Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UhfAY8KysV9QpIwp4nfFzTLlOx8.roa
File: UhfAY8KysV9QpIwp4nfFzTLlOx8.roa (raw, json)
Hash identifier: v6LrZUkPGuyRvXQYtk98dO2ma9qy+I61CXjEpjsO2dI=
Subject key identifier: 52:17:C0:63:C2:B2:B1:5F:50:A4:8C:29:E2:77:C5:CD:32:E5:3B:1F
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 019C4BBD
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UhfAY8KysV9QpIwp4nfFzTLlOx8.roa
Signing time: Thu 10 Feb 2022 00:06:53 +0000
ROA not before: Thu 10 Feb 2022 00:06:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 31.40.2.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27020221 (0x19c4bbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Feb 10 00:06:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5217c063c2b2b15f50a48c29e277c5cd32e53b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ef:c6:8f:16:67:b0:4c:bc:2b:b8:08:bc:56:
44:33:83:bf:be:f8:b4:27:e6:62:02:de:26:5f:52:
3d:80:b7:5a:86:1a:07:02:5c:96:f4:64:5a:db:d8:
79:49:91:53:50:7e:70:a3:d1:e1:60:26:c8:1f:d2:
ea:01:02:7e:47:35:08:48:a7:89:45:15:39:be:b4:
28:12:53:60:92:8a:7f:a7:c7:1d:08:67:8e:23:79:
8a:d7:bc:03:f4:cc:82:5c:93:8a:b6:9c:ad:ac:a0:
7e:7a:54:22:81:90:d0:e1:89:02:51:a5:b7:c7:b9:
72:5f:d7:a9:4d:6e:7f:e4:07:c8:e5:f3:f5:a6:be:
ef:9c:c5:52:d2:25:60:46:8d:b5:02:9a:c7:d3:12:
65:0d:ec:7e:0f:f5:54:4e:a0:ec:17:1c:e1:67:94:
9b:eb:7a:53:e9:34:f5:3b:ac:e2:c8:19:cc:ae:3e:
c1:99:e7:f7:39:a0:86:06:6d:d3:02:21:39:8f:57:
38:57:6f:98:d3:96:2d:4d:dc:8a:e7:03:c7:8d:0c:
8f:23:96:fd:d7:ec:f1:04:40:43:73:a1:94:95:70:
b6:39:e7:80:d2:9b:5d:e4:86:fa:16:1a:91:16:7f:
64:6b:5c:ff:0d:d8:4c:7d:d8:fb:1b:3d:47:9e:77:
b8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:17:C0:63:C2:B2:B1:5F:50:A4:8C:29:E2:77:C5:CD:32:E5:3B:1F
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/UhfAY8KysV9QpIwp4nfFzTLlOx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/23
Signature Algorithm: sha256WithRSAEncryption
af:57:59:fc:e1:f8:1c:47:19:64:41:82:3f:79:6a:6c:40:96:
a5:a5:19:1e:46:0f:86:58:fb:2d:ae:cf:b8:27:5a:a5:84:66:
c6:57:b2:9e:f5:d2:f6:c4:78:cd:db:f1:0f:04:e0:0f:1b:e7:
90:61:7a:f2:c1:02:65:1d:94:39:7b:72:8d:7b:fd:4d:4c:49:
04:4b:bb:d7:09:3c:95:26:40:87:d8:f6:e8:a4:5c:db:6b:e0:
b5:e6:30:06:cc:b8:2d:da:74:47:b9:28:39:7e:79:c0:2c:be:
29:f8:5a:65:0e:36:c1:d9:d0:b6:22:82:3b:d3:ab:ab:2a:1f:
99:b7:7a:96:d0:13:5c:10:e8:32:c5:90:e3:30:10:d5:8a:c0:
96:ef:10:7a:30:2c:1f:f5:88:b9:ae:c0:d2:b9:63:2f:37:54:
da:38:ef:3a:d3:0b:09:34:69:44:8d:4b:87:65:6d:16:a6:df:
05:7b:10:2a:6f:79:3f:bd:6a:0c:44:1a:aa:c6:04:d0:8a:38:
b6:b1:4a:62:d0:39:56:8a:b8:a9:fd:b9:aa:d9:18:b5:ce:ac:
c2:2d:d7:da:a2:3e:84:dd:e0:b1:df:c1:1b:ec:51:ee:51:ff:
53:54:d1:8b:d8:09:7a:d1:8e:61:f8:dc:9a:19:1e:10:3c:09:
c6:03:15:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:03:36 2025 by rpki-client