Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/VX-HJi_MD6nrxVzb-_oHhP3ktOA.roa
File: VX-HJi_MD6nrxVzb-_oHhP3ktOA.roa (raw, json)
Hash identifier: aSjTdtfCVFClb6Dy5ujfYBSjMJLMIDjYH9IiS6ri8jk=
Subject key identifier: 55:7F:87:26:2F:CC:0F:A9:EB:C5:5C:DB:FB:FA:07:84:FD:E4:B4:E0
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 37363CA6
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/VX-HJi_MD6nrxVzb-_oHhP3ktOA.roa
Signing time: Sat 08 Jan 2022 09:43:00 +0000
ROA not before: Sat 08 Jan 2022 09:43:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 31.169.83.0/24 maxlen: 24
31.169.84.0/24 maxlen: 24
31.169.80.0/24 maxlen: 24
31.169.82.0/24 maxlen: 24
31.169.90.0/24 maxlen: 24
31.169.86.0/24 maxlen: 24
31.169.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926301350 (0x37363ca6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: Jan 8 09:43:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=557f87262fcc0fa9ebc55cdbfbfa0784fde4b4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cb:cd:cf:db:31:24:80:8b:01:d5:d1:d7:d8:
f2:d6:ce:90:6f:66:b0:a2:d8:fc:db:77:f1:9e:de:
30:3e:f6:89:bb:90:dc:49:0d:e4:d7:a3:74:4b:73:
a2:7d:a6:2d:07:b7:e8:15:01:8a:ad:b0:87:9f:d7:
19:6b:f5:33:a8:14:00:52:f3:7f:81:e9:96:ec:19:
77:e0:ad:ca:7f:9e:ea:43:b0:6c:73:0f:c1:18:9e:
d1:44:b5:68:4b:32:c5:0b:92:b0:b9:d8:9d:c4:7c:
bd:de:a6:f6:e8:d2:4c:71:4a:99:be:35:42:cc:80:
8d:37:61:68:fe:f1:2e:1d:bd:11:03:ef:df:31:c3:
6b:ad:c7:d5:29:55:f7:8e:ee:69:bd:41:f6:e8:cc:
85:b6:8f:e2:57:5d:24:2e:dc:b8:c0:a1:4a:ca:16:
e2:ed:ca:93:2e:22:26:dd:5b:71:31:73:92:4b:a2:
30:b4:31:6d:6b:5a:c0:07:7d:18:0d:c4:76:a6:55:
99:13:2a:7d:09:63:70:d1:98:6e:4a:31:c6:8d:33:
40:72:ee:8a:95:ea:83:89:ee:53:49:72:7b:49:00:
3b:0d:f4:20:b7:12:aa:c1:b9:20:1f:50:6b:f2:39:
f2:13:c4:9b:4b:13:67:3f:f5:b7:1d:29:07:9b:fb:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:7F:87:26:2F:CC:0F:A9:EB:C5:5C:DB:FB:FA:07:84:FD:E4:B4:E0
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/VX-HJi_MD6nrxVzb-_oHhP3ktOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.80.0/24
31.169.82.0-31.169.84.255
31.169.86.0/24
31.169.88.0/24
31.169.90.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d3:0d:6b:0f:52:0c:90:02:c9:1f:95:f7:4d:7b:84:6a:f9:
c7:dc:bc:98:82:2f:ab:e4:5f:f5:fd:7f:95:e5:41:03:4e:97:
02:42:c1:e7:bb:b8:10:ae:5b:2d:6a:c8:37:1f:8b:1d:09:31:
07:89:e1:99:91:e1:47:47:dd:2c:3d:b6:99:84:a9:73:e4:68:
22:d9:0c:4a:f5:10:eb:86:68:9b:15:00:af:e4:b6:5e:c7:5c:
54:a8:36:f5:2c:c8:f6:d2:17:ab:22:fe:c1:a0:a6:96:09:fc:
1b:47:f5:1f:47:97:96:64:c5:e2:a9:2a:ee:5e:7a:d4:07:22:
6e:26:10:01:e5:87:19:dd:21:6f:68:9a:c5:a3:0f:fc:07:66:
89:73:52:81:88:1a:bc:a9:e5:6e:e8:30:b3:b7:86:88:74:43:
da:ef:d5:3b:05:d1:00:bc:31:8d:a7:b9:b8:80:cf:90:26:f0:
fc:23:f6:04:c3:1a:63:63:bb:95:18:d5:77:a8:88:df:b4:92:
75:9d:69:80:c1:f5:5e:a2:25:d0:e3:5b:be:49:26:44:bf:be:
8c:e9:21:3a:e9:45:81:af:fe:4f:8e:b7:94:d7:22:54:76:29:
1a:30:68:31:ff:75:47:4d:d7:56:bf:58:ee:9a:03:ee:d2:10:
18:ca:64:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org