Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/nlCiy3-yCbYEaaO2-O6-r25TntY.roa
File: nlCiy3-yCbYEaaO2-O6-r25TntY.roa (raw, json)
Hash identifier: 3sj4KUKu7x8RSqHPKzQaWjtKih2jGw1tAa4XJaH5OuE=
Subject key identifier: 9E:50:A2:CB:7F:B2:09:B6:04:69:A3:B6:F8:EE:BE:AF:6E:53:9E:D6
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 0229A5E5
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/nlCiy3-yCbYEaaO2-O6-r25TntY.roa
Signing time: Mon 11 Apr 2022 02:49:19 +0000
ROA not before: Mon 11 Apr 2022 02:49:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19120
IP address blocks: 31.40.6.0/24 maxlen: 24
31.40.5.0/24 maxlen: 24
31.40.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36283877 (0x229a5e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Apr 11 02:49:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e50a2cb7fb209b60469a3b6f8eebeaf6e539ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9d:5b:ac:c7:e5:0c:aa:f2:c3:58:4d:f0:2d:
96:94:7c:2e:cd:bd:84:26:c6:7a:50:91:0f:63:28:
3b:76:b2:c8:a2:5c:81:bf:25:23:3d:ee:de:45:a1:
7f:f3:60:f2:9c:bf:cc:9e:9a:c8:9e:db:87:16:bf:
7a:51:3f:ef:7c:a1:58:43:ab:13:34:df:0b:c2:24:
8c:2d:66:f8:e6:be:e6:71:e5:22:1f:50:a3:99:39:
39:d7:70:dd:75:71:73:8f:06:c6:39:b8:bc:34:d2:
f2:0b:4b:64:3e:fb:7c:0b:a8:3a:86:65:9b:27:c0:
06:55:ba:27:ff:de:dd:7f:5e:6b:e0:3e:f7:94:e4:
43:ed:55:aa:02:79:e3:ff:44:d3:8a:23:e1:e1:c7:
d1:6b:84:eb:50:45:5c:4c:5b:bc:ac:f6:37:10:7c:
47:47:67:14:4d:70:b7:5f:11:c2:9f:50:44:f7:64:
9a:5a:9e:35:4f:68:16:68:9c:cf:ae:b2:3a:f3:bb:
40:62:7a:bb:72:83:bf:d7:fb:21:e2:1e:eb:e7:65:
07:b9:e9:43:ad:73:3e:6c:ed:f6:e0:5d:69:bf:3e:
c1:bb:38:10:28:d9:ca:c7:55:37:44:4f:d3:c2:fe:
4f:3b:3b:b9:f0:38:3c:12:e7:01:4f:47:81:52:99:
67:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:50:A2:CB:7F:B2:09:B6:04:69:A3:B6:F8:EE:BE:AF:6E:53:9E:D6
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/nlCiy3-yCbYEaaO2-O6-r25TntY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.5.0-31.40.7.255
Signature Algorithm: sha256WithRSAEncryption
7b:e7:0a:d9:a7:d5:9b:20:28:fa:a8:05:d8:b2:6e:6c:c8:8c:
15:8d:83:1b:d7:e8:70:90:f5:ee:f5:4f:21:e4:f8:f6:54:5f:
d4:54:4e:39:dd:3d:3b:17:20:0f:cc:fd:dd:7e:1e:60:5d:56:
eb:17:b4:9c:8c:3d:1c:40:d6:11:51:d5:c7:d8:ff:1b:23:76:
f6:2d:f9:7b:cb:1c:c6:d0:93:6e:70:ec:25:4f:1a:39:51:c5:
42:c4:a4:de:26:90:0a:65:19:aa:0f:c3:7b:0b:29:3e:c6:07:
b8:3e:ea:57:02:19:39:8b:06:d4:c3:cc:03:be:c5:0b:9c:ec:
04:0e:e8:1c:81:19:69:c1:f2:ba:c4:fe:5e:cf:3c:ad:62:fe:
78:59:55:9b:9c:0b:08:8e:98:7c:25:dc:79:47:38:de:4a:7a:
d5:f8:4b:51:d1:19:da:31:08:5a:84:88:0b:36:6e:ed:5a:4a:
2d:17:11:fa:60:6a:2d:c4:5c:7a:9c:b6:df:67:45:09:de:85:
48:64:8b:5f:ad:35:85:d9:bf:65:ae:98:5c:78:4e:e1:64:49:
b4:e8:d6:8b:c3:e2:80:7a:1e:3f:9c:44:cf:d2:c8:2c:72:17:
07:8d:fd:f0:14:32:cd:f4:4a:4f:6c:d0:7d:97:7c:26:12:b0:
ad:c3:10:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org