Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/zi0Xftsh2K5S2a-nHxWvzcd2qZE.roa
File: zi0Xftsh2K5S2a-nHxWvzcd2qZE.roa (raw, json)
Hash identifier: QNEi9zXEi5vvhex7vcowwdy9hu/7i18oMpHbT83QIHY=
Subject key identifier: CE:2D:17:7E:DB:21:D8:AE:52:D9:AF:A7:1F:15:AF:CD:C7:76:A9:91
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01D5A24B
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/zi0Xftsh2K5S2a-nHxWvzcd2qZE.roa
Signing time: Sat 05 Mar 2022 16:02:04 +0000
ROA not before: Sat 05 Mar 2022 16:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60025
IP address blocks: 31.40.7.0/24 maxlen: 24
31.40.5.0/24 maxlen: 24
31.40.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30777931 (0x1d5a24b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Mar 5 16:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce2d177edb21d8ae52d9afa71f15afcdc776a991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:61:81:2f:69:92:a1:e2:c1:31:71:f7:67:c2:
3e:81:cf:5f:66:96:ee:ef:65:82:0b:9c:1e:4b:d0:
b3:b3:0a:a0:c3:6d:2a:20:5d:a8:34:af:d2:ef:6d:
b7:12:03:15:ff:28:3f:f4:a1:53:53:fa:f4:18:07:
57:22:ce:fd:a5:44:71:46:8b:f6:58:e0:87:92:8d:
a3:d7:af:45:c6:ae:53:16:fd:7f:6a:d2:aa:72:7f:
65:45:cf:0a:57:c3:43:14:8a:d5:9a:49:45:d3:5a:
a1:72:a6:bf:af:33:01:60:79:a6:5f:bc:a9:06:2a:
a7:ca:c0:4c:14:ea:92:53:b2:19:46:9c:14:b3:5c:
4a:bb:f4:73:ab:e2:b4:e4:b1:cb:5f:f8:5c:00:ca:
b8:38:0d:10:4c:14:0b:8b:96:3e:35:f6:16:f2:81:
04:37:53:53:34:af:44:1e:16:56:83:7d:47:3e:02:
ff:05:bf:6e:f6:b2:d7:50:b2:88:46:92:33:61:6b:
19:d9:30:91:4a:d9:d0:42:91:a7:74:b7:68:2a:fa:
d1:dd:d1:e7:87:61:14:f6:17:c3:9e:69:4b:fa:e4:
2f:d8:fd:a3:0b:8e:be:9a:a3:bd:bb:b3:b5:d7:84:
e7:a0:ce:4d:56:1b:00:b9:e1:82:27:1b:50:49:9a:
0c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2D:17:7E:DB:21:D8:AE:52:D9:AF:A7:1F:15:AF:CD:C7:76:A9:91
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/zi0Xftsh2K5S2a-nHxWvzcd2qZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.5.0-31.40.7.255
Signature Algorithm: sha256WithRSAEncryption
80:5a:ce:83:f8:83:72:0d:9d:51:ff:c8:72:3a:69:21:a5:ab:
00:6a:df:9b:0a:6a:fd:95:09:8b:d0:25:60:2d:88:b5:10:18:
54:fc:ef:1f:2e:4b:57:77:98:97:cd:20:6e:88:1a:f8:c9:a5:
e7:9d:73:32:dc:2d:21:4d:70:81:fc:27:bc:9f:dc:30:ea:03:
b1:56:a9:f0:09:94:53:da:8d:b1:cd:f1:b3:83:45:23:9b:61:
0b:58:07:76:de:51:ee:57:75:49:17:f4:82:77:c1:4e:03:6c:
e4:e7:e3:15:72:6c:92:37:c4:49:f2:c2:a3:84:0d:14:c3:d5:
5e:1d:1f:03:44:c6:ef:2b:0a:72:95:fe:ac:9c:cf:0c:54:c7:
f1:88:94:5d:48:7b:10:7f:00:07:98:16:e2:07:d2:16:7b:0f:
0d:17:0c:4d:2f:c7:d9:71:2f:3e:c9:b0:c8:ae:98:86:bd:d0:
76:53:dd:cd:ec:8e:f3:55:cd:66:3f:7f:f5:49:45:9e:ec:c7:
03:10:01:2d:4d:42:70:c9:c6:12:ea:3c:1b:c6:56:3c:e6:78:
64:45:5b:57:85:46:2c:ff:94:de:65:4d:66:16:37:91:06:2a:
a3:85:fd:86:81:42:5b:54:2a:f0:91:cb:6a:30:71:a2:f1:19:
b4:fb:b4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org