Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/cHaE_MZU6gQmuQJvj7pZAT-t0oI.roa
File: cHaE_MZU6gQmuQJvj7pZAT-t0oI.roa (raw, json)
Hash identifier: DFrUeFyC93hwsXfjRwTG9HWXjEJxcTig+05a+2Fjjt4=
Subject key identifier: 70:76:84:FC:C6:54:EA:04:26:B9:02:6F:8F:BA:59:01:3F:AD:D2:82
Certificate issuer: /CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Certificate serial: 021EBD
Authority key identifier: 51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/cHaE_MZU6gQmuQJvj7pZAT-t0oI.roa
Signing time: Mon 27 Jun 2022 20:14:41 +0000
ROA not before: Mon 27 Jun 2022 20:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61223
IP address blocks: 31.41.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138941 (0x21ebd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Validity
Not Before: Jun 27 20:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=707684fcc654ea0426b9026f8fba59013fadd282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:34:d9:41:c1:e0:bc:9c:36:93:ef:f4:78:3e:
a5:4a:d2:0a:9c:8b:0a:d0:fe:a7:68:5c:53:63:57:
22:b3:94:6b:ce:0d:cb:9d:57:8f:4f:19:68:2c:f8:
d8:38:23:49:0c:80:c1:89:90:ab:3e:51:15:cf:93:
78:e4:82:76:41:c8:1f:56:88:fb:35:8b:14:cb:8b:
8b:81:b4:76:a7:cf:b0:3d:fe:89:09:1c:76:57:60:
40:84:19:49:a3:b3:76:ba:76:97:92:dd:4b:3a:70:
8e:ab:86:cf:73:f9:c4:e1:32:13:fd:93:b9:68:2c:
99:67:26:c5:d1:5e:90:e9:22:43:ec:c3:3c:24:ef:
79:b1:81:ac:51:7a:b5:c8:c3:31:71:37:f6:ac:8b:
60:04:98:7c:bf:eb:2d:0f:b1:6f:88:5c:5c:6d:b0:
59:d2:cb:17:f7:8e:15:17:33:ce:f1:e7:88:04:55:
da:62:48:d9:a9:f7:68:c6:b2:b6:1d:d1:22:31:87:
9b:00:d0:00:df:d6:8e:d6:78:dd:52:b8:1e:e2:d8:
60:40:cd:12:bb:05:6a:7d:d1:e7:86:b8:f8:84:83:
9c:e3:a8:b8:33:9e:0a:71:bf:3b:2c:29:ff:2c:af:
86:1c:91:1c:cf:1f:3e:6a:62:43:b2:7c:b1:eb:89:
02:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:76:84:FC:C6:54:EA:04:26:B9:02:6F:8F:BA:59:01:3F:AD:D2:82
X509v3 Authority Key Identifier:
keyid:51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/cHaE_MZU6gQmuQJvj7pZAT-t0oI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/USuhUseLveq_9vh9CIopV8zkKsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.32.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b3:28:45:75:3d:c5:60:b2:c0:28:52:43:61:b9:d4:c7:e8:
3a:df:36:3c:bc:f0:db:3c:38:5a:2b:9c:69:c8:bf:59:8d:91:
30:9b:74:e5:7d:fe:2b:34:68:f4:5a:d7:8b:75:e2:80:4a:07:
0f:7d:73:06:10:40:cc:cf:5d:27:c7:5a:aa:d0:7a:6f:f2:68:
7b:17:55:9c:ec:0f:c4:33:57:fc:d8:78:52:ac:3c:e8:08:f4:
4a:19:1b:d5:11:8c:5a:c0:aa:bd:ba:98:d4:80:c8:45:2f:46:
04:46:a9:ee:b8:35:ac:d0:a2:5e:c1:a7:74:c9:b6:fd:cc:7b:
9e:47:1f:77:83:3f:74:30:a9:a9:5c:52:b1:04:d6:96:d8:35:
c0:88:1c:52:68:3b:e2:ba:62:aa:98:16:10:c8:23:55:c9:d8:
72:1b:12:77:9d:e6:f2:26:b1:69:d3:31:a2:55:6a:ea:a6:62:
eb:7e:2a:27:d3:6e:d3:82:43:29:39:e7:9c:d8:1e:19:27:a3:
79:bd:57:c2:ba:f3:f3:c9:80:0b:c6:28:ed:d8:0b:71:df:81:
c5:d4:56:19:6b:16:c9:3c:cc:bb:3f:d0:51:a1:00:d7:9e:0e:
38:1c:b3:5f:31:f9:9b:e8:6a:70:26:2b:88:d6:4e:19:f3:dd:
2c:74:b8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:25 2024 by rpki-client on console-ams.rpki-client.org