Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/IAMKdvIf_UQeTvhs94bdDAgckbQ.roa
File: IAMKdvIf_UQeTvhs94bdDAgckbQ.roa (raw, json)
Hash identifier: 7LZDVaE/0nGO3yDZo9JUgm38U4limFsrUrOTJaR433A=
Subject key identifier: 20:03:0A:76:F2:1F:FD:44:1E:4E:F8:6C:F7:86:DD:0C:08:1C:91:B4
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0183476B756E99B8209D798BE93A040659D1
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/IAMKdvIf_UQeTvhs94bdDAgckbQ.roa
Signing time: Fri 16 Sep 2022 17:49:28 +0000
ROA not before: Fri 16 Sep 2022 17:49:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 31.14.37.0/24 maxlen: 24
185.155.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:47:6b:75:6e:99:b8:20:9d:79:8b:e9:3a:04:06:59:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Sep 16 17:49:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20030a76f21ffd441e4ef86cf786dd0c081c91b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:51:4b:1b:5b:03:cd:39:a2:72:f8:ce:d7:57:
a9:dd:53:9e:c9:34:0f:e1:f4:5a:fc:85:cb:d6:6c:
f0:66:50:b8:b1:63:38:1d:9e:d8:f3:25:3e:d0:c6:
ad:b3:22:7a:75:3f:08:2d:12:ff:56:60:ce:54:4c:
8b:18:3d:87:49:1a:6c:fc:fa:8b:40:08:b0:56:41:
ea:99:15:e8:ce:9e:78:5d:e6:29:92:7c:ec:6c:f4:
04:3e:97:98:27:e5:b5:ce:d1:87:2c:d1:eb:19:b2:
30:b6:07:cf:5a:96:f9:65:1e:aa:5b:3d:00:ed:1b:
f9:c3:43:95:a3:57:fc:b7:97:f1:f3:45:75:80:70:
89:b6:ad:d6:e4:6f:47:8b:49:33:e7:15:2c:0c:95:
a8:d7:e3:42:dc:53:ec:60:33:36:7c:55:c7:6d:93:
b0:23:f2:b9:fc:fa:47:63:7b:a3:f2:4e:df:d5:74:
90:63:6c:b7:8e:2e:04:cb:7c:b3:8b:fa:d9:e4:d0:
6c:7e:b3:96:a0:27:19:d4:75:b9:ea:94:26:52:6d:
39:a4:2b:aa:d3:40:b2:9f:ab:96:4a:bc:d5:22:11:
19:95:49:88:3f:c8:11:67:d6:b9:77:d3:42:15:d4:
12:b1:4e:22:2f:e3:97:f9:dd:ff:61:70:fa:70:a2:
52:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:03:0A:76:F2:1F:FD:44:1E:4E:F8:6C:F7:86:DD:0C:08:1C:91:B4
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/IAMKdvIf_UQeTvhs94bdDAgckbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.37.0/24
185.155.55.0/24
Signature Algorithm: sha256WithRSAEncryption
16:8b:81:b4:d8:76:90:67:cd:b8:c3:ac:b2:06:8f:b9:39:f7:
bf:67:79:d1:bb:2c:14:42:ce:7d:3e:71:80:ce:37:7d:74:ec:
0d:55:cc:36:cb:d4:fd:d4:e0:2a:5c:65:23:b6:bb:e6:74:ae:
73:34:67:81:d7:33:f4:02:a2:e5:a8:1a:98:af:4a:b5:75:f6:
e3:25:9d:cd:b1:2c:22:7b:54:a3:0d:a9:df:78:d7:c0:20:c3:
b8:8b:b2:ce:9f:fd:92:6a:02:7d:ff:1e:43:1e:d2:40:b0:ca:
ba:be:59:04:ee:98:75:b7:0e:2e:1a:0b:0a:2f:f3:90:70:fd:
fb:e3:45:1f:84:5c:4c:b2:a8:99:bd:8b:ae:13:a9:66:3a:59:
c8:23:c9:92:d7:12:73:39:8e:5d:09:ce:ad:37:31:be:9c:ad:
56:cb:9c:50:19:b3:2b:36:a7:de:b4:c6:a3:32:5b:66:db:bc:
e2:1c:d0:0b:2a:56:6e:5a:5d:a4:7d:bc:fe:7b:1e:25:db:8e:
d8:87:d0:79:8e:93:cc:ee:35:72:f4:60:a1:92:5e:4e:38:81:
a9:5f:e5:b8:da:8b:03:7a:5e:f0:39:41:47:f7:8e:c7:d8:d7:
fc:c5:3f:51:ef:b6:44:b0:b2:e5:81:53:5e:6f:e3:10:58:24:
23:a3:75:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org