Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/lEY_omC6yqLh5kfYqNO9Gjm9gFE.roa
File: lEY_omC6yqLh5kfYqNO9Gjm9gFE.roa (raw, json)
Hash identifier: qG1IGg4YeC9veV5KIHTWxSKp4fY/NQPw1JXqPYqUhrg=
Subject key identifier: 94:46:3F:A2:60:BA:CA:A2:E1:E6:47:D8:A8:D3:BD:1A:39:BD:80:51
Certificate issuer: /CN=1ebe3e521407f597f255f3fb4e0b569c32083552
Certificate serial: 01847BFF9AD1D782DF0EDE75583617364BE4
Authority key identifier: 1E:BE:3E:52:14:07:F5:97:F2:55:F3:FB:4E:0B:56:9C:32:08:35:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/lEY_omC6yqLh5kfYqNO9Gjm9gFE.roa
Signing time: Tue 15 Nov 2022 15:54:19 +0000
ROA not before: Tue 15 Nov 2022 15:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43728
IP address blocks: 78.31.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:ff:9a:d1:d7:82:df:0e:de:75:58:36:17:36:4b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebe3e521407f597f255f3fb4e0b569c32083552
Validity
Not Before: Nov 15 15:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94463fa260bacaa2e1e647d8a8d3bd1a39bd8051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7f:60:8e:5b:09:eb:df:55:8d:cd:fa:92:a2:
17:b4:92:4b:fa:ce:42:73:72:44:05:06:7a:2a:af:
b3:10:42:17:01:66:37:bc:b7:43:ec:9d:53:7b:b6:
57:36:49:f7:5e:79:cf:11:61:6b:d3:8e:43:85:66:
a8:e2:21:07:0e:af:68:79:15:a6:7e:d4:de:88:36:
7d:dd:2d:f8:62:4f:04:81:77:65:f9:c2:11:7a:91:
82:08:44:ce:0a:6d:f9:7c:b6:9c:90:37:ff:01:a0:
a1:a8:be:3f:6e:40:c7:3c:5f:44:26:de:e5:f9:16:
90:92:81:2e:75:0b:3b:b5:34:58:f8:46:4a:12:4c:
e1:23:36:6d:84:29:93:01:68:84:f6:64:80:39:f7:
69:2f:b0:95:8f:34:bc:be:05:41:dd:3d:a3:89:8e:
8f:0a:7e:d0:45:70:aa:c1:80:65:87:8c:a0:aa:5c:
b6:39:e2:92:1f:d3:95:d0:2c:84:d8:80:6c:36:c7:
ff:b9:3b:47:80:68:b4:ff:ca:98:20:e2:99:5d:9c:
ec:0e:9d:13:41:26:d3:ea:27:30:ed:76:11:c2:23:
02:c1:47:c4:56:f6:03:21:75:17:73:6c:39:23:cd:
7f:7f:e8:54:cd:a2:2b:df:2d:98:9a:fe:e5:32:6e:
d8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:46:3F:A2:60:BA:CA:A2:E1:E6:47:D8:A8:D3:BD:1A:39:BD:80:51
X509v3 Authority Key Identifier:
keyid:1E:BE:3E:52:14:07:F5:97:F2:55:F3:FB:4E:0B:56:9C:32:08:35:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/lEY_omC6yqLh5kfYqNO9Gjm9gFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/124ac8-fa93-4c23-bd62-5b4aff7a6398/1/Hr4-UhQH9ZfyVfP7TgtWnDIINVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.31.0.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:33:ea:ef:21:1d:fe:41:fc:7a:e3:9b:f5:28:1e:0c:75:e7:
57:bc:ab:66:fd:4e:08:8f:a0:7f:a8:eb:3e:5e:45:c0:9d:ab:
bb:27:ef:22:ac:c5:74:ce:ab:e5:96:7d:54:a4:3e:27:1d:ee:
cc:0f:a7:fd:a1:83:16:49:af:c4:81:65:c0:95:ba:c8:4e:c7:
8e:39:26:2b:28:82:3f:c9:63:27:e3:ca:a2:13:93:41:9e:dc:
53:0d:7e:b9:02:42:8c:e7:98:4c:a3:01:e5:56:8c:9e:a9:16:
30:40:82:1f:b8:97:13:a3:02:ed:f9:cf:d4:c4:5f:a4:ee:df:
d4:93:a4:74:db:89:8f:f3:46:be:6b:f8:d4:66:dc:33:0b:58:
21:70:9e:b4:e1:75:6f:51:ba:3c:09:b2:61:c7:1d:57:40:7d:
8c:ad:50:cf:3e:2f:07:c3:fb:65:73:ae:c3:58:95:95:d7:dd:
01:01:b6:11:99:84:a2:68:df:87:c5:9e:15:9e:e4:02:43:28:
7c:94:5f:f3:47:7e:35:f7:3a:98:3d:29:86:c7:f0:2f:9a:60:
c0:8f:b9:97:99:3c:b2:c3:a4:29:4b:f6:38:19:45:ee:7b:d5:
5c:85:ea:a1:62:8a:fe:4c:74:28:62:d5:14:45:d0:3b:68:f6:
8d:91:67:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:17 2024 by rpki-client on console-ams.rpki-client.org