Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/yh2-Q3AXAk95wyR0sg5PluVVsIs.roa
File: yh2-Q3AXAk95wyR0sg5PluVVsIs.roa (raw, json)
Hash identifier: y5e2L+US8bOkfZqDvRqK7vtg/mtABNWjzDLqtqMh3kw=
Subject key identifier: CA:1D:BE:43:70:17:02:4F:79:C3:24:74:B2:0E:4F:96:E5:55:B0:8B
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 01836FBD6E7EB242CE3820E6051AEB840E43
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/yh2-Q3AXAk95wyR0sg5PluVVsIs.roa
Signing time: Sat 24 Sep 2022 13:43:48 +0000
ROA not before: Sat 24 Sep 2022 13:43:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 31.222.200.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6f:bd:6e:7e:b2:42:ce:38:20:e6:05:1a:eb:84:0e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Sep 24 13:43:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca1dbe437017024f79c32474b20e4f96e555b08b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cf:df:2c:74:8e:d0:d7:25:9c:c5:09:77:34:
53:9c:c9:99:34:a8:fa:7c:37:f3:6b:07:6e:32:6a:
40:15:1f:22:d0:b0:72:4b:7a:ed:6e:0d:58:01:e9:
a6:17:e6:bf:7f:1f:8a:da:b9:74:94:a6:67:d0:14:
79:22:b4:4d:48:ea:fb:c8:06:c5:9d:71:34:6e:e7:
6b:80:cd:17:9e:74:d1:aa:0a:5c:98:2b:8d:89:78:
43:4c:9e:04:a7:09:3a:f4:80:80:d2:19:7f:b5:44:
c6:5d:1d:f8:3c:56:3a:cd:5f:9e:a4:bf:e2:1a:63:
61:11:e0:de:20:bf:a6:25:5a:d4:7d:db:6f:9e:be:
59:e1:1b:7a:83:60:6a:99:f7:63:44:16:d1:4d:19:
b0:b2:69:3a:e1:94:70:c7:9a:d3:f3:14:f3:cb:8a:
74:a1:37:5e:d5:52:7d:c0:fc:95:de:ce:16:a8:e4:
c8:f2:63:4b:aa:73:e2:a0:fa:31:fb:36:e7:98:76:
12:28:1d:13:9c:82:81:8c:e7:0d:0b:88:43:91:d1:
a9:0e:6a:a1:10:a7:9f:9e:71:ba:46:1b:50:e7:c5:
25:37:6b:3c:ae:2e:3f:ab:a2:dc:fe:7e:73:fb:e0:
89:82:fc:86:61:34:5b:ed:7e:ed:3b:74:fc:c0:c4:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1D:BE:43:70:17:02:4F:79:C3:24:74:B2:0E:4F:96:E5:55:B0:8B
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/yh2-Q3AXAk95wyR0sg5PluVVsIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.200.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:97:0f:fc:cb:f0:4f:48:9e:13:f6:55:c0:8b:0f:6d:11:32:
35:78:fd:1a:c7:d6:38:44:ca:7e:8e:b7:1a:c9:88:0c:4d:3b:
ee:b0:ff:1e:c7:a4:10:0b:17:8f:88:88:e5:ca:4d:c4:12:34:
f0:5e:1a:7b:b4:37:0a:76:07:33:e0:26:a3:a8:4d:5b:77:4d:
61:33:1e:98:97:5f:a6:85:10:93:5e:0b:70:55:68:a1:1a:9a:
1f:8a:ab:02:6f:13:a2:96:9a:9e:3e:31:5d:80:ff:cc:84:e0:
0a:39:9c:2e:ac:d6:5a:3c:e1:d6:e5:be:2f:6b:2c:f5:05:7c:
ff:fb:e3:0b:22:96:7d:84:57:06:b2:41:0c:a0:27:ef:8e:f5:
24:72:50:c6:a4:d3:01:93:2b:0d:8c:2b:14:c9:52:92:e0:fd:
09:5d:bf:90:de:47:5e:c9:ad:00:56:23:3c:51:45:56:7c:2e:
cf:25:6d:fc:51:57:c0:3f:2e:87:30:5d:f3:b7:53:8c:ef:5d:
5d:48:b9:69:c0:a1:aa:fe:e3:53:86:fa:f1:23:53:23:b5:7d:
a3:41:56:ff:eb:b6:eb:74:77:30:8c:66:b8:9d:a9:72:ae:44:
37:4c:24:7d:86:51:24:6e:ba:5b:ae:be:c0:9d:22:36:41:ed:
9e:41:ca:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org