Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/qsHTgOdB2LbqfsfaPQKtnw0O5G0.roa
File: qsHTgOdB2LbqfsfaPQKtnw0O5G0.roa (raw, json)
Hash identifier: 10PvrBDQs0sYVuO4xitamG3Pw3Y+s5hXNkSDjswoIU4=
Subject key identifier: AA:C1:D3:80:E7:41:D8:B6:EA:7E:C7:DA:3D:02:AD:9F:0D:0E:E4:6D
Certificate issuer: /CN=79b6ceac5d42a637f36ba1e3fdae90ad5fee2cff
Certificate serial: 0181CE70C897E125FFCA84D623714861D883
Authority key identifier: 79:B6:CE:AC:5D:42:A6:37:F3:6B:A1:E3:FD:AE:90:AD:5F:EE:2C:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/qsHTgOdB2LbqfsfaPQKtnw0O5G0.roa
Signing time: Tue 05 Jul 2022 12:58:26 +0000
ROA not before: Tue 05 Jul 2022 12:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209733
IP address blocks: 31.24.252.0/25 maxlen: 25
31.24.252.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:70:c8:97:e1:25:ff:ca:84:d6:23:71:48:61:d8:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79b6ceac5d42a637f36ba1e3fdae90ad5fee2cff
Validity
Not Before: Jul 5 12:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aac1d380e741d8b6ea7ec7da3d02ad9f0d0ee46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fc:91:0d:e0:0d:77:03:f9:38:4a:a7:7c:d3:
67:63:85:aa:5b:de:11:d4:5b:f6:f5:62:cc:50:c2:
b9:0a:70:52:d0:50:11:94:14:c6:b3:0d:f1:9e:be:
cc:8d:2d:11:dc:e7:bd:6b:c0:fd:b9:c7:48:92:6f:
65:2e:81:93:13:70:fb:37:d0:68:21:a0:1d:6d:c2:
bf:a4:6b:bd:2d:3b:cc:34:14:44:a2:c4:21:80:e6:
4c:fc:6c:0b:1f:76:f6:11:b7:ad:89:9d:19:5c:75:
de:59:37:2e:03:6a:64:3c:1d:3c:ba:c8:43:3e:42:
7e:36:24:48:fd:2d:36:fc:bd:9e:45:8d:62:59:86:
9b:41:20:5f:2e:18:64:13:34:ff:f8:e6:ec:39:b1:
f4:e1:96:ff:92:ff:1e:31:f2:4e:6d:05:7c:8f:3c:
32:b9:f4:20:10:d4:a4:f3:3b:2c:93:1b:32:d3:69:
96:2f:1f:35:68:35:4a:a4:fc:ed:be:2c:86:56:65:
25:14:54:80:60:73:6f:28:40:a2:7a:6a:d3:31:73:
1e:e5:d4:1e:08:1e:3c:4e:e5:69:6a:7d:7b:1d:26:
9f:e7:2e:ce:ad:8c:85:87:07:78:8c:41:f8:4a:65:
8a:82:58:fa:ac:fc:4e:2e:fb:dd:4e:74:f0:99:c5:
d4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C1:D3:80:E7:41:D8:B6:EA:7E:C7:DA:3D:02:AD:9F:0D:0E:E4:6D
X509v3 Authority Key Identifier:
keyid:79:B6:CE:AC:5D:42:A6:37:F3:6B:A1:E3:FD:AE:90:AD:5F:EE:2C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/qsHTgOdB2LbqfsfaPQKtnw0O5G0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a7d421-e8cd-4929-aed0-4fe3f61110de/1/ebbOrF1Cpjfza6Hj_a6QrV_uLP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.252.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:98:d9:95:cb:e7:43:ff:17:c1:56:e5:2c:5d:c0:90:3e:27:
d1:49:51:e5:a7:ce:21:03:b5:43:ad:a4:88:35:f2:47:7b:1b:
76:8d:3d:0f:2b:56:64:d8:6a:59:aa:5f:c5:f1:83:a0:4c:25:
1f:e1:7c:78:0b:f8:d3:e9:49:3f:2c:d2:98:69:62:0b:5f:c8:
d5:87:51:f4:ea:55:56:f7:84:46:25:1f:a8:93:7d:7d:77:08:
cd:54:b9:a2:47:0a:eb:b8:f2:1d:d1:24:6f:60:86:05:ea:0a:
dd:27:0f:71:bb:71:43:0f:20:6d:51:38:c6:a5:de:9d:c5:2d:
ab:e8:f1:c8:89:58:17:c2:f7:c8:d4:6a:96:54:4d:67:9b:95:
ad:af:de:67:7f:9c:ba:ce:85:e5:df:0c:4f:7b:41:0e:73:59:
ae:78:af:e3:8b:dd:97:e0:a0:a3:b9:66:1c:a0:b6:10:e3:0f:
c2:42:5f:03:4d:07:93:03:e8:e3:6a:10:f0:aa:3f:5e:c0:f3:
a3:23:35:dd:0f:dc:5c:13:f4:c2:c1:0f:42:99:2a:de:0f:49:
0d:a3:a9:31:94:ef:cd:a4:77:59:7e:39:31:6c:6c:24:60:01:
cf:48:56:bf:67:7d:50:4e:20:5a:3c:5d:04:5b:e3:fa:ba:23:
72:61:91:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:49 2024 by rpki-client on console-fra.rpki-client.org