Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rEPsyUeJj-OttatGx1pJ6Wkxg7I.roa
File: rEPsyUeJj-OttatGx1pJ6Wkxg7I.roa (raw, json)
Hash identifier: wBVpJYtlpmKFCvm6LALD4Kct91ooQxLQK15Yk+anwRk=
Subject key identifier: AC:43:EC:C9:47:89:8F:E3:AD:B5:AB:46:C7:5A:49:E9:69:31:83:B2
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 034994B5
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rEPsyUeJj-OttatGx1pJ6Wkxg7I.roa
Signing time: Wed 23 Feb 2022 10:06:16 +0000
ROA not before: Wed 23 Feb 2022 10:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 31.43.164.0/22 maxlen: 24
195.34.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55153845 (0x34994b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Feb 23 10:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac43ecc947898fe3adb5ab46c75a49e9693183b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e1:d5:a8:a5:b3:4e:20:65:5a:6b:09:25:fc:
a7:31:6a:55:2d:5e:f9:f5:db:4f:16:75:04:d4:5a:
ea:02:23:ee:f9:d0:78:2b:83:a4:1a:79:4d:54:36:
7b:b5:58:99:36:67:45:3a:bd:f0:b4:e7:16:ba:c3:
93:68:b4:bb:d2:1d:75:b8:60:5a:ac:37:b4:39:49:
44:73:07:bf:61:fa:42:74:b6:5d:66:98:2d:1f:72:
d5:83:4c:76:c6:d2:cd:15:2d:99:9e:30:de:ed:db:
d3:0a:5d:04:ce:5f:ba:39:74:df:08:d3:cd:38:c4:
a9:5b:77:b7:41:c4:76:27:c5:c5:5b:5a:5b:1d:2d:
ab:43:fe:22:d8:b2:02:f1:f9:48:fe:72:23:61:50:
41:07:3b:51:56:03:43:fd:d7:f5:c1:66:09:63:43:
8f:04:ef:52:2a:d7:23:f9:63:b3:6e:23:6c:d0:1b:
56:28:f0:30:20:b7:ad:3d:39:31:85:99:fe:51:0f:
54:ab:3e:f2:bc:4e:2f:e1:fe:58:8e:b6:bd:9e:9f:
9c:9c:1e:4e:c3:0a:61:2f:19:b2:86:99:c6:20:3b:
b5:83:a6:26:87:14:99:58:f9:b5:19:ef:5f:6f:3d:
43:eb:4f:95:36:19:e0:1f:45:ca:28:f4:08:a1:13:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:43:EC:C9:47:89:8F:E3:AD:B5:AB:46:C7:5A:49:E9:69:31:83:B2
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/rEPsyUeJj-OttatGx1pJ6Wkxg7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/22
195.34.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:0d:be:46:bb:3f:bb:a1:76:7d:18:21:0e:57:03:0b:92:54:
48:fe:28:e8:da:26:ba:fe:aa:d8:77:c4:b3:f0:a3:ce:16:99:
85:f9:30:90:21:03:8e:b2:2e:0c:47:65:fe:00:1d:f6:8a:42:
12:a3:a7:af:66:6c:3d:21:61:ca:c7:c3:22:ea:0f:f9:3f:26:
82:d2:6c:0f:de:cc:69:36:00:5a:7e:e2:8c:e4:2e:9c:67:85:
12:05:a9:5a:73:82:dc:50:b4:45:c2:b2:fc:0c:8c:35:a7:59:
db:d5:6d:e7:09:05:e3:83:39:cc:df:62:f4:99:54:e9:f2:7d:
b2:14:4f:fa:79:49:e2:dd:f3:e6:d7:7d:61:9e:06:56:d9:99:
7b:e3:1c:1c:ff:5c:86:be:e5:ea:e6:79:15:63:ac:7a:9e:07:
54:62:91:8b:ca:b5:f5:a1:97:e8:17:e3:9c:3f:6c:ed:62:25:
7f:bd:a4:81:33:57:fe:17:cc:09:26:f3:ad:93:1c:5f:d2:70:
13:8d:56:ae:0e:a0:fc:f1:c1:af:d0:46:0d:47:3e:2c:59:85:
8a:ac:af:ae:27:34:bc:89:15:89:29:43:32:93:df:87:bb:e8:
20:cc:ee:6b:50:a9:88:54:94:e5:b2:8f:e0:95:f9:0a:02:87:
c6:11:a1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org