Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/hdx5CoNRQaqtH0Jo0qbkSRa4rbw.roa
File: hdx5CoNRQaqtH0Jo0qbkSRa4rbw.roa (raw, json)
Hash identifier: oT4yfzNKK8EvbB1hNMF0ly7pIzn3T7yI9zU0Ud9//zo=
Subject key identifier: 85:DC:79:0A:83:51:41:AA:AD:1F:42:68:D2:A6:E4:49:16:B8:AD:BC
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0B3FCD32
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/hdx5CoNRQaqtH0Jo0qbkSRa4rbw.roa
Signing time: Sat 01 Jan 2022 08:59:17 +0000
ROA not before: Sat 01 Jan 2022 08:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201494
IP address blocks: 31.177.60.64/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188730674 (0xb3fcd32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Jan 1 08:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85dc790a835141aaad1f4268d2a6e44916b8adbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:f4:8c:f3:c0:a0:19:59:30:32:1c:96:56:
e2:3e:53:56:fd:12:2b:82:9e:b0:1d:db:c5:f3:16:
ea:d2:06:59:87:05:b4:9c:7a:f8:77:56:31:5d:b4:
7a:be:e2:68:7a:a1:57:1a:8d:4e:dd:01:f9:b9:8f:
85:ee:4f:66:3f:34:64:8a:7b:45:8d:5c:ca:6e:b7:
35:37:38:3c:75:24:19:81:5c:6e:32:99:bf:6b:6f:
1c:e3:20:15:95:d4:29:da:de:20:fc:81:cb:03:fc:
02:cf:6b:c2:d0:6c:ab:13:5d:2e:56:e8:a3:9f:62:
60:91:1d:3c:3f:05:99:3a:5f:33:23:c7:28:f5:ba:
c4:0f:35:4b:63:b1:e8:9e:d8:39:5d:44:73:5e:d6:
b6:bc:54:72:a6:9e:aa:f7:e1:58:db:d6:ca:e9:b3:
44:70:a7:8d:a4:b7:4b:ed:19:63:a2:65:89:d9:95:
b2:04:51:5d:ef:e8:58:55:6a:bb:01:e6:0d:82:07:
f1:68:10:54:e9:43:73:ec:2d:b4:4d:c8:b3:d8:63:
b3:d3:c0:53:8b:cd:09:a7:22:d7:47:80:c7:04:16:
71:c8:cb:79:9d:ba:d8:f1:03:ac:0d:8c:f2:cd:0f:
9f:a0:aa:66:5b:cf:3d:2a:5a:6a:d5:84:79:13:ca:
06:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DC:79:0A:83:51:41:AA:AD:1F:42:68:D2:A6:E4:49:16:B8:AD:BC
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/hdx5CoNRQaqtH0Jo0qbkSRa4rbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.177.60.64/27
Signature Algorithm: sha256WithRSAEncryption
a8:d2:79:c2:11:9a:31:f8:dd:49:9d:17:2f:d4:b8:bf:a7:c1:
c0:53:49:39:fc:e3:c9:0b:b7:e8:16:5e:60:96:72:ac:ad:ea:
c8:42:46:e1:0a:ad:a4:3e:9a:ac:60:69:88:0e:e2:fd:8a:7c:
5b:0d:f0:b7:cb:0f:c3:fd:b8:ce:90:e1:5f:4f:81:e5:be:12:
e8:e4:88:81:d1:9c:a0:8c:06:26:08:47:f9:2f:03:33:45:8e:
ca:5d:83:34:72:02:9f:25:33:f1:0f:c9:3d:00:02:c5:e5:44:
24:4d:84:50:46:e0:5a:58:59:5b:6a:2c:71:e9:74:5a:78:4a:
88:e3:42:6f:b0:bc:4d:45:bc:56:2e:6b:d2:ce:5f:ed:6d:50:
60:b6:fa:4f:a8:ce:f9:10:16:68:4f:84:a9:6e:bb:38:fd:17:
76:c8:6f:98:c4:01:e4:ee:94:37:13:83:c7:3c:af:82:bc:70:
39:27:4d:93:47:75:7f:5a:7e:4e:a5:c7:64:f3:6c:c2:5c:f1:
7b:83:24:1d:50:fa:5a:84:d8:4c:83:54:7a:d3:45:9f:f7:4c:
4e:0f:a2:32:f9:3d:da:1b:13:98:14:8b:3d:c6:b3:4d:73:16:
42:b8:9a:9f:4d:37:72:8f:49:d7:fb:91:c1:78:ab:e8:0a:ba:
06:12:a2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org