Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XOsRh1Ayq-XYZ321psDQ2KsMe4s.roa
File: XOsRh1Ayq-XYZ321psDQ2KsMe4s.roa (raw, json)
Hash identifier: lCyuQepuXi6FjIgEwGUqAjvs9DZsG1OtFEf1b8qxZJU=
Subject key identifier: 5C:EB:11:87:50:32:AB:E5:D8:67:7D:B5:A6:C0:D0:D8:AB:0C:7B:8B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 064E5E44
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XOsRh1Ayq-XYZ321psDQ2KsMe4s.roa
Signing time: Sat 01 Jan 2022 06:52:43 +0000
ROA not before: Sat 01 Jan 2022 06:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209365
IP address blocks: 31.170.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105799236 (0x64e5e44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ceb11875032abe5d8677db5a6c0d0d8ab0c7b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:aa:82:81:9d:6e:8c:e3:54:b5:a5:08:64:4b:
93:9c:ab:85:73:1f:1c:8f:2b:ce:21:a7:14:dd:0e:
67:ab:55:65:40:ff:b4:21:ed:c5:0c:81:20:0a:53:
63:c9:81:fa:9d:ae:5a:54:db:16:d8:e0:4e:58:99:
df:a0:e9:5d:a9:cc:0f:60:62:c2:66:bc:ed:ca:a6:
08:50:b7:05:13:d9:38:06:f5:f5:2f:20:c5:8d:b3:
7d:ab:3a:d1:a4:fa:f9:1e:e6:08:09:50:33:24:33:
70:e6:0f:fd:80:93:01:ff:cd:23:35:b1:2f:a1:df:
1b:56:77:fe:d2:d4:cb:f8:a4:8e:71:4b:a1:88:67:
2b:36:84:2c:02:9e:e2:b1:ed:5c:8d:e5:33:74:c1:
87:6c:73:c2:92:ed:c2:84:d5:a5:73:be:d3:10:fd:
11:e4:ac:53:c1:96:52:82:d2:18:3f:69:26:ed:21:
08:0f:bd:c9:bc:e2:98:88:3c:43:db:48:48:4e:06:
cc:10:64:83:42:75:82:e1:49:0e:bd:26:96:1c:d5:
e5:91:c0:21:5f:4b:73:b8:cc:2f:08:75:c3:20:a5:
2a:ed:ed:e8:3f:9f:6c:87:0d:11:7c:4c:57:71:63:
eb:b7:f2:52:b2:ec:dd:ba:d2:3a:7b:d0:a7:a8:bc:
5e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:EB:11:87:50:32:AB:E5:D8:67:7D:B5:A6:C0:D0:D8:AB:0C:7B:8B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/XOsRh1Ayq-XYZ321psDQ2KsMe4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.103.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:1b:b4:af:17:49:9a:97:e3:24:a3:95:26:d2:e5:79:85:8e:
c7:49:19:82:ca:92:15:45:45:62:0b:9d:58:bd:a1:cc:1c:cd:
3e:9e:11:b7:75:0f:28:a1:b7:51:79:21:0c:7f:14:86:fb:e2:
35:b7:bb:3f:fb:5c:94:90:03:b2:c7:79:1d:e0:2d:c3:a8:dc:
31:b2:de:5f:b0:fe:34:a9:22:53:4b:16:e4:c9:d0:b6:7f:a3:
ff:41:ac:3d:34:69:22:f8:ee:3f:e6:e3:66:3f:f8:3c:b3:70:
e3:82:12:9c:d3:ef:ec:e3:85:01:45:ab:dc:49:5a:08:21:87:
a2:e3:9b:10:e2:33:72:ca:ce:1d:ab:58:95:a5:36:a9:83:12:
e5:71:c5:f6:18:e0:32:ab:86:87:87:1b:f8:43:2f:46:dd:b8:
88:10:49:88:99:64:82:5a:f8:32:21:dc:85:5d:1d:a3:56:4a:
04:f2:0f:c5:a0:30:e1:b7:49:e9:4e:33:81:72:cd:e4:7b:02:
11:b2:e0:95:07:41:6d:91:9d:23:6e:15:af:4d:94:dc:64:fa:
eb:f8:2e:e9:70:2e:52:20:95:1b:1e:e7:cf:6f:39:4d:8b:4a:
c9:e4:34:cf:b9:74:99:2a:b1:c1:7a:88:b0:7f:86:88:59:b1:
5f:cd:42:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org