Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/NIOJPdS1x_7hl4G8LtSEr7svVkw.roa
File: NIOJPdS1x_7hl4G8LtSEr7svVkw.roa (raw, json)
Hash identifier: eUwFMhca3U2UaE6UiXSEHT1DfQcVZE0CBSuLnmea+Y0=
Subject key identifier: 34:83:89:3D:D4:B5:C7:FE:E1:97:81:BC:2E:D4:84:AF:BB:2F:56:4C
Certificate issuer: /CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Certificate serial: 0772FC8B
Authority key identifier: 40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/NIOJPdS1x_7hl4G8LtSEr7svVkw.roa
Signing time: Sat 01 Jan 2022 09:04:19 +0000
ROA not before: Sat 01 Jan 2022 09:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12985
IP address blocks: 31.41.136.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124976267 (0x772fc8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ea5e39f8635736e48df53822a5cacc10b43a1f
Validity
Not Before: Jan 1 09:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3483893dd4b5c7fee19781bc2ed484afbb2f564c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:81:91:1c:5f:0a:fa:60:5a:c5:d9:e1:ef:9d:
74:26:9f:12:78:f7:8a:ce:84:c4:9f:9a:72:e7:6b:
39:55:f8:8c:bc:99:41:95:b7:3a:96:ae:04:6a:16:
27:ff:d0:ab:98:30:af:bc:33:2b:05:94:7a:05:94:
cd:69:70:a4:43:1e:db:5d:1f:5c:bd:42:8d:ee:d3:
e5:d9:57:d1:df:01:29:20:66:b6:ce:87:e2:45:dd:
8a:db:ab:0c:07:d4:fb:92:1e:dd:3b:ca:44:94:5a:
c2:6a:c5:40:86:6d:23:d0:1e:03:c7:52:e6:8b:a3:
d5:b4:89:e0:66:6a:52:5f:35:de:0c:a4:86:12:84:
cf:18:fa:54:72:3c:1d:26:02:d4:73:77:eb:f4:af:
38:87:97:4e:61:43:6a:63:54:d5:1d:ab:48:da:24:
8f:b6:48:ca:29:11:65:31:f0:ec:fc:4d:ac:22:cf:
b5:53:e8:e5:8f:b3:14:06:25:d1:5c:99:0d:85:04:
7e:b5:62:ac:37:36:47:64:10:ac:88:24:4b:c1:61:
56:92:a8:ae:60:80:3d:4b:82:43:cf:94:6d:ce:9f:
d1:28:36:c9:ba:ef:ba:2b:5e:93:25:d5:10:e5:77:
c8:b0:f1:55:50:49:79:e1:fd:cf:d1:66:19:46:10:
c7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:83:89:3D:D4:B5:C7:FE:E1:97:81:BC:2E:D4:84:AF:BB:2F:56:4C
X509v3 Authority Key Identifier:
keyid:40:EA:5E:39:F8:63:57:36:E4:8D:F5:38:22:A5:CA:CC:10:B4:3A:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/NIOJPdS1x_7hl4G8LtSEr7svVkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b62439-7e47-42e1-8fdc-18e91296022d/1/QOpeOfhjVzbkjfU4IqXKzBC0Oh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.136.0/21
Signature Algorithm: sha256WithRSAEncryption
98:f6:d7:4a:d4:6b:23:4c:45:95:22:c7:61:fa:8b:73:c1:07:
a7:a9:ae:50:c2:63:ef:fc:59:d3:84:c6:7f:58:e9:37:4d:d1:
98:df:b0:ad:26:bd:10:ce:f7:99:fe:e3:89:ab:34:24:9e:5d:
e7:a9:23:d5:48:94:3f:72:df:fb:11:a5:7c:66:a0:6d:cd:d9:
a3:9a:d3:06:67:01:a0:67:ef:70:6d:11:bb:ed:01:a3:5a:a4:
0d:21:dd:b4:52:89:8d:9e:a5:14:82:65:b4:56:3b:9d:b7:f3:
a5:d3:36:7f:06:f3:76:1f:e4:94:38:f8:0c:03:97:8c:88:cc:
f6:f2:ce:46:b5:d8:b1:f4:3d:f4:93:6d:2f:91:fa:6f:df:f2:
66:cd:d7:b5:5b:85:e5:22:88:7f:ea:a8:92:4b:49:2a:a6:a7:
bf:f0:41:fa:86:1d:ab:37:58:8a:7d:9d:73:3a:b4:ea:51:24:
85:54:ce:7b:95:f2:4a:c3:91:79:ef:55:1c:7a:c5:54:df:7b:
ca:1a:2b:81:5c:f1:5a:97:65:1f:83:01:bd:3c:07:68:8e:e3:
48:72:13:c7:cc:9b:3a:b2:2b:b5:cb:c2:39:65:3e:ad:d0:8e:
7a:33:76:bc:9f:b7:98:6f:01:c9:d2:d5:8c:69:b9:5d:c6:3d:
dc:e5:46:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org