Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/qBRStI94E50kY_ytuIK0V1TdCS4.roa
File: qBRStI94E50kY_ytuIK0V1TdCS4.roa (raw, json)
Hash identifier: rg/NpydyffrX6xh+Vc4j9++NcQn94oCE8MJklzRcQ6o=
Subject key identifier: A8:14:52:B4:8F:78:13:9D:24:63:FC:AD:B8:82:B4:57:54:DD:09:2E
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 01848466DBE9D8BA9E4DA87301D049D75E9F
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/qBRStI94E50kY_ytuIK0V1TdCS4.roa
Signing time: Thu 17 Nov 2022 07:04:04 +0000
ROA not before: Thu 17 Nov 2022 07:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206810
IP address blocks: 31.40.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:66:db:e9:d8:ba:9e:4d:a8:73:01:d0:49:d7:5e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Nov 17 07:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a81452b48f78139d2463fcadb882b45754dd092e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5a:e0:f0:77:1e:0a:af:e3:2f:0d:a0:0d:9c:
ee:81:0a:8d:a0:1b:53:a3:da:f1:53:e0:e2:16:da:
33:de:ea:2a:74:3e:1e:78:87:10:40:5f:5c:d6:a6:
ee:2a:aa:09:63:3c:05:13:18:f6:66:40:95:c7:52:
07:13:53:b4:ab:85:a1:26:21:67:b6:70:cc:68:78:
19:f6:ec:3a:9f:c4:37:ef:98:60:a5:d0:8d:70:e9:
42:7d:eb:ba:11:e7:48:fd:15:4d:d5:35:1e:72:02:
80:83:90:fb:fa:ef:f8:70:1e:ce:d5:47:1a:5b:29:
ce:34:9d:c3:1d:3f:f7:6b:5a:7b:b7:64:38:76:c9:
00:89:8f:8d:7c:2f:82:57:ac:9a:76:35:27:3f:ae:
a0:dd:64:1a:a7:7c:60:ae:4e:e8:cd:b7:ca:20:d7:
f8:f9:ef:a3:08:f4:32:19:00:c3:d6:a5:9a:66:54:
a3:0c:76:5d:6e:4c:f4:84:ef:74:24:24:75:a9:1a:
b6:bc:51:0b:4d:3b:4f:00:f3:3e:0e:44:0c:9a:e7:
a7:95:32:ab:7b:3f:6f:18:e1:ca:e8:f1:4d:7c:f9:
04:37:d3:32:d7:73:38:9f:7d:b6:3f:69:59:fa:70:
e7:37:b1:52:00:a9:62:43:d4:d3:23:20:e8:9d:79:
b2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:14:52:B4:8F:78:13:9D:24:63:FC:AD:B8:82:B4:57:54:DD:09:2E
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/qBRStI94E50kY_ytuIK0V1TdCS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.157.0/24
Signature Algorithm: sha256WithRSAEncryption
62:84:1b:86:d2:2f:90:c7:5b:88:1b:fe:71:78:f0:11:b0:e9:
25:72:e7:19:eb:00:4d:3e:c4:c8:ac:47:58:00:e8:4d:95:12:
74:7d:1a:bc:e4:18:3f:2e:02:57:f0:73:f3:82:68:93:2e:06:
60:92:88:0a:04:36:9c:c1:41:7f:16:32:ba:2a:a3:1f:65:77:
07:14:6a:2f:3d:5a:48:ed:45:9d:b2:f8:32:f2:d7:5c:eb:77:
7f:b7:f6:7e:14:19:5c:75:f8:1f:83:f3:bd:a3:bd:3e:e5:98:
e5:74:54:1e:94:04:6c:cd:04:5f:be:2b:01:49:c3:7b:cf:ad:
64:f6:5a:14:ed:0f:0d:b2:b3:9f:db:d7:00:ca:fb:df:69:fa:
4c:5f:56:c8:7c:bd:49:65:d3:96:d2:de:b5:a7:e1:ac:6e:1b:
ba:96:42:d9:b7:97:8e:72:50:63:70:bf:64:7e:e1:e3:55:38:
a9:d2:d8:4c:64:fa:75:0f:d0:fe:20:23:b1:6e:bd:a3:12:7e:
fc:87:ad:cf:2f:ff:44:5d:09:78:4f:67:3f:1a:62:e8:a0:19:
98:ea:b3:fa:5b:5b:3f:a5:15:14:69:4e:38:d0:d2:36:a5:9a:
c2:1d:45:c5:c1:64:95:76:68:06:1c:84:ae:26:2b:fd:16:c3:
32:61:11:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-ams.rpki-client.org