Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Dv59HDD2QEsha0pXFYoJSa1qgbE.roa
File: Dv59HDD2QEsha0pXFYoJSa1qgbE.roa (raw, json)
Hash identifier: ymuTu0hhlIqtbxmoSrhWuusnnB5/WzMNDa6FLoj/IQk=
Subject key identifier: 0E:FE:7D:1C:30:F6:40:4B:21:6B:4A:57:15:8A:09:49:AD:6A:81:B1
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0183DB1FC816987611D3F5BC43B07BDD4C3F
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Dv59HDD2QEsha0pXFYoJSa1qgbE.roa
Signing time: Sat 15 Oct 2022 10:10:36 +0000
ROA not before: Sat 15 Oct 2022 10:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 31.43.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:db:1f:c8:16:98:76:11:d3:f5:bc:43:b0:7b:dd:4c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Oct 15 10:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0efe7d1c30f6404b216b4a57158a0949ad6a81b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:27:59:bb:f9:05:6f:41:05:42:d0:cf:3c:17:
d5:62:8f:0e:7e:98:23:e3:c6:55:16:dd:39:a6:f7:
cf:c1:e6:e5:4a:43:b7:8f:83:9c:30:35:d1:22:98:
89:df:06:7a:f0:36:fb:a6:23:52:e8:7e:8c:f6:5e:
d1:12:ea:a6:c2:90:19:4d:be:33:02:01:5b:57:69:
b5:49:0a:f4:dc:4d:3a:4f:3d:52:5a:41:59:12:c6:
a5:b1:66:f2:36:57:73:69:56:75:0b:c6:4d:05:86:
69:1c:a3:7c:0e:80:28:77:99:f1:fd:69:ce:69:15:
fd:16:c0:19:2b:8d:01:45:f0:38:84:26:ab:81:08:
07:98:42:00:ba:44:b5:d5:65:4f:b7:30:ca:44:48:
a3:0c:07:00:a1:2e:58:9f:3c:8e:34:4a:64:32:fa:
b6:8b:98:c6:1d:d7:ef:b0:b5:2b:33:01:58:8b:bd:
c3:3a:93:13:cc:f1:e1:88:61:5f:41:38:c1:12:14:
5a:d4:cd:e8:f5:e1:66:bf:22:b7:8a:53:bb:39:e2:
76:da:39:8c:9c:1e:48:af:e7:c9:97:81:16:7d:e9:
8a:69:94:c7:c0:24:f4:4d:23:44:4e:1e:f8:f5:59:
94:9f:cd:6c:9d:bb:1f:e4:f2:78:57:64:18:38:c7:
9c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FE:7D:1C:30:F6:40:4B:21:6B:4A:57:15:8A:09:49:AD:6A:81:B1
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Dv59HDD2QEsha0pXFYoJSa1qgbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.167.0/24
Signature Algorithm: sha256WithRSAEncryption
60:c1:5b:ae:95:50:76:a0:9d:5c:6f:91:12:66:cc:32:86:e0:
c2:fa:0f:65:fc:e9:b5:9e:52:1d:1c:da:3a:38:e3:78:fc:ef:
ec:7b:d8:38:f0:ed:ec:0b:96:b6:03:16:a3:1f:39:15:1d:65:
71:04:55:9a:68:e9:d2:39:93:0a:47:6f:7e:0f:13:b3:98:65:
bf:67:60:b1:47:45:63:34:6b:bf:b9:32:b3:8d:40:80:5c:d1:
81:cc:4f:62:f6:31:97:b5:1f:02:29:cc:0e:b7:c2:f9:cf:f9:
db:eb:b4:cd:29:49:52:f4:ed:f0:45:c0:c7:76:4a:4e:d2:f1:
9e:b2:22:ac:d5:5a:f8:f9:28:cd:1f:ac:03:fc:a9:e9:e4:37:
ff:de:8c:fc:43:8b:c7:5c:d4:69:24:c8:b5:65:01:07:a0:a7:
39:bc:fc:ba:e7:dc:22:29:95:29:11:8a:4e:d4:44:91:40:1c:
be:be:56:8d:83:d1:0c:92:2a:ac:14:39:ba:86:fd:d8:cc:5f:
71:b3:ad:37:b4:ea:0b:1c:f3:68:05:ef:eb:12:95:47:86:78:
25:8c:6f:40:ce:0f:8b:fe:2b:7e:c5:81:2c:ad:9f:1d:a5:c0:
87:fe:4b:9a:e5:52:ed:8d:33:58:01:68:0b:c8:a9:20:7e:e5:
a9:30:33:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-fra.rpki-client.org