Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/A7umTloHpiNGieBmrws5hgmcsmw.roa
File: A7umTloHpiNGieBmrws5hgmcsmw.roa (raw, json)
Hash identifier: cX+82/iVqUIBsrUIIMXxj4XNx8StO9Cw2mDMySTjTf8=
Subject key identifier: 03:BB:A6:4E:5A:07:A6:23:46:89:E0:66:AF:0B:39:86:09:9C:B2:6C
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0181D2FAA624A5E0687D01D93DF4BEEABDD4
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/A7umTloHpiNGieBmrws5hgmcsmw.roa
Signing time: Wed 06 Jul 2022 10:07:30 +0000
ROA not before: Wed 06 Jul 2022 10:07:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198689
IP address blocks: 31.7.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:fa:a6:24:a5:e0:68:7d:01:d9:3d:f4:be:ea:bd:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 6 10:07:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03bba64e5a07a6234689e066af0b3986099cb26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:48:93:b5:21:75:ca:15:4e:63:45:f2:ba:c0:
82:cc:a7:c7:b3:bb:e1:19:1c:b2:1a:ed:79:c7:88:
a2:03:e3:74:71:49:65:a4:29:c1:23:b4:97:f7:28:
93:a1:27:a7:3a:87:ad:79:15:f4:30:1c:9b:bf:40:
02:88:22:68:72:55:7c:74:75:58:92:8b:31:24:f5:
37:e9:bd:dd:22:cd:44:21:a6:30:53:06:1e:07:fb:
06:b6:14:48:88:3c:7a:99:8d:32:28:a7:d8:0c:80:
46:74:c7:70:a5:a4:6e:a1:6b:51:46:cf:93:6f:b1:
c6:4d:9e:fd:bb:b1:3d:94:af:24:63:9b:5d:1f:9b:
3e:f8:81:48:13:eb:65:f4:3e:a7:0c:97:44:4f:6d:
e4:52:10:3d:20:75:32:2b:b4:55:8f:a9:a1:07:c0:
84:73:ec:88:ed:94:bf:da:c3:5f:91:02:34:9b:98:
06:97:58:5c:66:d8:ca:f8:8e:3c:07:c9:a1:3b:ba:
8c:84:78:56:ed:dc:11:da:e3:74:e6:2b:4a:d9:bb:
e8:a7:d7:0e:e0:77:46:ae:11:d6:34:55:fe:fa:00:
58:66:60:df:cc:5c:c5:a7:6b:af:20:d6:22:5c:28:
cf:fc:2a:d8:79:ab:2c:5f:ce:35:78:bc:57:8e:7b:
32:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BB:A6:4E:5A:07:A6:23:46:89:E0:66:AF:0B:39:86:09:9C:B2:6C
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/A7umTloHpiNGieBmrws5hgmcsmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.84.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:c6:79:b5:89:84:3a:a7:c8:6e:4a:f5:a3:f6:15:e0:95:5e:
47:4c:a2:7c:94:45:1b:ad:e4:4a:3a:18:3b:01:e7:ee:8b:72:
82:8f:ea:4e:ca:84:24:21:8f:a5:af:b1:24:45:ff:58:a3:88:
63:65:66:7e:a1:8d:6e:54:b5:1e:1b:84:f1:49:e1:40:9e:41:
d5:25:3c:e6:84:31:f6:ec:ce:33:70:83:04:e8:2c:33:24:d9:
be:58:93:8b:f1:71:fa:1d:53:ed:d1:80:d9:ba:a6:3f:56:66:
d5:24:78:19:0f:48:ff:6d:63:58:af:4b:09:22:53:f0:88:46:
53:85:d1:90:58:53:a5:e3:eb:02:a6:fa:37:0a:db:8d:37:c3:
61:3c:80:0e:44:9e:a9:6f:a9:bb:01:8f:d0:ad:79:fc:eb:c0:
98:9c:03:19:4e:c2:ee:3e:d8:05:9e:28:e5:8f:78:81:a9:2f:
85:61:8b:cb:13:b8:28:05:46:14:bd:a9:18:e8:44:b7:fd:0e:
89:97:20:3a:4b:b3:6e:6f:ef:10:fa:30:2f:c7:73:63:41:3a:
3b:52:2d:42:de:c5:b9:4a:18:ac:ab:4b:f7:9b:70:4c:06:b3:
2e:e6:57:e5:5f:7b:bc:0b:63:53:c6:35:36:f8:26:b9:25:3f:
13:c5:df:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org