Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6ilY2K0zb02kRAPlhQjjEDYcDLc.roa
File: 6ilY2K0zb02kRAPlhQjjEDYcDLc.roa (raw, json)
Hash identifier: jqs32p8wAnSh+Vw+KMOgfs/e8iptq0QoTkb1ksZ22Uw=
Subject key identifier: EA:29:58:D8:AD:33:6F:4D:A4:44:03:E5:85:08:E3:10:36:1C:0C:B7
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42BC3055
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6ilY2K0zb02kRAPlhQjjEDYcDLc.roa
Signing time: Thu 28 Apr 2022 16:17:07 +0000
ROA not before: Thu 28 Apr 2022 16:17:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39105
IP address blocks: 31.14.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1119629397 (0x42bc3055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Apr 28 16:17:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea2958d8ad336f4da44403e58508e310361c0cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:89:e8:d8:22:95:35:4e:71:da:b2:b8:21:03:
93:12:c5:05:af:d8:ad:e2:ea:6a:4f:a4:00:28:15:
48:9e:68:34:b5:44:51:44:26:68:1e:c2:c2:27:3f:
0d:11:3a:6a:f9:39:5a:2f:aa:81:15:63:33:1a:5c:
fd:40:58:84:d7:08:87:93:6b:d9:0b:ae:ee:f3:de:
85:58:47:85:05:04:ce:79:a3:be:4f:a8:20:b5:5d:
14:14:0f:27:f4:e8:ba:8d:29:21:8c:10:5c:f1:72:
4b:55:dd:72:43:95:28:17:d9:bc:c7:b0:00:a7:bd:
06:1a:5d:fd:ee:8b:dd:cb:f8:12:64:94:ce:cd:a2:
97:fd:92:5e:7d:4f:95:4c:ea:29:de:a7:6d:79:f2:
87:d1:f6:87:75:bc:f4:71:2f:3e:f1:18:de:f2:a3:
a1:23:35:8b:42:bf:1c:92:c0:68:6c:a7:2f:bc:e1:
94:4c:9e:c7:22:b1:d6:7e:c6:e8:88:8a:71:cb:4d:
63:ab:e4:e4:e8:2a:cc:0f:e8:c1:41:77:d3:80:bb:
64:5f:23:6a:78:63:fd:7d:4c:f8:a5:3e:cf:4b:ee:
86:49:60:d8:ff:c1:04:84:25:3a:16:44:33:72:1c:
8e:02:38:04:a5:cc:70:69:21:65:3f:f6:48:0e:a9:
bc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:29:58:D8:AD:33:6F:4D:A4:44:03:E5:85:08:E3:10:36:1C:0C:B7
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/6ilY2K0zb02kRAPlhQjjEDYcDLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.161.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b9:ba:19:12:32:ec:09:d2:95:c6:03:28:ef:11:7e:c8:8c:
8b:06:61:c5:09:a6:cf:1d:cb:36:38:3a:c0:12:5f:7b:a8:b1:
03:0e:ba:15:b2:96:1b:47:30:6f:3d:35:ae:87:cc:c7:9f:0a:
ee:1b:66:9d:39:63:e9:1a:41:82:e9:27:dc:35:d6:9c:b7:c9:
71:38:e4:28:ca:6d:10:3a:5d:31:dc:35:c1:19:b3:c8:44:bb:
68:c3:72:c5:ba:32:1c:6f:79:9e:e7:aa:87:f8:5a:6c:c6:a7:
c3:7b:fd:2f:cd:4d:ea:3d:99:3b:8e:81:ef:74:9d:cc:a6:0b:
86:d6:24:ea:34:ea:fc:5d:42:ec:e4:5f:01:9d:fd:9b:04:01:
dc:65:4d:b3:ff:84:89:d4:4a:97:0d:f7:0d:3a:2d:fc:80:cc:
3c:e6:1d:44:b6:1a:50:bc:d2:82:c5:41:c1:b2:ac:2e:6f:72:
2c:a8:e4:f8:d8:2d:d7:20:9b:c7:4c:fc:b1:40:1e:24:81:56:
ac:71:8b:b0:bc:1e:a9:a1:f7:e3:79:d5:ad:19:4a:30:92:58:
fc:bf:9e:19:22:de:95:ba:d4:42:e7:fd:12:5d:bb:2c:6a:98:
d3:e6:3a:76:06:bd:8f:81:d3:6d:a8:bb:fa:0d:bb:f9:fc:87:
fd:76:3e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-ams.rpki-client.org