Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/E1QsR8q23Hu0heiGyV5A7i_8hYs.roa
File: E1QsR8q23Hu0heiGyV5A7i_8hYs.roa (raw, json)
Hash identifier: kc9nwAc8ZSH03O4BVWiQoc7rtSof86Om7pi3LQygDM8=
Subject key identifier: 13:54:2C:47:CA:B6:DC:7B:B4:85:E8:86:C9:5E:40:EE:2F:FC:85:8B
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 07CBECDD
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/E1QsR8q23Hu0heiGyV5A7i_8hYs.roa
Signing time: Fri 20 May 2022 08:13:29 +0000
ROA not before: Fri 20 May 2022 08:13:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 31.14.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130804957 (0x7cbecdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: May 20 08:13:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13542c47cab6dc7bb485e886c95e40ee2ffc858b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c1:1a:34:8e:3e:22:84:05:61:5a:c0:00:fb:
17:6f:95:1e:36:96:d1:b3:38:a0:d1:3c:45:6b:a3:
d9:3d:42:4c:45:3d:18:83:0e:5f:0f:15:c0:a3:68:
a5:48:1a:53:34:de:c6:d1:cd:53:f2:08:50:4b:1d:
a8:e0:19:0c:72:c9:da:4d:12:c6:af:31:ae:ec:08:
b7:32:54:4a:07:41:55:58:88:c7:84:83:c3:67:6a:
42:d6:44:a2:08:4e:34:2d:05:18:a6:2b:61:ef:0e:
70:39:e3:c4:ea:e1:79:93:c4:14:14:b0:cd:77:ab:
09:a6:6e:d7:03:f5:8c:e6:13:f6:4a:e9:21:98:b5:
7c:79:3e:3e:f0:cf:07:52:fd:67:b6:63:6d:fb:2d:
b6:65:d8:af:42:7d:18:e9:4d:44:af:32:27:8d:d8:
96:64:23:f0:2a:52:b7:a0:7a:7b:d0:f9:8c:2b:ce:
7c:fa:bf:83:66:36:44:7b:6a:25:e0:9d:93:6e:d0:
aa:15:e4:ef:25:88:fb:1c:1d:f7:3e:a6:8e:16:af:
b1:5d:ad:36:56:5a:85:14:81:62:5e:4b:df:49:b3:
70:a9:5d:c5:db:b5:5e:84:76:c8:e1:1f:2d:61:6c:
1b:f4:c0:a0:9a:fa:49:18:b9:d6:f9:39:c4:09:30:
89:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:54:2C:47:CA:B6:DC:7B:B4:85:E8:86:C9:5E:40:EE:2F:FC:85:8B
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/E1QsR8q23Hu0heiGyV5A7i_8hYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.36.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:23:00:e4:ad:23:8e:10:0a:10:6c:67:46:e8:ee:23:22:62:
ce:6d:04:4a:9c:32:64:88:23:f5:13:4a:25:72:c3:1b:50:9f:
2b:1f:76:20:da:d6:cc:f8:01:bc:49:22:d3:59:fa:70:fb:69:
db:af:4d:e1:56:c5:60:76:95:c7:fd:38:f9:00:01:b4:39:77:
2e:29:68:50:13:70:2e:28:80:7a:bf:ea:a1:45:05:3a:ab:6e:
ea:25:cb:31:50:3c:c9:1d:ba:35:1e:04:72:5c:5c:ae:d4:d4:
d0:e4:95:df:56:bb:45:73:e0:0d:58:e0:7c:a7:43:92:db:08:
c8:09:81:37:c5:52:cc:e1:2d:ce:89:08:33:c8:33:07:a4:2e:
b7:13:57:30:13:04:6d:c9:af:eb:c5:90:b1:15:6f:7f:cb:e7:
a6:b1:66:18:e4:02:4e:61:28:09:8d:af:fb:e3:4d:62:d3:1f:
6e:fc:a5:74:e0:db:29:db:c5:1c:cf:2f:0d:c4:3a:7e:4e:13:
4a:ff:e4:18:0b:4e:69:7c:74:fd:fd:ad:c4:fc:15:cb:47:7a:
b9:71:ad:24:12:00:e6:f8:aa:4f:b5:8d:0a:86:fe:59:11:35:
14:ae:54:48:9d:5c:e3:8f:3a:28:9c:c8:84:98:90:23:ea:07:
38:0b:db:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org