Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/y4vCpjrv6dUN00nlXmcZ8dNjEgw.roa
File: y4vCpjrv6dUN00nlXmcZ8dNjEgw.roa (raw, json)
Hash identifier: DAx1dkceh1L156Th5kWwU3KeK6v9+HJvaplXFfbogD0=
Subject key identifier: CB:8B:C2:A6:3A:EF:E9:D5:0D:D3:49:E5:5E:67:19:F1:D3:63:12:0C
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 01846689465F7F19A6F26FC489523E2B1181
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/y4vCpjrv6dUN00nlXmcZ8dNjEgw.roa
Signing time: Fri 11 Nov 2022 11:53:03 +0000
ROA not before: Fri 11 Nov 2022 11:53:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 31.193.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:89:46:5f:7f:19:a6:f2:6f:c4:89:52:3e:2b:11:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Nov 11 11:53:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb8bc2a63aefe9d50dd349e55e6719f1d363120c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:14:70:73:2d:84:04:9e:f1:06:06:57:e6:9c:
93:af:08:b2:8e:37:6e:40:f5:88:24:99:47:44:2c:
cb:a1:5e:5c:0a:e9:9b:90:ab:b5:b9:d0:10:ca:7c:
10:cc:49:ad:9b:49:03:0c:86:e9:43:a3:d5:db:8b:
c0:aa:f7:ea:e9:15:4a:ac:d2:7e:1b:30:95:57:b6:
48:9f:27:9e:b4:41:4f:d4:2f:d2:79:45:7f:4e:7b:
0a:c2:a1:59:2f:3d:a3:d4:d9:56:f8:7a:80:03:49:
0e:2f:02:85:65:d9:d6:cf:7c:a3:b8:4d:84:03:ce:
7a:00:e5:4d:e2:9f:f7:cb:ce:ca:76:29:30:ca:8e:
be:69:3b:46:11:41:df:e5:fe:55:86:82:cd:ce:30:
1a:b1:19:7c:75:1d:cc:8d:d7:e9:5e:70:e9:cc:33:
4f:a8:32:0e:96:f3:9d:3c:26:aa:f4:a1:0e:9b:ed:
3c:04:a5:21:2c:8e:f0:25:0a:0c:ff:d7:97:e9:0a:
c5:6a:4e:43:e2:37:c6:f9:f8:f0:f8:cb:49:7f:cc:
37:ef:0a:b6:35:07:e0:2a:80:7d:fd:b2:59:47:2c:
05:84:2d:ee:2a:a7:de:f1:77:d6:ea:f9:ee:7b:07:
73:ce:75:af:43:46:8c:87:e9:fe:f2:fa:86:95:aa:
b4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8B:C2:A6:3A:EF:E9:D5:0D:D3:49:E5:5E:67:19:F1:D3:63:12:0C
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/y4vCpjrv6dUN00nlXmcZ8dNjEgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.240.0/22
Signature Algorithm: sha256WithRSAEncryption
48:cd:fa:9b:c8:d7:42:9f:e7:d5:f1:5f:cc:9e:39:8f:e2:01:
94:cc:26:a3:f6:00:8a:e8:c2:fb:bb:09:d5:7e:63:9f:9a:37:
65:14:ae:4d:fe:b6:b3:b2:3d:bb:ab:98:be:7b:b2:8a:e4:fc:
10:f9:5a:ca:40:ab:9e:a9:c2:c0:9e:34:d2:3a:a2:0c:3a:52:
30:fb:ba:e5:33:86:bf:57:ad:00:cb:c7:a1:13:9f:36:26:e6:
4e:0d:80:a0:46:e1:71:8e:8b:ca:ec:e8:ac:a5:14:74:03:e2:
5a:d5:a8:e2:7c:c9:a2:ab:c2:f7:76:b0:55:cb:a9:6f:fe:6d:
fb:0b:0a:50:ed:1c:4b:f8:ce:b2:d2:d3:e5:10:dd:62:0b:9f:
42:a0:8c:89:09:80:4b:5e:fe:87:a0:da:6e:10:a0:bf:05:a9:
d6:2c:a3:3d:af:5f:1d:3d:74:57:83:65:92:9d:8c:41:ca:fb:
1c:71:41:44:f2:86:26:76:da:fa:b6:80:bf:ed:05:10:9b:bc:
dc:bb:da:41:bf:f7:07:7e:3d:00:b6:62:12:1f:d3:37:5f:c1:
b3:7d:13:d3:b4:c8:e1:4c:d5:18:0f:9c:05:66:c0:bc:e7:7a:
64:1a:b2:aa:24:bd:59:37:f3:f8:d4:d7:71:1c:63:ab:4f:f2:
c3:06:ec:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:26 2024 by rpki-client on console-ams.rpki-client.org