Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eiIIglDD8n0FfB9X7L9pY_jwTEo.roa
File: eiIIglDD8n0FfB9X7L9pY_jwTEo.roa (raw, json)
Hash identifier: VCNBxu5PjGwCAY/k1/LOF9dBg8694eemFeT/MFpn1z4=
Subject key identifier: 7A:22:08:82:50:C3:F2:7D:05:7C:1F:57:EC:BF:69:63:F8:F0:4C:4A
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01847BE6F85783F38964231B71A5842FE193
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eiIIglDD8n0FfB9X7L9pY_jwTEo.roa
Signing time: Tue 15 Nov 2022 15:27:25 +0000
ROA not before: Tue 15 Nov 2022 15:27:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 31.14.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:e6:f8:57:83:f3:89:64:23:1b:71:a5:84:2f:e1:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Nov 15 15:27:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a22088250c3f27d057c1f57ecbf6963f8f04c4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:94:47:02:5f:fe:8a:eb:75:f3:3a:50:c6:69:
11:1a:54:ba:4c:6b:73:35:63:39:f4:f5:37:ca:5e:
00:d9:f4:dd:80:9d:7a:45:5a:31:be:83:a1:3a:62:
61:ad:67:71:91:ae:b3:4b:2c:d2:6c:5e:50:97:a9:
34:02:d5:67:75:38:91:95:8a:03:5f:51:52:d5:6d:
46:2f:be:b1:8e:83:61:eb:04:52:49:ce:ed:f3:4f:
85:b0:c9:80:09:1c:4b:fa:6b:ba:57:21:e8:2b:9e:
9f:6a:f9:41:52:6f:df:9e:8c:49:9b:23:e5:d0:4c:
6b:59:6e:3e:26:a4:35:ff:94:a5:cc:d5:f3:48:eb:
d4:db:05:cd:89:bc:17:c0:d8:c3:81:7a:5b:86:b6:
4a:87:8e:ca:a0:39:fc:4c:60:f2:75:be:60:05:59:
02:60:cd:ba:db:7a:82:1f:fe:48:e1:7c:91:0b:05:
36:f5:92:ad:52:ae:42:41:52:4b:2d:e5:77:7f:7c:
c1:eb:8e:98:c9:e8:b2:37:ba:2b:58:89:01:41:29:
53:55:14:63:57:8b:05:f7:bf:bc:42:ba:a0:a2:d3:
f1:37:6d:4e:d9:9f:24:89:14:cb:d0:2e:f3:29:d5:
c2:3c:35:25:b0:e0:0b:53:ae:96:c8:45:9a:9f:a7:
e2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:22:08:82:50:C3:F2:7D:05:7C:1F:57:EC:BF:69:63:F8:F0:4C:4A
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/eiIIglDD8n0FfB9X7L9pY_jwTEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.36.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d9:0c:57:79:e6:85:b5:9e:40:62:5d:fa:f9:5d:56:e0:2e:
32:8d:19:73:48:2b:aa:5e:99:6c:1d:fa:65:26:9e:f5:c5:a6:
ff:e4:1f:c0:34:cb:8a:1c:c4:99:ce:d3:f3:40:d0:07:8c:8b:
62:a4:2c:8a:e5:69:39:04:70:5f:db:5c:d7:75:37:6d:13:b5:
eb:67:6a:19:12:4e:ce:77:89:19:12:26:a4:cb:c7:83:4b:b2:
e8:d5:41:ea:8f:4b:73:9e:f1:01:2e:77:00:f1:10:13:d5:fb:
96:8f:41:c3:65:a0:00:31:5d:f4:bb:b5:62:ea:dd:3a:82:e7:
49:67:a3:be:21:dc:10:f8:9c:e6:e2:33:fa:7a:a6:fe:5d:fa:
ab:96:df:0b:6e:1f:af:d4:11:5c:a5:96:86:e9:5c:a4:6e:1a:
6a:b4:3a:25:64:f3:81:44:81:4e:4e:18:d6:02:95:56:ce:a7:
fd:19:9c:cb:8e:5f:a9:41:08:94:e3:c2:bb:1c:68:58:4c:1e:
9c:18:80:c9:b1:82:cf:e9:74:13:ea:f8:70:a7:96:da:84:af:
4d:27:c6:95:e6:a8:1e:06:9c:97:17:92:51:3a:ac:a4:73:fd:
eb:30:7a:e1:97:90:b6:6a:cf:b8:06:36:a0:f6:03:96:e8:26:
70:b6:46:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org