Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/vMWHe8HTAJZYHUbdbr3vrEYFLl8.roa
File: vMWHe8HTAJZYHUbdbr3vrEYFLl8.roa (raw, json)
Hash identifier: OBSiUk1Yz/fDE4GX6ZaNnK+RANUz/n6unTlvNmd+MfM=
Subject key identifier: BC:C5:87:7B:C1:D3:00:96:58:1D:46:DD:6E:BD:EF:AC:46:05:2E:5F
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 07B23F67
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/vMWHe8HTAJZYHUbdbr3vrEYFLl8.roa
Signing time: Sat 01 Jan 2022 12:05:14 +0000
ROA not before: Sat 01 Jan 2022 12:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198689
IP address blocks: 31.7.84.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129122151 (0x7b23f67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 1 12:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcc5877bc1d30096581d46dd6ebdefac46052e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3f:c1:1f:e2:67:cf:69:93:04:ae:0b:75:7b:
cb:32:a9:0d:80:24:0a:11:3e:7c:1b:fe:7c:49:0b:
55:ee:b6:65:a6:5e:b6:13:14:d8:b3:54:61:cf:56:
f4:98:30:f3:e1:a1:de:fd:cb:ce:09:57:4e:d2:ec:
f7:60:1b:81:1d:32:29:e8:f5:4c:62:bc:3e:06:47:
ef:91:21:15:6f:f1:5c:a7:a7:8c:a3:a0:a0:b4:d2:
8d:e5:79:b2:7d:98:fa:9a:86:43:a4:a1:a1:11:65:
b4:81:9d:10:c7:ee:6e:2a:41:f2:4c:b9:d8:c7:91:
db:5d:94:54:9a:60:78:56:f3:54:60:5c:e4:9a:14:
ea:fa:92:2a:c2:87:0a:23:c1:10:9e:6d:fb:0b:a7:
27:3a:da:bd:4d:f6:e8:48:4d:fb:b6:ba:ba:c0:b8:
c1:4b:a6:c3:96:ed:63:0d:91:49:5b:05:c2:6c:07:
02:f8:21:eb:03:08:26:24:11:2e:19:40:ae:c5:4d:
d1:1f:b2:5b:0f:cd:5c:0b:68:39:50:d1:36:ec:5c:
36:cb:8f:57:1a:4a:c5:86:81:4b:8d:91:fc:04:01:
c0:e1:6f:81:8a:1d:cd:ff:b0:fd:c7:55:a0:f6:f6:
9b:ee:37:48:07:29:ee:2a:11:7d:87:05:7b:33:07:
0c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C5:87:7B:C1:D3:00:96:58:1D:46:DD:6E:BD:EF:AC:46:05:2E:5F
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/vMWHe8HTAJZYHUbdbr3vrEYFLl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.82.0/24
31.7.84.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f6:fc:ce:9a:c1:9f:56:6b:da:83:25:83:82:a8:d0:d0:3e:
72:e8:2d:2b:ee:55:2a:ad:12:48:89:cb:9e:50:31:bd:00:b1:
6e:8e:c0:ed:6f:ac:b7:a0:02:f0:b4:cb:08:da:1b:ed:0d:3b:
18:0b:ea:4d:6f:5a:db:8f:c8:ba:20:5b:c6:44:f7:06:2f:0c:
2f:ae:0c:4f:03:17:73:36:c6:f5:fa:06:7b:16:bb:3c:a1:27:
1d:b8:fb:6e:52:11:d8:ab:cb:52:15:cb:e6:81:82:af:e1:f7:
01:eb:37:32:b9:29:6d:10:3d:2d:79:e9:1a:e2:a7:6a:e6:87:
5d:8b:fc:eb:a9:7c:e6:b3:f1:4c:7d:b0:f8:f2:09:4c:86:49:
2f:e2:6d:6c:16:1b:5a:7e:41:12:14:74:7a:ee:fb:00:0b:2c:
d7:5c:cc:52:f2:08:1b:13:24:67:ab:a7:92:80:bf:72:78:2d:
58:5f:e3:e7:7a:59:51:eb:0d:6c:7f:97:50:9f:eb:db:f3:12:
9e:62:8a:53:46:91:18:fb:95:0c:55:74:19:c7:af:41:66:6a:
34:eb:d9:fb:b0:5a:ce:b1:40:e4:da:f0:b8:8c:69:0d:48:db:
d6:2b:9c:98:1d:a0:cd:6c:43:14:be:05:46:a5:36:6a:b6:e5:
ea:ec:ac:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org