Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/5x5UvFpnm46WZS0iC1eWhEnn25o.roa
File: 5x5UvFpnm46WZS0iC1eWhEnn25o.roa (raw, json)
Hash identifier: 6HFhdL3YSsAau4OJlpz8RmhshvZZPsJOQaaZWcm5YG4=
Subject key identifier: E7:1E:54:BC:5A:67:9B:8E:96:65:2D:22:0B:57:96:84:49:E7:DB:9A
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0182010165AD448CACBB71C502EFA40E4EFF
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/5x5UvFpnm46WZS0iC1eWhEnn25o.roa
Signing time: Fri 15 Jul 2022 08:37:24 +0000
ROA not before: Fri 15 Jul 2022 08:37:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44181
IP address blocks: 31.7.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:01:65:ad:44:8c:ac:bb:71:c5:02:ef:a4:0e:4e:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 15 08:37:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e71e54bc5a679b8e96652d220b57968449e7db9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9c:ec:e9:dc:23:3a:bd:04:f1:a8:e9:ba:91:
4c:54:96:8c:ce:4e:25:2f:0c:3f:c5:03:97:96:79:
11:d1:af:71:fe:5c:1a:a4:e3:4d:9e:b3:94:a6:13:
48:ef:1b:ac:42:a5:bf:22:87:43:33:d7:19:a4:f0:
4e:c1:96:79:1a:d1:50:02:76:d9:bf:12:6e:b9:73:
6b:08:c3:95:1e:1e:73:56:90:dd:56:6c:e4:5f:73:
0e:c2:e0:a9:5b:a2:7e:a7:31:5b:1f:98:a3:45:a6:
af:27:05:72:38:06:0d:9c:c6:2b:0f:11:12:a5:f0:
a5:47:13:1a:aa:a8:ec:25:7f:b3:b0:84:0f:8a:1c:
66:7e:b5:c6:5b:05:85:54:64:03:78:86:f3:92:77:
3c:da:d6:51:c0:80:b1:0e:2c:fa:d8:b3:25:d8:82:
8a:fc:9c:b4:b0:7d:5c:fa:30:53:0a:46:f0:32:27:
de:87:d6:c3:d3:d6:29:88:7f:19:d0:ff:3d:be:79:
37:c2:27:91:c8:87:15:e1:af:86:3a:47:ca:75:eb:
81:fd:48:2b:5a:bb:40:c8:c0:45:f6:e7:1e:b0:08:
b0:64:6e:27:e1:30:d4:81:22:d7:c5:7a:46:9b:0c:
db:03:76:d0:58:7c:f6:19:7c:d5:8a:d7:0b:c5:01:
44:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1E:54:BC:5A:67:9B:8E:96:65:2D:22:0B:57:96:84:49:E7:DB:9A
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/5x5UvFpnm46WZS0iC1eWhEnn25o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.82.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:dc:a9:39:8a:35:03:86:24:8d:e7:54:2a:98:d7:86:cc:0f:
2c:33:c0:4c:04:45:bc:8b:a3:db:e4:81:14:03:de:8d:0c:2a:
94:d4:ff:63:44:4d:73:ef:47:4b:10:6b:79:83:28:a0:da:5f:
5e:d7:c5:41:a5:26:1e:18:77:1d:d2:da:de:1e:38:99:5a:82:
df:af:70:7c:74:45:f1:06:0f:62:81:86:6b:71:1c:e7:cb:95:
41:7a:08:30:76:c9:d6:c3:b6:c3:14:c7:62:f5:93:5f:ef:a4:
25:25:3d:ba:8a:60:3a:74:db:d7:50:c2:8f:4d:66:c9:69:71:
59:05:9a:8d:b1:2f:b5:8a:8e:0b:1a:1f:47:51:b2:33:b5:d0:
bb:03:8d:a0:e3:30:75:45:7f:17:25:f1:38:ed:78:64:9c:a5:
f6:2a:e6:f5:8f:4a:3a:73:41:7f:13:63:78:e3:c6:ab:f3:8a:
9e:ea:0e:7f:84:2b:be:16:61:c1:fb:ec:03:0e:ac:6b:30:9e:
af:94:13:7c:ec:1e:e3:1f:37:65:5e:5c:a2:e5:e1:8d:fa:b1:
d5:49:ba:4c:6c:e3:94:92:5e:f0:01:c5:e5:8d:03:46:a7:c9:
bc:8a:46:6b:e4:41:50:f9:cf:cf:9f:77:0c:e1:da:94:a1:73:
2c:2a:04:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org