Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/p5CbyE8eggjp5pX2ox0yS-JNutk.roa
File: p5CbyE8eggjp5pX2ox0yS-JNutk.roa (raw, json)
Hash identifier: zaCQOQ4TaOo7lDUFbhggpwXIegN0zM8t/5I48qkAoTE=
Subject key identifier: A7:90:9B:C8:4F:1E:82:08:E9:E6:95:F6:A3:1D:32:4B:E2:4D:BA:D9
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01E876EE
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/p5CbyE8eggjp5pX2ox0yS-JNutk.roa
Signing time: Mon 14 Mar 2022 01:07:41 +0000
ROA not before: Mon 14 Mar 2022 01:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 91.226.224.0/24 maxlen: 24
194.26.117.0/24 maxlen: 24
31.40.2.0/24 maxlen: 24
31.40.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32012014 (0x1e876ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Mar 14 01:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7909bc84f1e8208e9e695f6a31d324be24dbad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:55:de:74:d2:4d:4b:59:a1:20:2d:b6:37:
ca:9c:1e:a8:e7:07:44:fb:16:f1:9f:0e:ee:33:d5:
5f:ae:79:c2:44:8f:ad:a7:15:c7:33:c5:84:0f:67:
8d:0e:8d:b1:fb:74:57:60:bd:4b:67:27:b0:23:4b:
8e:3a:77:bd:55:3c:f2:71:6d:7c:df:a6:0e:c9:e7:
b2:b5:92:1e:25:78:79:ed:45:64:b1:ad:ae:67:e0:
da:63:bc:a6:9a:75:cd:87:02:af:af:49:02:46:ea:
68:d9:fb:a9:37:91:be:8e:8d:a2:88:bd:86:c8:98:
6c:38:1c:c5:dd:54:0b:b9:99:19:51:d1:37:76:61:
a3:64:20:af:73:c8:10:0f:5f:bc:70:b6:d7:63:6a:
20:cf:cb:06:50:9b:90:71:ae:9e:f5:ae:d4:3a:99:
d4:00:32:c7:c0:41:b6:1a:57:39:e3:81:55:91:27:
eb:be:f8:98:26:fa:ce:c7:21:e7:3a:15:fa:5b:73:
1f:ac:dd:cb:6f:54:d5:d5:d0:45:03:17:5a:0f:3a:
e6:b7:ca:e4:a8:a0:bd:d4:a0:78:c4:02:db:f7:2c:
be:2c:5f:0a:6d:03:9e:0f:99:ae:6a:68:c4:9f:99:
f2:86:df:a1:ab:49:fb:1d:1a:ae:69:cf:1f:c4:a8:
85:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:90:9B:C8:4F:1E:82:08:E9:E6:95:F6:A3:1D:32:4B:E2:4D:BA:D9
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/p5CbyE8eggjp5pX2ox0yS-JNutk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/23
91.226.224.0/24
194.26.117.0/24
Signature Algorithm: sha256WithRSAEncryption
43:50:90:81:5d:69:3b:eb:c6:27:49:bd:b3:b4:69:14:82:01:
6b:47:2b:53:9a:5f:9b:1a:96:9c:b7:26:26:e6:d3:1b:6d:b7:
6d:26:e4:6a:b0:ce:6e:43:de:61:7b:45:7c:7c:ba:b2:38:97:
01:d3:fb:22:47:6b:63:4d:bc:7e:73:ec:2f:ef:64:e4:41:7a:
dd:81:11:be:57:76:4d:61:77:b4:b3:63:29:bf:49:68:cb:d9:
f9:c7:ef:9e:b6:40:51:93:f3:cf:dd:05:fd:b8:f2:1f:06:82:
19:a7:cf:9d:6e:90:b6:db:5c:79:5e:d6:aa:92:8e:2f:18:8c:
38:9b:41:07:b1:1f:86:53:13:5b:db:b1:1c:07:2c:41:96:77:
9f:48:ef:98:77:a3:7e:7a:be:39:ed:a9:9b:17:19:14:cd:b5:
86:50:56:9c:0e:19:3b:78:50:34:1c:2d:43:57:54:0e:87:cb:
8b:0a:fb:93:7a:ff:3d:15:d4:d1:42:ea:cc:fb:5e:42:38:37:
53:80:33:d2:45:77:86:95:b5:8b:bb:d5:c5:49:f9:50:1e:65:
f8:fa:c6:bf:f6:0f:93:4d:7e:0e:ba:84:c4:63:3a:ad:bb:bf:
c9:a3:8c:26:96:e7:71:67:b9:4f:90:1e:89:8f:42:f5:9a:56:
d1:7d:69:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org