3:99:3D:4A:81:66:F8:49:9B:77
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 0880E0DB
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/bKC1aGS5QK1-DdOZPUqBZvhJm3c.roa
Signing time: Sat 01 Jan 2022 14:59:56 +0000
ROA not before: Sat 01 Jan 2022 14:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12695
IP address blocks: 31.40.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142663899 (0x880e0db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 1 14:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ca0b56864b940ad7e0dd3993d4a8166f8499b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e1:03:9f:fd:3f:98:11:d4:57:7c:d0:5a:65:
d1:fa:13:e3:90:a4:8b:14:7a:9f:5d:ae:fe:96:36:
74:63:28:ab:c7:a1:3d:43:f4:58:33:d5:2d:34:4f:
bf:36:03:4f:02:f6:2c:7f:9d:6a:3e:14:17:c6:aa:
25:56:3f:b8:64:fe:c1:56:4e:ea:cb:2d:2a:c2:ae:
d0:68:16:8a:9d:e8:03:e3:1c:f0:dd:1b:e3:0a:e8:
f4:4f:3b:22:94:ed:ce:41:99:e5:a3:4a:69:45:fd:
70:22:94:7e:0c:04:ec:71:10:b8:20:b8:7d:9c:9a:
29:95:19:48:e2:52:d1:c4:c5:a7:98:3c:73:26:28:
7c:1f:b9:0f:b9:a1:d6:ae:bd:59:1d:77:9f:fe:10:
7d:54:ec:53:b2:04:84:c4:18:73:fb:68:03:3c:e0:
26:f8:25:bc:ed:80:89:6b:50:d7:78:6c:e7:c2:9b:
89:4c:ab:e5:b7:79:6c:93:03:27:c4:c4:5b:a5:ff:
49:31:ec:3b:33:48:4b:3d:c5:02:be:bc:71:00:00:
71:59:62:c2:b3:63:ae:bf:ed:60:bd:6d:44:4f:d0:
7f:33:bb:a4:7e:74:4a:14:de:64:9e:4e:f0:31:a2:
d9:39:a7:56:b5:20:72:f1:15:87:80:0a:d5:a0:27:
e8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A0:B5:68:64:B9:40:AD:7E:0D:D3:99:3D:4A:81:66:F8:49:9B:77
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/bKC1aGS5QK1-DdOZPUqBZvhJm3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.164.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ff:a6:b4:44:0b:a4:2e:58:cf:06:ec:a3:5b:d3:73:55:b2:
c7:0f:6e:30:42:2a:21:97:fe:e6:cd:ee:8e:c9:f0:db:c3:9f:
6c:a8:ad:f3:43:13:20:a4:3c:04:1c:d5:6a:c7:83:77:3c:1f:
a1:48:f8:86:2c:97:00:c3:9e:bb:c6:26:11:f5:12:43:b7:d4:
ec:80:77:a6:47:36:05:3e:15:be:92:33:26:05:72:ac:aa:22:
38:fa:c8:04:01:51:35:19:01:17:5d:92:81:76:e8:15:3a:ef:
fc:df:8d:75:88:44:1f:21:d3:59:5f:1d:42:08:5b:ea:24:2b:
6a:ba:52:0c:14:ce:2d:99:bd:85:43:d9:56:78:41:20:54:2b:
a5:ad:fe:d3:28:66:79:2a:be:38:4e:37:bd:39:f2:6e:3d:04:
37:60:75:47:99:16:70:3d:11:39:4f:b8:d6:9d:a0:54:fa:d5:
e0:23:08:39:db:e6:29:75:81:15:ff:a9:24:a8:40:4c:49:9f:
f8:0f:e8:e9:c5:92:ca:17:7c:22:3d:a1:18:6c:24:b8:bc:03:
7e:a2:ea:de:84:ee:04:ad:44:91:3c:ab:d3:e9:e4:b4:ad:f5:
96:dd:29:99:46:41:ad:e2:35:fb:3e:0f:53:60:2c:82:26:9f:
7e:86:a2:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:04 2023 by rpki-client on console-fra.rpki-client.org