Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/d68Liv3EOP_ysOlAREz8TMiBTU8.roa
File: d68Liv3EOP_ysOlAREz8TMiBTU8.roa (raw, json)
Hash identifier: EWVinpD+kbNUdmAcNYVZ75uqdCkkUi5f/cYMOZJWnoc=
Subject key identifier: 77:AF:0B:8A:FD:C4:38:FF:F2:B0:E9:40:44:4C:FC:4C:C8:81:4D:4F
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 018437B6122E8C1107C5A4AC8BDA2C9B94E2
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/d68Liv3EOP_ysOlAREz8TMiBTU8.roa
Signing time: Wed 02 Nov 2022 09:39:49 +0000
ROA not before: Wed 02 Nov 2022 09:39:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58262
IP address blocks: 31.40.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:b6:12:2e:8c:11:07:c5:a4:ac:8b:da:2c:9b:94:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Nov 2 09:39:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77af0b8afdc438fff2b0e940444cfc4cc8814d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a8:77:3e:5a:22:0d:f6:01:d2:59:98:b1:60:
05:a6:eb:cf:e5:8a:72:34:2f:7e:fd:72:c0:73:fd:
40:16:35:d8:0f:33:22:c9:40:9a:46:5f:60:15:b0:
39:99:ff:3d:a0:67:28:a4:88:63:6d:f8:70:ac:af:
54:95:3e:c5:c5:57:14:a4:e1:ce:b9:69:6c:c4:78:
1c:9f:74:7e:c3:4a:db:96:e6:53:74:33:82:dd:d2:
37:6b:91:d2:57:ef:6f:e8:77:01:fb:ca:3e:54:99:
2e:5d:a6:9a:71:13:fc:ab:3b:e0:d6:72:34:16:c2:
c8:50:e1:c6:93:11:7b:e6:eb:e5:06:ae:be:7d:b3:
2c:a4:b7:27:57:e7:fe:2e:a1:4a:e4:e3:15:f2:47:
19:6c:f0:6c:90:4a:d1:2e:05:ac:f1:f0:a0:d5:dd:
45:f9:28:75:80:75:83:ff:d9:2b:13:eb:31:13:bd:
a4:bd:4d:c0:b0:11:9b:3a:93:56:e6:25:40:8e:9a:
79:d0:43:c3:cd:22:15:15:b6:7f:d9:16:5a:1e:a4:
3e:f6:ca:c8:44:c9:cd:2c:aa:76:21:eb:72:58:84:
c4:19:1a:91:9c:9a:98:47:40:59:e5:32:78:48:ba:
57:c2:b6:3a:2c:48:8c:6e:e4:db:9f:b8:dc:ed:9c:
ea:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AF:0B:8A:FD:C4:38:FF:F2:B0:E9:40:44:4C:FC:4C:C8:81:4D:4F
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/d68Liv3EOP_ysOlAREz8TMiBTU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1c:4d:8b:f1:50:fa:a7:5b:e2:a3:83:c6:a9:9f:f2:c6:f5:
0b:b5:ba:3e:f9:fc:ea:66:d6:cd:c6:65:30:9c:77:d5:09:ba:
c9:54:2b:21:d2:82:da:8b:b8:67:ea:05:98:72:b2:77:b2:c6:
1d:52:2d:5f:c8:b2:66:33:3b:7b:c8:7f:65:47:cd:bb:14:bb:
a3:1b:0a:fc:54:52:e3:69:2c:9b:13:7f:e6:29:06:8c:1f:73:
02:3b:8f:5f:c7:5b:fe:32:1e:8f:1f:63:7f:92:22:ac:47:e6:
53:40:51:c1:58:42:cb:8a:08:46:ff:b5:53:8b:39:6f:6e:df:
3b:84:bb:cf:26:da:79:66:9b:5a:a3:d4:d4:09:70:19:1c:54:
7b:7f:a0:a9:ab:9c:26:8a:1c:3c:5a:ae:7f:c9:9d:6d:2e:d5:
60:f8:d9:d2:a9:20:20:1c:a1:ed:6c:7d:98:38:67:3b:90:3a:
59:fd:b1:64:8e:57:03:51:bb:fb:be:2b:64:67:97:c6:55:05:
73:fe:a9:09:8d:cb:4e:3f:e9:f9:3e:9b:c8:16:e4:c4:31:ba:
d6:ce:92:a7:e3:35:d1:f9:cc:40:06:6f:81:cb:a2:72:6d:ea:
fd:6d:43:55:e8:76:e7:de:60:78:84:08:aa:39:c7:20:7e:db:
7e:30:51:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org