Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/8MuV8OGpRrRUJLcwOfdCEcPr73s.roa
File: 8MuV8OGpRrRUJLcwOfdCEcPr73s.roa (raw, json)
Hash identifier: xVWAxSVbI/xImPSO7j7n7qqeLoRHVQgNZmK7+yNOtUY=
Subject key identifier: F0:CB:95:F0:E1:A9:46:B4:54:24:B7:30:39:F7:42:11:C3:EB:EF:7B
Certificate issuer: /CN=79b6ceac5d42a637f36ba1e3fdae90ad5fee2cff
Certificate serial: 0181D94149CA0EDD5C282EA43584444360CA
Authority key identifier: 79:B6:CE:AC:5D:42:A6:37:F3:6B:A1:E3:FD:AE:90:AD:5F:EE:2C:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/8MuV8OGpRrRUJLcwOfdCEcPr73s.roa
Signing time: Thu 07 Jul 2022 15:22:23 +0000
ROA not before: Thu 07 Jul 2022 15:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209733
IP address blocks: 31.24.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d9:41:49:ca:0e:dd:5c:28:2e:a4:35:84:44:43:60:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79b6ceac5d42a637f36ba1e3fdae90ad5fee2cff
Validity
Not Before: Jul 7 15:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0cb95f0e1a946b45424b73039f74211c3ebef7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b2:16:f6:73:5a:60:84:0a:2a:26:72:92:21:
53:a8:2c:66:6f:33:3b:b8:35:22:31:b4:f9:4a:cb:
94:88:10:d0:bd:94:29:01:02:0f:28:87:0a:0c:15:
0d:a7:f9:90:69:49:65:6a:9c:26:29:22:de:0b:30:
31:2f:0b:a3:cc:16:bb:a5:3d:17:63:79:3e:a3:71:
67:9f:40:b3:6d:10:e4:d9:59:2a:37:a1:ca:28:56:
23:8a:f1:53:58:8e:95:9b:44:94:f4:21:46:bf:9c:
3a:09:af:a3:2e:34:5e:82:19:66:b3:24:e9:82:6c:
8c:c4:81:13:6d:ca:de:1c:1a:eb:60:31:9e:40:ca:
db:8b:c4:cf:46:6d:4b:8e:b6:8e:c6:f1:70:0b:37:
c9:6e:7c:61:5d:c6:84:e9:50:24:18:cb:e7:20:7a:
ac:3a:32:25:49:34:5c:0c:0e:8f:e4:71:a8:83:5d:
d1:af:6a:f1:c3:59:ab:b6:37:f1:6b:36:6a:20:4d:
24:a8:ca:5b:0c:9e:28:25:cf:4f:50:25:4b:bc:46:
ec:9e:f4:81:b7:70:ef:6a:e5:5a:5f:15:79:57:ca:
32:6b:1e:99:12:11:e6:84:8b:ce:be:8c:29:66:c0:
04:bd:81:9e:8d:dd:e5:4e:03:2b:be:5c:16:a9:96:
1b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CB:95:F0:E1:A9:46:B4:54:24:B7:30:39:F7:42:11:C3:EB:EF:7B
X509v3 Authority Key Identifier:
keyid:79:B6:CE:AC:5D:42:A6:37:F3:6B:A1:E3:FD:AE:90:AD:5F:EE:2C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/8MuV8OGpRrRUJLcwOfdCEcPr73s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.252.0/24
Signature Algorithm: sha256WithRSAEncryption
18:96:a4:4b:45:8d:96:56:d4:3d:ae:9b:14:55:a9:8e:3b:bc:
43:5a:4c:c4:03:ea:e8:f0:8c:7f:26:8e:9e:9e:cb:50:80:d9:
4a:8d:f1:ee:81:2c:7f:3d:14:21:53:0a:c1:e4:25:f5:e1:bf:
51:a7:54:17:92:5c:de:a1:89:08:4d:03:78:70:10:56:69:38:
af:5b:40:52:11:dc:37:f6:cf:21:8c:61:44:b5:73:36:e8:9b:
d1:1c:1d:04:69:ec:37:63:ae:2c:5a:35:5f:2c:c5:4d:b1:1d:
48:8b:2a:9c:9f:09:ab:a4:48:2b:70:ad:1f:18:13:49:38:cd:
2f:89:32:f8:cd:d1:62:4b:bc:f6:36:00:34:91:0f:65:a6:7d:
99:55:07:83:93:9a:49:b3:d7:a8:7d:a8:9b:7e:6d:84:94:65:
db:f4:e7:ff:ee:51:aa:0b:db:5d:10:00:67:42:db:54:27:f0:
9b:bc:f6:3d:65:72:e1:2a:7e:a1:3d:c8:c0:e2:f1:aa:60:a4:
c3:cd:35:ed:38:a1:7c:9f:43:67:c0:d8:a7:ef:10:5a:30:c9:
23:ac:82:36:ba:4f:e2:c1:08:9f:28:ab:21:55:e5:3f:89:cd:
f2:29:49:6f:0c:5e:0d:64:a7:34:6e:01:fa:28:ce:01:fd:ce:
23:d0:cf:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:15 2024 by rpki-client on console-ams.rpki-client.org