Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/BCnDMk5mi9RFLXM7DyhZQxJL62w.roa
File: BCnDMk5mi9RFLXM7DyhZQxJL62w.roa (raw, json)
Hash identifier: txqT8lhvL5UmJF8yF+YWZP0zOKxJEGn9DspSZGydLtw=
Subject key identifier: 04:29:C3:32:4E:66:8B:D4:45:2D:73:3B:0F:28:59:43:12:4B:EB:6C
Certificate issuer: /CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Certificate serial: 018218A8B1E6BB37631274E3972E2DCAB601
Authority key identifier: 51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/BCnDMk5mi9RFLXM7DyhZQxJL62w.roa
Signing time: Tue 19 Jul 2022 22:51:24 +0000
ROA not before: Tue 19 Jul 2022 22:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212982
IP address blocks: 31.41.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:18:a8:b1:e6:bb:37:63:12:74:e3:97:2e:2d:ca:b6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Validity
Not Before: Jul 19 22:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0429c3324e668bd4452d733b0f285943124beb6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:99:8c:f0:e6:18:b4:b9:31:f2:9b:64:03:54:
82:19:3b:73:e2:ea:47:13:01:19:77:d0:2c:83:c6:
47:8c:a2:4f:5b:5c:06:46:fb:a1:01:8b:47:d4:81:
ea:b0:3b:e5:d7:bf:f1:91:9b:75:e4:bc:20:7c:9a:
a1:9e:95:a6:0a:9f:86:de:63:ba:2b:3d:58:76:1a:
ab:15:eb:75:f5:d9:aa:bc:30:92:ad:ed:4f:d2:62:
88:c6:40:4c:45:04:6f:7a:cc:d1:4c:6c:96:2b:d5:
fc:37:0f:a7:ce:2a:08:d0:0d:40:23:58:81:9c:bf:
56:60:42:3d:8f:fa:6c:ef:fb:f3:87:fc:de:61:97:
44:fc:f8:3e:54:2f:d0:03:5e:b1:84:00:ac:3f:b9:
59:e5:08:65:39:14:8f:79:16:4f:89:33:40:19:34:
2a:24:71:77:96:1b:d9:eb:1e:9b:fd:29:a1:a5:8c:
a6:7a:00:76:73:e1:8e:a4:e0:bd:dd:d0:d1:15:c7:
75:eb:ef:72:ca:da:85:81:eb:77:ad:a8:65:4d:11:
f3:77:29:8b:ae:b7:a7:88:80:d0:4b:1c:0a:f1:08:
0b:3c:0a:c8:76:74:0f:af:1c:f6:1f:49:23:e6:e8:
c4:37:e3:7f:7b:e8:35:18:18:1d:47:e8:df:0c:6b:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:29:C3:32:4E:66:8B:D4:45:2D:73:3B:0F:28:59:43:12:4B:EB:6C
X509v3 Authority Key Identifier:
keyid:51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/BCnDMk5mi9RFLXM7DyhZQxJL62w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/USuhUseLveq_9vh9CIopV8zkKsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.32.0/24
Signature Algorithm: sha256WithRSAEncryption
47:bf:e7:84:b7:1d:97:db:39:ab:2e:fb:ee:90:92:47:10:00:
8e:9a:c2:e9:88:6d:1d:58:1c:44:a0:02:8b:ef:3d:1e:fe:de:
35:00:78:08:52:93:4b:f4:94:1a:a5:9f:f1:b1:42:fe:90:67:
34:40:ee:a3:b1:3c:83:3b:c8:6f:fc:0d:5e:6c:cb:f7:de:2f:
e4:11:6d:d9:e4:ec:94:51:20:16:72:0c:e9:4e:65:ae:20:3d:
57:b1:79:cb:fd:cc:67:35:ac:dd:0b:b0:29:57:c3:dc:bf:d9:
27:1b:72:e8:9e:9a:21:ee:8c:b2:6c:9a:5e:dd:64:c2:06:6a:
2d:e2:b6:6d:16:24:bf:19:fe:85:3f:c7:68:c6:92:ef:c0:14:
2b:70:03:b1:97:6e:01:ea:f4:84:46:f8:a5:eb:bd:b5:89:c7:
6c:1d:79:9f:2a:90:d7:05:85:94:98:22:2b:56:01:1e:c8:fb:
0a:e4:6a:6f:e5:19:e9:05:9b:da:49:4e:71:15:39:de:d5:82:
22:b7:e3:01:01:18:4a:e8:97:61:f4:6d:05:dc:1f:98:2b:38:
0c:f6:94:a1:aa:4f:4d:2e:da:7e:55:b1:7a:b5:3f:d2:f2:ee:
38:85:cf:82:56:63:d8:e3:dd:7e:0c:46:f2:48:f1:ac:70:23:
7d:cf:1f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:24 2024 by rpki-client on console-ams.rpki-client.org