Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/jIawsTIUK9jA3zxy6vQJNWWnwE0.roa
File: jIawsTIUK9jA3zxy6vQJNWWnwE0.roa (raw, json)
Hash identifier: B5XMPNwHBK+S3KoxR2IkLHo9laBKy5ei5pCKdm9bkR4=
Subject key identifier: 8C:86:B0:B1:32:14:2B:D8:C0:DF:3C:72:EA:F4:09:35:65:A7:C0:4D
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 018AB7AD86C0BBCE59DE9566E79113F697E8
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/jIawsTIUK9jA3zxy6vQJNWWnwE0.roa
Signing time: Thu 21 Sep 2023 12:18:37 +0000
ROA not before: Thu 21 Sep 2023 12:18:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197690
IP address blocks: 31.135.182.0/24 maxlen: 24
31.135.182.0/23 maxlen: 23
31.135.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b7:ad:86:c0:bb:ce:59:de:95:66:e7:91:13:f6:97:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Sep 21 12:18:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c86b0b132142bd8c0df3c72eaf4093565a7c04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:eb:6e:bf:5c:db:f0:f0:28:2c:58:d1:1d:d9:
43:8f:df:f3:23:c4:78:a4:03:38:9d:94:c2:65:06:
cf:1c:86:0d:d6:6e:7c:dd:62:ba:89:6d:b7:ef:c0:
a3:c5:db:6f:5d:72:2e:18:97:e7:a6:95:db:5b:4b:
4f:6d:43:d3:0d:bc:cb:b0:85:ef:3d:61:93:2a:ff:
75:d5:1d:96:cf:13:69:7f:aa:0b:02:4e:c2:11:e3:
66:5a:22:a0:d4:41:35:fb:22:da:88:15:49:ea:b7:
01:f9:59:2f:b1:cb:47:d0:ab:cf:f6:69:9a:a9:4b:
9b:fc:5f:06:98:10:e1:87:7b:d2:8a:8a:bb:90:6e:
3a:72:ce:f6:4b:6b:0a:43:10:8f:24:2d:47:47:55:
dd:e5:2a:9b:c7:c7:28:33:04:a1:19:63:f5:dd:37:
dc:e1:ff:df:c3:49:08:e9:a5:4a:93:6e:e5:06:82:
49:79:a7:ad:88:df:74:99:fc:c3:72:10:98:62:34:
ef:ff:b9:ac:3f:d4:5b:82:8c:88:d6:d3:b3:84:50:
9c:89:ce:04:9b:29:d6:13:24:21:d1:fb:0c:ba:6e:
a0:81:33:ca:f3:04:7c:f0:70:09:cb:23:fa:0a:3e:
02:41:8b:dd:c7:d4:9c:29:8d:47:51:c5:69:92:3a:
96:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:86:B0:B1:32:14:2B:D8:C0:DF:3C:72:EA:F4:09:35:65:A7:C0:4D
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/jIawsTIUK9jA3zxy6vQJNWWnwE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.182.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:43:14:21:5f:19:e8:86:49:26:fd:ec:e7:69:07:23:39:03:
9b:f1:ed:53:c2:be:87:10:5f:5a:6e:c8:b4:75:80:e2:7b:9e:
e3:bd:ce:51:2a:02:08:63:39:65:2f:9a:46:25:99:f2:15:ed:
4d:bd:cb:56:ce:5a:cd:7e:39:e0:59:5c:9b:cd:c1:6a:9b:33:
f1:08:48:0b:10:48:fb:7f:f8:f1:7f:f4:6a:ea:55:c6:7e:31:
34:ae:73:3d:1c:a2:ba:f1:36:a2:b0:f7:ab:d3:21:12:91:42:
88:f4:e7:5d:0a:c6:30:b2:2d:4c:39:80:a7:82:c0:ba:c3:2d:
1b:37:32:e1:2f:6c:2a:9b:33:d6:a3:c0:01:76:ce:cb:13:b0:
5d:22:ba:df:a8:d2:2e:77:4d:73:36:5e:04:fd:c8:57:f0:48:
4d:94:cd:75:d0:82:a9:5a:00:20:99:5b:b3:de:f2:8b:92:f9:
39:4e:52:32:09:48:92:6b:0f:ca:13:ed:74:11:09:19:ec:a1:
87:da:e9:f7:b7:6a:98:47:75:cc:28:24:31:6c:e1:28:9f:85:
b6:04:cd:de:01:ae:f9:ae:2f:a0:d2:1b:5f:8c:a6:30:ee:62:
5d:44:54:8c:73:66:0c:6b:c8:7c:65:62:91:48:10:a5:a8:9c:
60:56:3c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:23 2025 by rpki-client