Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/dIt73EyF-kilHce2EMcAMfxd20E.roa
File: dIt73EyF-kilHce2EMcAMfxd20E.roa (raw, json)
Hash identifier: BbZdeXEz522AfVWegz/hHNA89HL8vypfeOcWZLRr2qg=
Subject key identifier: 74:8B:7B:DC:4C:85:FA:48:A5:1D:C7:B6:10:C7:00:31:FC:5D:DB:41
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 0182928BF456ED2C260F648DB6D303B63F47
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/dIt73EyF-kilHce2EMcAMfxd20E.roa
Signing time: Fri 12 Aug 2022 14:53:41 +0000
ROA not before: Fri 12 Aug 2022 14:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203346
IP address blocks: 31.14.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:92:8b:f4:56:ed:2c:26:0f:64:8d:b6:d3:03:b6:3f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Aug 12 14:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=748b7bdc4c85fa48a51dc7b610c70031fc5ddb41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0b:56:f0:44:03:90:54:0b:48:2a:8c:76:03:
ca:d7:ae:d9:28:fe:c3:a1:58:41:ac:9d:22:25:7b:
17:d0:6d:93:17:bb:0a:a7:6b:c0:f0:2d:4e:63:ca:
c9:d7:cf:82:58:06:d6:6b:66:61:a7:75:8f:6d:48:
78:0d:fe:c2:ed:83:f2:af:a1:9d:7e:83:49:a5:01:
d0:04:bf:48:1c:39:ca:0e:a0:54:72:ce:dc:5e:2a:
9e:d1:1d:e2:4c:30:9f:16:24:89:28:d4:16:28:36:
68:00:e8:4f:3d:bd:4f:03:d1:20:8b:f3:3f:42:3f:
4d:f8:c0:cd:39:69:14:aa:a0:62:15:d1:fd:38:01:
b2:7b:e6:47:1b:b7:f5:39:9c:c5:5f:37:59:e7:7e:
5e:5f:a2:78:ac:18:ca:04:6c:4a:64:8f:a7:05:7f:
a3:d4:85:98:19:a3:56:94:d6:ad:c2:bd:aa:bc:c4:
b6:e3:1f:42:af:c1:07:ee:77:05:2c:d6:4e:4a:72:
3d:17:c6:0b:d3:c3:1e:14:e5:eb:ef:ca:bc:9d:d0:
49:6f:b5:6c:4f:74:0f:9b:f5:8f:b2:e8:c2:d1:5e:
bb:11:7d:20:9f:85:59:69:b3:38:9b:c4:e7:bf:76:
e9:91:11:7e:a9:57:87:e3:c6:b6:c0:c9:3b:72:f2:
23:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8B:7B:DC:4C:85:FA:48:A5:1D:C7:B6:10:C7:00:31:FC:5D:DB:41
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/dIt73EyF-kilHce2EMcAMfxd20E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.66.0/24
Signature Algorithm: sha256WithRSAEncryption
81:50:b4:8f:ed:f0:84:67:a1:45:71:ec:e7:f6:95:e7:ea:e3:
e8:14:c4:d3:d9:dc:7f:fc:dd:17:88:6d:ef:b1:3d:ca:66:f2:
26:8d:e9:ca:af:de:82:86:b5:c5:3e:83:d4:22:a7:2c:78:a3:
d6:d2:92:f6:bc:41:3c:f2:3f:e6:68:45:1c:f6:c1:47:51:01:
32:93:79:62:38:1f:b8:e4:e7:68:bb:ea:d8:09:04:7c:a3:59:
41:87:6e:25:60:66:87:82:71:c9:26:ce:8d:5e:52:fc:9d:3a:
5d:cc:9e:0b:88:9d:4c:05:6b:8e:4c:07:e5:88:38:dd:a0:10:
03:e3:df:13:6d:e2:28:d1:0d:61:a5:15:b9:f6:9f:e3:c0:71:
2e:28:a3:a0:3c:b4:94:67:af:e5:fe:0f:71:37:42:9a:99:ea:
61:f7:05:fa:6a:4c:d7:e7:67:bb:65:3b:02:ef:f4:11:a3:e2:
e9:a3:1d:8f:5b:96:e8:83:3e:fe:0d:4e:26:52:dc:c6:59:52:
75:a7:0a:e3:38:4e:77:7c:21:56:84:59:53:17:a2:bf:66:57:
44:4f:6d:95:e1:e0:88:ea:c7:50:50:17:4a:57:4d:85:5b:c9:
a0:2b:f1:2e:bf:a4:92:9c:fe:5f:a3:ed:11:12:ea:f2:2b:eb:
cf:27:bc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org