Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/18voRVN5MuvoB3yrAqGWOjnw1iQ.roa
File: 18voRVN5MuvoB3yrAqGWOjnw1iQ.roa (raw, json)
Hash identifier: 05S6RVLsN/qr8oI5bgU5HotfufQwFxSVtQS9JBg2C+c=
Subject key identifier: D7:CB:E8:45:53:79:32:EB:E8:07:7C:AB:02:A1:96:3A:39:F0:D6:24
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018369780A2A0EB3E2CCB7F1BB0AED82B221
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/18voRVN5MuvoB3yrAqGWOjnw1iQ.roa
Signing time: Fri 23 Sep 2022 08:30:18 +0000
ROA not before: Fri 23 Sep 2022 08:30:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209737
IP address blocks: 31.186.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:69:78:0a:2a:0e:b3:e2:cc:b7:f1:bb:0a:ed:82:b2:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Sep 23 08:30:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7cbe845537932ebe8077cab02a1963a39f0d624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:be:2d:a3:01:67:da:83:c1:d2:83:42:0d:2a:
6b:26:75:01:43:11:ee:47:6f:dc:c8:d1:64:a2:52:
1c:ab:a3:08:7d:22:01:3c:ad:bc:ea:53:2e:82:ef:
1e:70:22:0e:d8:1e:74:07:5f:02:13:62:cd:3b:fe:
2c:d4:a3:d3:1e:e4:64:39:86:44:c8:09:e7:b6:69:
61:5f:17:d8:f1:7f:b8:a5:24:ef:94:ee:7a:67:d7:
ae:ef:2c:85:17:a9:5b:8c:c4:5c:41:0a:fb:5e:c8:
32:2a:34:ef:e9:69:b8:c0:50:e9:b0:7a:0b:2e:a1:
b1:84:38:e6:4f:8e:7f:29:35:89:1e:9e:4d:6c:8b:
0d:0d:dc:ba:e9:f6:64:5d:7a:61:c4:e6:d6:a0:58:
50:03:0a:c6:c2:89:25:43:48:a0:ef:a6:9a:0e:9c:
d5:0f:29:59:03:41:74:1c:8e:7a:24:61:19:1a:80:
e6:6c:99:d2:b0:13:ed:1c:86:ec:88:82:3e:54:5e:
02:04:e9:d1:5e:83:59:68:18:32:c4:f9:34:fd:31:
96:89:72:a0:6b:c7:6c:e6:92:18:4e:fe:67:00:2a:
32:f4:c8:f9:08:81:04:d6:0a:a3:ab:1a:c5:20:a3:
e8:d2:52:4d:7b:ab:96:e3:d5:50:b9:89:05:3e:54:
b4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CB:E8:45:53:79:32:EB:E8:07:7C:AB:02:A1:96:3A:39:F0:D6:24
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/18voRVN5MuvoB3yrAqGWOjnw1iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
Signature Algorithm: sha256WithRSAEncryption
18:45:d6:f0:47:82:05:3c:1a:1b:26:0f:7d:86:36:8f:c8:eb:
82:a1:01:2b:2c:e1:20:a3:f2:cb:ee:20:09:be:39:6a:51:24:
38:f8:bb:19:54:0d:16:91:a9:f4:90:f0:79:39:1b:77:e6:95:
17:68:55:e3:07:4b:72:00:fe:db:37:ff:d1:36:9e:fc:41:71:
26:69:0f:b8:06:da:a6:b5:10:2b:a5:1c:58:5f:d0:0f:2f:15:
ea:1e:f1:4f:24:04:ba:bc:d0:13:24:fb:16:d1:70:5a:48:de:
ad:b2:1b:c1:6a:aa:ef:01:ff:a4:a9:53:a3:f7:6d:6d:f6:e1:
7e:ed:d0:bc:d0:7f:7f:d2:05:e1:6a:3c:15:8f:84:82:c8:4e:
84:43:63:bf:33:db:d4:a3:e5:bc:08:e0:b1:1a:ec:cc:6f:db:
ff:9d:e0:5c:0a:bd:fb:4a:4a:e5:6e:a0:24:7c:f1:ee:88:8b:
81:fe:c3:8a:fc:19:95:33:42:c6:8e:9b:a5:4a:11:98:d9:bf:
66:1e:e2:d8:6d:73:46:83:cf:dc:8a:e4:a6:10:50:92:1d:98:
fd:0e:b1:8a:df:63:ff:4d:26:7e:de:2a:be:21:b7:d7:8f:c3:
97:50:03:fb:82:8d:5a:1d:55:ef:a9:7e:8c:47:86:a4:8f:83:
02:d1:81:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org