Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/lRTZ_4zKZqB-BzSaDiaKJpqxFNE.roa
File: lRTZ_4zKZqB-BzSaDiaKJpqxFNE.roa (raw, json)
Hash identifier: y+DGEIu+WjmWtTmgUyZ/tvYvWQiDvXF0KU0A1dcRauU=
Subject key identifier: 95:14:D9:FF:8C:CA:66:A0:7E:07:34:9A:0E:26:8A:26:9A:B1:14:D1
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01851C427399DF15E16E8C677E8E25383193
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/lRTZ_4zKZqB-BzSaDiaKJpqxFNE.roa
Signing time: Fri 16 Dec 2022 18:46:35 +0000
ROA not before: Fri 16 Dec 2022 18:46:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 31.40.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:42:73:99:df:15:e1:6e:8c:67:7e:8e:25:38:31:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Dec 16 18:46:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9514d9ff8cca66a07e07349a0e268a269ab114d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9b:4b:61:18:8e:f8:2b:3a:30:42:28:22:cf:
67:78:87:ba:23:98:3e:fb:f7:f5:96:17:d2:d2:a5:
4f:50:b1:b4:3a:de:9a:4f:c8:bf:9f:85:7d:5a:fb:
8c:82:98:a3:7f:4f:6e:2e:2d:cb:e2:bd:9f:62:f4:
a3:1c:93:d5:41:71:0a:48:15:bb:c6:57:1d:0a:ca:
4a:27:46:ad:2c:e5:cd:63:fa:df:f5:d7:5f:5d:2b:
16:3b:13:18:c5:8b:dd:96:eb:71:76:23:fb:ce:74:
f9:a0:48:73:6a:9b:44:25:ef:7e:f9:b3:24:8d:c2:
7b:9b:fb:70:cc:cb:88:33:f2:b1:61:e6:17:74:09:
33:f2:43:c0:d4:cd:16:e3:e5:f8:82:15:94:a3:af:
de:4e:b5:f7:87:fa:6b:a9:0a:5b:47:a1:b2:a6:da:
c4:83:74:15:73:e0:3a:9e:e4:70:d0:72:82:10:4e:
7a:52:b9:03:8e:95:54:79:53:b1:8a:c6:22:41:ca:
e6:ed:d5:bf:c0:88:38:02:a6:ec:34:66:47:ab:83:
38:f5:f9:d2:64:9f:18:66:0a:fe:a8:a4:79:da:87:
4f:d3:ff:4f:22:91:88:8e:de:50:6c:12:76:64:3c:
2b:e5:f4:d9:cb:ea:b9:bf:34:cd:ce:9a:83:04:25:
a6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:14:D9:FF:8C:CA:66:A0:7E:07:34:9A:0E:26:8A:26:9A:B1:14:D1
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/lRTZ_4zKZqB-BzSaDiaKJpqxFNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.7.0/24
Signature Algorithm: sha256WithRSAEncryption
02:db:3f:0e:a3:8e:30:93:86:8b:e6:31:3e:5d:fd:68:4c:6c:
66:f7:eb:25:ef:c0:dc:66:5c:41:65:d6:8a:35:09:cc:ad:91:
55:fc:05:0c:f0:d0:b9:85:5f:9f:d4:da:bd:8d:14:c4:5d:54:
3f:37:df:6a:fb:73:c6:94:a4:20:e7:12:a8:19:e0:7d:4a:8e:
7f:59:6f:ab:a5:6f:d2:86:50:ec:1e:16:e1:59:f3:79:f7:0f:
92:95:0a:97:ca:23:65:f1:18:91:da:20:9f:d9:37:c9:b3:f0:
04:6f:2d:37:7a:26:07:15:b4:12:f5:30:24:2f:cf:e0:ef:08:
58:f9:84:f0:4a:31:b5:80:36:d9:30:69:17:0c:26:89:99:c7:
54:e8:c4:f7:2b:e5:8f:74:e2:10:e5:dd:f3:dd:6c:95:fe:f2:
41:ac:09:fc:ec:05:26:e1:d5:98:20:e5:7f:70:d0:3e:00:3a:
28:0a:3e:25:51:a4:60:9a:5a:62:26:a1:ba:22:01:30:41:fd:
9b:6c:93:87:1d:38:fe:e3:d2:e2:d5:83:d3:10:13:e6:4d:7a:
05:eb:89:70:a8:cf:cd:83:35:29:49:92:4b:55:ea:52:c3:4f:
49:27:e5:da:35:54:9b:9f:66:ba:4e:fc:bc:06:9e:d5:28:6f:
6d:fd:63:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org