Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/Bv2tGwYOpPUJkJHDT6Nrisea6S8.roa
File: Bv2tGwYOpPUJkJHDT6Nrisea6S8.roa (raw, json)
Hash identifier: gjIjx6HjAaWcowXmkmagTA99m/oVBJLgvHloj7/xqxk=
Subject key identifier: 06:FD:AD:1B:06:0E:A4:F5:09:90:91:C3:4F:A3:6B:8A:C7:9A:E9:2F
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018418834934610579563656812E21228A41
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/Bv2tGwYOpPUJkJHDT6Nrisea6S8.roa
Signing time: Thu 27 Oct 2022 08:16:07 +0000
ROA not before: Thu 27 Oct 2022 08:16:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203346
IP address blocks: 31.14.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:83:49:34:61:05:79:56:36:56:81:2e:21:22:8a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Oct 27 08:16:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06fdad1b060ea4f5099091c34fa36b8ac79ae92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b4:b4:8b:4a:b2:50:fb:63:71:b5:2f:98:4f:
62:07:ea:63:e8:11:a6:8a:86:e5:99:b4:33:25:76:
0c:4e:19:8a:7d:b2:9d:9d:ba:21:bf:d7:fd:f6:eb:
ab:1c:bc:17:cf:39:61:83:2e:0f:a9:bd:09:47:be:
b8:1e:3f:7d:12:eb:fb:59:5b:82:dc:4f:df:15:68:
df:84:18:62:98:59:4e:44:6b:78:c5:76:ed:7a:0d:
c7:b9:35:ff:ce:8e:25:4b:d4:4a:f3:9a:af:a9:0c:
5a:19:5f:3c:65:63:38:08:03:66:71:14:e8:e5:a7:
f6:24:a6:07:18:4d:bd:a7:a6:09:5c:a4:cc:49:ff:
81:ab:e0:7c:e7:01:26:d2:df:04:aa:35:c4:07:5f:
19:be:61:78:13:f4:5c:03:16:e9:fe:fd:dd:71:15:
78:9a:52:f0:da:63:20:13:c2:5a:79:a3:2f:ad:fc:
95:ff:99:dc:34:10:4a:df:ea:56:8a:9f:24:82:16:
55:56:7c:a3:1e:a3:7a:3e:ff:1a:52:de:b0:81:57:
38:e6:5b:f1:d0:26:47:5b:60:88:a5:05:87:fc:1b:
56:80:b4:b1:09:35:b8:d3:ab:03:40:e1:b5:d5:cc:
dd:b7:40:aa:96:bb:72:c7:20:88:2c:ac:f4:8b:50:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FD:AD:1B:06:0E:A4:F5:09:90:91:C3:4F:A3:6B:8A:C7:9A:E9:2F
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/Bv2tGwYOpPUJkJHDT6Nrisea6S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.66.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:ef:66:30:97:09:3e:2c:9f:0c:5f:d8:52:c2:50:18:28:65:
e9:f3:46:f0:d1:03:12:ee:09:c9:81:e3:f4:c1:09:60:7e:0d:
e0:36:42:37:89:33:1e:27:c9:40:5c:9a:05:50:8d:be:fa:e3:
38:81:a9:18:8b:b3:86:77:46:0c:38:5a:00:32:f0:20:31:98:
0b:4b:98:e9:59:30:d3:6f:5b:bb:9f:e6:3e:1c:87:5e:b7:d8:
ef:5d:47:9f:69:46:ff:ae:f3:7f:d5:ef:4a:43:d2:7c:36:85:
7b:d6:f7:c3:e4:89:89:b2:23:bc:cd:a1:74:88:7e:78:15:c4:
6a:11:21:1b:9a:d8:ac:50:a2:ec:6d:01:c2:33:43:5c:d8:fe:
58:3d:de:79:2b:0a:34:fc:ee:62:0b:0f:42:f1:29:fe:e5:b6:
75:ba:c3:60:cf:33:fa:9d:5d:8d:0d:87:63:93:00:23:82:aa:
c6:f5:05:9b:e2:4d:39:17:ed:19:e3:e5:be:03:cb:6b:89:82:
22:24:a4:78:48:09:3d:5c:72:bd:94:9b:19:ba:64:c0:0e:06:
a2:62:e4:b7:6c:0c:cf:3c:76:7e:d4:e0:22:19:6d:04:33:17:
45:dc:ce:56:3c:6b:39:9b:c9:bd:23:51:25:dd:42:46:4e:50:
57:f4:94:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org