Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/YaipuevcG7GJm9lYmUgU7Yb8gSM.roa
File: YaipuevcG7GJm9lYmUgU7Yb8gSM.roa (raw, json)
Hash identifier: bneZ6OIttSieCo6RZB94PAosCMEbJ+xNo4JugOrU5ks=
Subject key identifier: 61:A8:A9:B9:EB:DC:1B:B1:89:9B:D9:58:99:48:14:ED:86:FC:81:23
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01851C4B9DE3A2FF1AC061C44C360B404850
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/YaipuevcG7GJm9lYmUgU7Yb8gSM.roa
Signing time: Fri 16 Dec 2022 18:56:35 +0000
ROA not before: Fri 16 Dec 2022 18:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 31.40.4.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
31.40.5.0/24 maxlen: 24
31.40.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:4b:9d:e3:a2:ff:1a:c0:61:c4:4c:36:0b:40:48:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Dec 16 18:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61a8a9b9ebdc1bb1899bd958994814ed86fc8123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:55:bb:ec:67:0d:4f:e4:83:92:8d:94:28:4d:
08:47:c9:02:05:67:d2:b4:80:77:1a:77:9d:96:50:
72:7b:07:37:04:c0:8c:14:07:79:4e:d4:78:1e:ee:
fb:b0:0e:84:78:22:01:bf:a1:88:0e:bc:fd:25:68:
80:94:a6:e0:17:ad:e3:12:63:d2:a9:7c:49:c3:88:
a2:3b:25:b3:3d:5c:0e:4c:2f:41:ad:ad:2f:67:ba:
5b:e5:dd:3a:cd:23:f0:66:a3:b7:30:51:9a:e3:9f:
70:b6:16:2c:0d:f2:dd:2b:32:d2:48:30:b1:30:2e:
ba:75:a2:06:0b:be:33:82:b7:b9:84:5e:36:ed:00:
d6:c1:e2:e7:b9:e7:18:3b:bd:2e:da:60:ac:42:47:
37:8d:58:4f:bf:6d:5e:ad:52:d9:c3:5e:25:0c:d9:
ba:56:e8:3d:26:d6:4e:89:8c:c2:3d:ed:99:d5:81:
de:aa:fc:27:1f:65:2d:ae:ec:aa:7e:cb:53:2f:6c:
6d:83:2d:68:ea:eb:62:d4:c4:38:74:bd:79:6c:9b:
3d:9d:06:82:6d:9f:d2:85:43:6f:bf:e5:45:ac:71:
b0:a4:24:66:bb:11:da:d9:60:6f:83:0b:c6:1e:72:
d2:e9:06:06:e0:86:10:cc:6c:81:8a:b4:af:82:1d:
04:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A8:A9:B9:EB:DC:1B:B1:89:9B:D9:58:99:48:14:ED:86:FC:81:23
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/YaipuevcG7GJm9lYmUgU7Yb8gSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.3.0-31.40.6.255
Signature Algorithm: sha256WithRSAEncryption
53:a8:15:f3:2a:4a:b8:fc:02:a0:9a:5f:98:6c:58:fe:f0:ab:
81:41:4d:d3:05:96:03:1f:3e:a4:59:9e:da:80:a0:a0:e4:ca:
04:d2:79:e1:d1:a6:6f:75:1b:cf:6b:d8:ca:64:fd:a9:51:6b:
35:5a:57:5a:df:fe:ec:70:5a:62:3b:ff:2b:44:8f:0d:dc:8f:
01:d2:5e:ee:a5:3a:5f:79:ab:06:51:69:5e:d1:63:79:50:83:
60:58:3f:c1:6f:69:a3:47:a7:a5:11:35:68:d1:ab:7a:54:7f:
f1:c8:51:dc:1b:fa:72:21:d3:03:4c:0a:fd:bb:01:82:3a:67:
04:4f:62:d1:55:24:74:54:46:1b:a2:cd:6c:97:60:66:41:6a:
9d:e3:e8:7b:bf:09:c8:ea:99:90:74:db:75:2a:23:5d:57:46:
04:53:78:85:08:8b:a3:43:86:bb:5a:8c:96:6c:33:ac:f5:41:
4c:96:68:19:1c:af:d5:78:d1:b5:c2:ab:e5:51:32:a4:16:a1:
17:5f:67:6b:f4:e3:aa:a1:2d:14:d6:a1:55:40:a5:21:f2:b0:
68:8c:ba:99:ff:49:1f:f5:b7:0b:79:ad:61:a3:1c:60:b9:9d:
7f:4f:07:40:fa:e5:7f:46:c4:68:a6:f4:e6:54:ab:19:78:2e:
86:cd:f2:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org