Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/4QsruWZdN-q0Uoq6FEEAlV6ZfcU.roa
File: 4QsruWZdN-q0Uoq6FEEAlV6ZfcU.roa (raw, json)
Hash identifier: lkHhyg7UGpYC3cFMMjOE3wYQXrwaWWHEbLDTzYku53k=
Subject key identifier: E1:0B:2B:B9:66:5D:37:EA:B4:52:8A:BA:14:41:00:95:5E:99:7D:C5
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01D31B3B
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/4QsruWZdN-q0Uoq6FEEAlV6ZfcU.roa
Signing time: Sat 05 Mar 2022 14:55:34 +0000
ROA not before: Sat 05 Mar 2022 14:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 31.40.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30612283 (0x1d31b3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Mar 5 14:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e10b2bb9665d37eab4528aba144100955e997dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:42:d2:4a:46:63:33:91:0d:e3:a8:59:99:26:
37:ce:d0:b4:f2:28:c8:2e:64:cf:c6:e4:68:83:8e:
93:98:1d:83:5f:16:a5:43:55:85:8f:20:dc:82:a4:
9a:4a:74:9a:97:fa:f6:c6:b4:ba:40:2a:75:33:fa:
43:fa:7a:32:1f:dc:24:fb:a5:16:43:30:11:17:52:
f1:7f:64:8b:7c:9a:9c:fb:f9:34:a6:a0:f9:2f:f9:
c1:75:40:cf:ca:dc:c8:1f:29:bc:c0:d6:65:85:47:
bd:30:fa:91:9c:3f:64:c8:5d:07:38:57:c2:1c:ab:
f6:40:2a:e5:fd:50:c6:89:85:69:d1:be:63:38:65:
91:4a:e1:9f:3d:3d:25:73:2c:3d:12:f7:68:ec:50:
a6:6d:25:88:a0:32:8f:a8:52:fc:a6:20:6e:f0:91:
e1:18:ee:30:cc:b8:01:1a:20:05:13:07:55:aa:0b:
e9:ed:39:bc:9c:dd:00:f4:02:f8:98:2a:b5:4f:96:
e1:d7:3e:36:de:dc:3b:a9:6f:3c:da:3f:68:c2:ee:
f5:cb:53:04:9e:29:ed:cd:11:8d:14:f0:5b:bf:94:
1e:43:93:6b:39:35:83:45:ea:02:2f:b2:e4:f2:58:
ff:40:ee:19:61:5a:ef:48:1c:f5:78:a1:f4:d0:2d:
66:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0B:2B:B9:66:5D:37:EA:B4:52:8A:BA:14:41:00:95:5E:99:7D:C5
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/4QsruWZdN-q0Uoq6FEEAlV6ZfcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.5.0/24
Signature Algorithm: sha256WithRSAEncryption
11:36:0b:cf:51:b6:3f:b7:0e:7f:a5:7a:27:eb:e4:8a:de:ca:
c9:e4:c9:e7:d4:e5:ff:13:a2:2a:20:7f:32:63:22:8b:6c:a7:
c5:60:11:14:38:42:7b:c1:13:96:d7:19:cc:45:e1:4f:e8:92:
37:36:d8:a6:af:57:83:70:f2:79:66:3c:c4:1d:e8:a5:b1:66:
43:70:60:23:b6:22:e0:fe:f0:63:04:b8:c0:e4:7b:05:5a:4a:
28:e8:91:b5:f6:61:34:bf:b2:b7:c9:98:47:be:5a:ca:01:28:
b6:5a:7f:dd:29:07:f1:64:a8:47:c3:89:fe:52:2e:4f:f6:e0:
86:ad:13:ad:b6:e3:15:7b:6b:e0:a8:94:57:3c:f0:56:1a:96:
f6:2d:d3:9a:5b:92:04:fe:f4:dd:20:8a:09:81:36:47:73:ef:
99:36:6b:eb:88:8c:6c:19:b0:27:8d:e2:d5:4d:c1:8b:3c:91:
12:10:4e:97:f3:a1:b2:79:43:d4:d4:89:2c:88:cf:d2:07:60:
65:30:bb:14:ed:71:e5:c8:5c:f4:a7:42:fb:ef:c9:32:fa:b7:
4b:0c:2d:30:85:e8:11:3a:a6:e1:8a:79:26:c8:dc:e4:a7:2a:
6a:61:9c:01:f5:ad:76:09:fb:b8:c5:c7:08:95:78:7e:0e:ca:
67:ae:9e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:43:14 2025 by rpki-client