Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/_U2xZL48WlwQg7ny9sX6Jp8eoCI.roa
File: _U2xZL48WlwQg7ny9sX6Jp8eoCI.roa (raw, json)
Hash identifier: UgbZSXyvm34BTeWpxZjgtOiX+3TpzxoKmipnV5xacTc=
Subject key identifier: FD:4D:B1:64:BE:3C:5A:5C:10:83:B9:F2:F6:C5:FA:26:9F:1E:A0:22
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 020337
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/_U2xZL48WlwQg7ny9sX6Jp8eoCI.roa
Signing time: Sun 26 Jun 2022 11:45:21 +0000
ROA not before: Sun 26 Jun 2022 11:45:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209279
IP address blocks: 31.41.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131895 (0x20337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Jun 26 11:45:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd4db164be3c5a5c1083b9f2f6c5fa269f1ea022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:45:69:46:b3:d2:2a:60:e3:24:87:11:0d:be:
91:df:c9:ff:a3:0f:19:01:cd:fe:48:1a:e2:22:35:
a1:41:fe:ec:94:f6:1a:cc:0c:4e:88:0a:ff:97:25:
e5:b0:7a:b6:65:c1:94:5e:7c:f6:01:47:65:5b:16:
54:da:2c:80:70:24:8d:2a:8f:c9:b1:a9:f2:2f:a7:
bb:7d:d9:28:44:3c:2f:84:e8:51:02:ac:b8:3a:89:
27:7c:b3:83:1d:ea:93:13:37:ef:18:a6:64:16:6e:
14:17:c7:dd:6d:c6:6b:2e:f7:be:06:13:05:1a:9f:
54:ec:fc:63:1b:5e:c1:0b:1a:57:e3:7c:e2:38:51:
a5:55:65:80:12:66:c9:9b:13:0e:e4:e7:64:74:45:
d4:5f:cd:f5:8f:1f:4e:c5:31:96:e7:a9:a5:a0:82:
6c:3e:5c:8a:e0:3b:82:55:e1:75:c6:75:df:59:92:
d3:f7:73:48:0c:15:c3:90:c1:91:b0:38:18:bf:5f:
07:4b:7b:35:82:72:ee:d5:bf:81:01:03:e8:0b:7e:
ce:20:db:32:8e:13:6d:9b:de:de:8c:d6:71:7e:b3:
09:da:ba:f7:4a:31:02:c5:fc:42:7b:31:1a:3a:57:
d8:88:87:9f:16:3e:3a:d4:90:8b:1e:9e:1f:aa:2b:
25:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4D:B1:64:BE:3C:5A:5C:10:83:B9:F2:F6:C5:FA:26:9F:1E:A0:22
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/_U2xZL48WlwQg7ny9sX6Jp8eoCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.35.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6e:f6:d7:54:d1:c8:34:0a:54:b1:ef:6e:e0:02:a1:26:a9:
70:81:e3:5b:b8:5c:81:76:16:91:84:c3:03:f1:b0:6c:ca:39:
e7:d9:02:0b:a5:53:5c:a5:7a:73:4b:fd:04:79:f8:1a:f8:95:
90:36:a0:8b:9a:21:44:07:cb:0f:10:57:49:7f:a2:c7:4a:c0:
48:70:66:eb:33:ea:ad:82:00:c4:bf:dd:2d:8e:ae:da:f1:9e:
d9:3a:c6:84:30:04:84:a7:8e:eb:32:79:3e:0d:03:09:fa:09:
67:b8:00:8b:ec:eb:92:65:b7:43:15:b4:63:60:f1:af:26:18:
a3:b6:38:d7:fa:56:84:09:80:3f:78:a5:55:c7:b0:41:ac:b6:
a6:e0:da:55:6f:a3:f2:11:36:da:8d:3d:f2:02:3f:66:dd:0d:
85:49:5a:9f:9e:cd:09:73:8b:ab:39:8c:31:99:14:77:21:b3:
10:51:b2:00:6c:8e:48:84:05:2e:72:9f:bb:e1:de:b8:bc:ff:
48:00:0f:2b:e7:49:6c:4a:e5:6c:1c:2f:31:d1:48:dc:ee:0e:
24:39:9f:56:19:ad:01:28:bb:73:ff:e9:83:ac:41:30:58:30:
88:69:a1:60:bc:9e:90:58:66:e4:84:b7:f1:07:81:6e:14:99:
76:0a:8c:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:24 2024 by rpki-client on console-ams.rpki-client.org