Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/lqDIJj-j2JvHzFK5bN8BJBiQnV8.roa
File: lqDIJj-j2JvHzFK5bN8BJBiQnV8.roa (raw, json)
Hash identifier: 9GP6ih8IGrHQRez5t0RtGefcbi4Iy+A4P7czxHs9yVw=
Subject key identifier: 96:A0:C8:26:3F:A3:D8:9B:C7:CC:52:B9:6C:DF:01:24:18:90:9D:5F
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 02D00E5A
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/lqDIJj-j2JvHzFK5bN8BJBiQnV8.roa
Signing time: Fri 22 Apr 2022 12:41:05 +0000
ROA not before: Fri 22 Apr 2022 12:41:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 81.31.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47189594 (0x2d00e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Apr 22 12:41:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96a0c8263fa3d89bc7cc52b96cdf012418909d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ad:3b:2f:36:96:20:79:04:64:31:ce:2c:ba:
19:fc:50:77:d8:8b:6f:83:08:c2:fc:b5:66:29:fd:
ca:d1:4e:63:df:11:54:b4:cc:ac:70:0d:7b:7b:ed:
d6:1e:d3:4c:ef:f9:58:42:c8:0b:7d:a3:50:13:81:
52:9a:72:d6:8d:13:12:76:0d:8e:f5:c9:ab:bf:19:
43:a5:e7:31:53:d1:07:e8:22:fc:d1:96:69:74:5f:
98:18:34:1e:7a:87:e2:07:d9:7f:70:8f:3e:e4:9e:
f3:3d:ed:d9:0e:62:93:d9:86:03:f9:4d:54:9c:64:
97:28:c9:db:85:f9:ef:c3:88:89:1a:22:0d:f1:4f:
91:ba:5b:e8:15:a6:10:21:9b:a7:3f:3d:ae:12:39:
16:23:b9:09:24:b5:e5:13:6f:e0:52:39:3f:cf:43:
3b:92:ab:6a:c8:d1:1b:41:22:a0:a3:e7:55:22:88:
e1:57:40:45:6c:2e:4b:82:8b:26:2e:5d:bf:c4:c3:
8c:7b:21:82:49:da:a8:3d:fd:6c:32:a7:86:3d:65:
01:a6:e0:50:5d:b8:ad:49:60:93:3e:be:f9:a0:ac:
32:99:b3:0c:e5:cb:05:e6:40:27:61:34:43:42:89:
04:34:8d:30:c8:9b:cb:26:91:80:44:cc:b9:7c:32:
bf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A0:C8:26:3F:A3:D8:9B:C7:CC:52:B9:6C:DF:01:24:18:90:9D:5F
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/lqDIJj-j2JvHzFK5bN8BJBiQnV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
Signature Algorithm: sha256WithRSAEncryption
be:dc:cf:b3:5a:4a:71:54:25:e1:5a:7a:ff:27:4f:42:f3:8a:
10:8b:3e:40:0c:8d:f8:0d:a0:3b:f7:41:76:82:29:01:3c:8b:
65:ab:37:94:c4:f7:97:60:df:22:23:8e:f5:e2:0c:70:24:0f:
9e:3f:b1:7a:b9:0d:35:33:97:96:79:ab:ac:34:95:81:47:d6:
2f:15:70:fa:9c:db:ea:58:f6:c1:5e:73:1a:d2:aa:52:65:fc:
ba:ea:76:e9:64:4c:0d:9b:a1:09:2e:f9:d8:8c:55:30:2d:93:
a0:de:d5:b1:2f:14:1e:6b:37:75:29:bd:14:cf:89:5d:c8:fd:
41:6a:52:0a:dd:89:58:b0:fa:20:d0:38:ba:25:e7:87:8e:34:
16:f1:0e:e2:57:c0:d3:5b:cc:1d:74:a7:8b:c0:72:a9:af:60:
1b:09:c3:bd:92:f1:16:24:95:e9:de:88:6e:3a:b6:91:36:0e:
83:4a:e9:31:b6:ab:ae:ae:a9:46:80:35:b8:f9:6b:84:26:2f:
56:bc:46:b8:86:bf:f9:a4:b8:ea:51:1c:4d:d1:0f:94:6b:43:
30:91:a9:a2:a7:fd:02:1d:0c:0b:99:d3:84:ec:85:d9:21:20:
19:1f:87:e1:84:89:7e:b5:be:6f:fb:88:03:10:aa:ae:e6:35:
36:f5:cd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-ams.rpki-client.org