Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/CyEuZPrBAIbBiqIBDT-ROatmYQ0.roa
File: CyEuZPrBAIbBiqIBDT-ROatmYQ0.roa (raw, json)
Hash identifier: 014dJcn5hhqhPDCzA/gUFZo6j413Cs3cYVlVkhzl2IE=
Subject key identifier: 0B:21:2E:64:FA:C1:00:86:C1:8A:A2:01:0D:3F:91:39:AB:66:61:0D
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0181D495AFD455C11E7B1F3EE088801F1182
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/CyEuZPrBAIbBiqIBDT-ROatmYQ0.roa
Signing time: Wed 06 Jul 2022 17:36:28 +0000
ROA not before: Wed 06 Jul 2022 17:36:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138687
IP address blocks: 31.43.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:95:af:d4:55:c1:1e:7b:1f:3e:e0:88:80:1f:11:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 6 17:36:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b212e64fac10086c18aa2010d3f9139ab66610d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ff:12:51:f5:4d:b8:e4:9b:39:51:22:7a:6d:
45:2e:6a:36:1a:b1:30:62:23:39:1f:2f:1b:1d:4f:
e5:54:81:32:9f:b2:dd:6b:47:f2:78:66:74:c6:75:
1b:59:31:33:cc:2c:ba:bd:35:7b:2f:af:9f:4b:1d:
ff:27:12:26:2e:d7:e5:92:07:2e:2a:96:26:e6:eb:
a0:e0:a3:ec:c2:b1:ae:2c:ea:08:c4:a9:3c:c5:2f:
4f:de:31:3e:76:9c:a3:94:2e:18:70:cb:41:c2:0e:
9f:63:fa:9f:65:10:ff:21:22:96:13:60:8b:76:a0:
93:17:e4:1e:f8:3a:70:4c:60:7e:ce:e0:39:70:cf:
7d:6e:dc:c7:c8:ab:0b:d0:69:07:e0:9c:b6:ad:0b:
49:41:b7:31:65:e7:b9:55:2d:b7:5c:97:42:14:37:
48:08:df:02:aa:ab:7a:d0:56:ae:51:ec:41:5d:0d:
b2:48:96:18:f7:22:41:04:5c:07:0c:eb:fa:cf:ae:
07:1f:29:96:f3:44:26:b9:36:33:76:75:55:81:11:
45:aa:db:81:ec:f3:cd:f6:63:13:a0:7e:36:20:b8:
99:b9:15:f3:5d:69:74:6c:b0:7c:84:75:a2:ac:3c:
07:aa:4f:5d:f1:7d:dc:0f:0d:44:66:64:de:d5:fa:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:21:2E:64:FA:C1:00:86:C1:8A:A2:01:0D:3F:91:39:AB:66:61:0D
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/CyEuZPrBAIbBiqIBDT-ROatmYQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.167.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:b7:07:97:f5:88:ca:b6:34:3f:6d:3c:9a:25:9f:d0:1e:e6:
50:a4:cb:f3:a1:b7:d0:d5:24:29:e8:a4:cb:33:6c:b8:49:bf:
7b:3d:0d:a3:1a:53:04:3f:7f:f7:9d:3f:de:93:c0:35:78:ff:
7c:ac:35:de:73:5a:7d:d2:f2:9f:52:43:af:ef:86:a2:85:72:
80:11:b3:9e:80:fc:72:3c:0a:82:96:f2:6d:7d:c5:a6:de:d0:
a6:e9:ff:3a:a6:88:17:08:e1:e7:39:b3:7e:5d:c8:e3:43:d0:
16:94:ec:c1:ee:68:ce:ea:f1:cb:f2:e1:73:63:bc:56:f9:b4:
10:09:c9:08:e6:95:f7:a1:9c:93:3c:98:8b:f8:0d:4b:b6:58:
80:f8:22:0b:db:80:5d:5a:5e:52:89:1c:b8:74:32:f6:c1:5a:
e0:8d:33:c3:be:34:4d:4c:e0:d2:bb:62:98:db:a3:d1:6a:4f:
8a:38:88:42:7d:94:84:51:88:17:bf:28:c9:0a:a2:da:55:65:
28:c3:ec:e2:86:2d:41:6b:48:08:30:53:85:14:fd:a8:7a:58:
68:14:85:77:6a:b6:31:ca:58:d5:e0:f5:09:b7:02:2c:bc:40:
89:86:f5:db:9e:79:7b:35:a3:16:b2:e1:04:27:88:63:e6:00:
63:55:1e:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org