Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/MNLjHcSaySal1dMKNWE6T9WkzlA.roa
File: MNLjHcSaySal1dMKNWE6T9WkzlA.roa (raw, json)
Hash identifier: MqDfLDnslukd1KgOjGb1BJBB6/7Yd67gIL9spSaMt1c=
Subject key identifier: 30:D2:E3:1D:C4:9A:C9:26:A5:D5:D3:0A:35:61:3A:4F:D5:A4:CE:50
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01852B7C04AE10E5E16E96C11401A7DCE4C1
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/MNLjHcSaySal1dMKNWE6T9WkzlA.roa
Signing time: Mon 19 Dec 2022 17:43:45 +0000
ROA not before: Mon 19 Dec 2022 17:43:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 31.40.4.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:7c:04:ae:10:e5:e1:6e:96:c1:14:01:a7:dc:e4:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Dec 19 17:43:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30d2e31dc49ac926a5d5d30a35613a4fd5a4ce50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6d:c3:21:ce:91:db:59:bb:75:3c:ea:2a:62:
bd:f7:fe:73:47:6c:9b:51:b7:e1:01:a6:30:80:73:
bf:eb:b2:67:82:32:a3:ab:64:e7:03:cc:05:75:c3:
76:d6:00:0a:c5:53:02:ab:3b:99:cd:b5:fa:a4:9f:
32:10:26:06:5c:bd:62:69:ce:d1:12:98:af:02:4b:
35:aa:d5:2e:66:99:fe:0b:33:da:4a:1c:02:33:23:
ab:eb:fd:fc:8f:98:0a:0b:e1:cd:f6:1b:65:72:cc:
31:be:7c:11:4a:a3:84:93:70:5a:de:ff:3b:23:e3:
31:90:c5:fa:50:a9:cb:05:a3:76:d1:52:4d:1d:07:
f7:59:84:74:f6:ef:d2:a8:ca:00:82:7c:dc:f7:17:
48:ef:49:42:4f:78:a9:c1:90:14:4c:c4:65:64:03:
f9:71:c4:0f:cf:0c:66:27:01:9b:cd:dd:a7:e1:12:
ce:23:ca:b6:e9:1d:33:f9:c1:aa:5d:93:2d:b9:45:
e9:b4:16:44:1f:57:b4:9c:20:c6:be:d2:d4:d9:96:
35:fd:21:12:e7:82:8f:82:bf:ef:be:22:89:9b:e8:
fd:fe:e0:52:ca:36:2d:0e:bc:60:84:8c:2a:26:b4:
08:be:9d:1a:9a:d2:d0:7b:4d:c6:c7:be:ec:ed:98:
e0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:D2:E3:1D:C4:9A:C9:26:A5:D5:D3:0A:35:61:3A:4F:D5:A4:CE:50
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/MNLjHcSaySal1dMKNWE6T9WkzlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.3.0-31.40.4.255
Signature Algorithm: sha256WithRSAEncryption
45:9b:c9:c8:4f:6b:29:14:65:af:ba:5e:10:1f:1b:06:3c:c5:
ac:51:fa:f5:4a:53:67:18:5d:a4:bf:8b:ba:a4:ea:3d:d9:f5:
83:b4:70:07:54:e8:f1:82:b1:45:e3:56:06:94:09:8f:a8:1d:
9c:bd:38:1a:b6:50:16:be:e9:80:a3:35:26:62:48:a6:c1:79:
b0:e9:bf:32:ad:c8:6e:ec:b5:65:a8:e4:dc:4b:5e:52:4c:83:
01:d6:4e:95:34:3b:45:64:cc:f7:91:69:d4:97:19:85:b2:67:
88:03:64:e2:2c:9e:a8:f2:5f:78:e8:79:8c:0e:9a:26:47:a9:
c5:84:e4:c7:f4:1a:67:f4:dc:ba:8d:eb:e9:59:91:3d:b3:24:
89:1a:ff:1a:ea:a5:c6:78:95:41:89:e9:c5:e3:4a:0c:15:df:
a6:a9:25:bd:85:62:4d:49:27:e9:3c:29:2d:a5:3a:72:17:4f:
62:2e:1c:e1:2e:71:88:e3:03:48:75:14:2d:62:74:8d:6b:e0:
e8:f2:c0:a0:8e:c8:2c:99:3c:83:38:ad:e0:96:8d:41:49:0e:
54:3c:fa:ed:e1:b2:01:44:98:f6:a3:03:c4:2b:fc:89:e5:2e:
53:ee:40:fe:15:76:ae:91:74:d5:0a:84:7d:a2:bd:fe:a9:06:
9f:2b:c9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org