Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/d31luxZHHHGPAxO-lpXE7g5HQjU.roa
File: d31luxZHHHGPAxO-lpXE7g5HQjU.roa (raw, json)
Hash identifier: 0lN9ijt+GeEG9Wq0fbAfkxqYVqqnAkJOODePguAaXPo=
Subject key identifier: 77:7D:65:BB:16:47:1C:71:8F:03:13:BE:96:95:C4:EE:0E:47:42:35
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 0185720C8C614F92B7AEF853E1621125DC98
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/d31luxZHHHGPAxO-lpXE7g5HQjU.roa
Signing time: Mon 02 Jan 2023 10:35:03 +0000
ROA not before: Mon 02 Jan 2023 10:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62053
IP address blocks: 188.215.115.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:8c:61:4f:92:b7:ae:f8:53:e1:62:11:25:dc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: Jan 2 10:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=777d65bb16471c718f0313be9695c4ee0e474235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a2:1d:a0:b7:2a:a5:6b:6a:1d:6c:27:76:61:
b6:fb:54:b7:70:80:54:d3:04:c4:17:6e:2d:7e:20:
79:6f:dd:ac:b7:c4:7b:5d:e2:25:9e:97:bb:35:b7:
26:11:a6:9b:9d:74:ca:02:be:9b:a0:c4:83:f0:21:
87:1e:b0:de:74:32:31:dd:54:17:1d:ea:2e:02:2e:
b8:7d:fb:d4:ab:ae:d8:15:cd:17:7f:42:ac:f1:9c:
0c:e1:7a:26:5d:49:af:b8:7d:a9:18:84:06:b6:27:
ff:74:2d:77:6e:72:76:34:9e:65:3d:4f:aa:64:10:
cd:7a:23:94:4a:0d:5d:93:9d:bc:00:f8:ef:2f:30:
61:66:03:17:31:24:89:3d:f9:d4:cc:31:87:a6:cc:
c7:6f:a1:ac:b7:02:39:a3:1b:51:d3:f7:a1:c3:0a:
47:2c:d7:32:09:c7:e7:15:6a:50:89:5d:96:ec:24:
40:e4:9e:c7:0a:f7:f6:8a:a7:b5:08:21:e9:03:a2:
d8:4a:a0:87:43:a5:17:c2:14:50:ef:b0:7c:0b:fc:
88:d5:82:8f:6f:59:2f:f4:07:d3:5b:cc:9d:3f:47:
02:a5:8e:7b:1a:9f:9a:10:bb:02:fa:9d:c6:f0:78:
a0:fa:d1:37:2c:66:a6:46:f4:f9:a4:6c:38:a3:5a:
5c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7D:65:BB:16:47:1C:71:8F:03:13:BE:96:95:C4:EE:0E:47:42:35
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/d31luxZHHHGPAxO-lpXE7g5HQjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.115.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e4:a8:7d:d1:c0:1c:60:00:1a:c3:bb:81:59:74:99:af:14:
aa:48:a0:db:05:a7:2f:98:d7:df:e1:e3:16:19:53:6d:8c:29:
a1:3c:c5:7f:0f:c9:1d:52:fa:ce:29:41:b9:f3:83:7b:52:04:
f6:f1:2f:a5:c3:b5:6e:28:5b:7e:f4:bc:d8:49:38:cf:a5:cd:
37:6f:e8:ee:98:c9:9e:e2:32:88:21:b2:14:f6:3c:7e:b0:fc:
8b:00:51:1c:d0:a2:5e:e3:6f:7b:b3:ec:62:9c:7f:9b:86:6e:
af:e3:92:1c:66:9c:9c:79:8e:51:0a:ab:91:79:e5:3e:0b:8f:
d6:cb:2c:59:e8:8b:55:76:07:1e:0d:16:a8:cd:6a:99:f8:b5:
45:90:bf:df:4d:72:92:c4:1c:dc:15:b7:2c:4e:d7:9d:c0:a0:
62:db:cb:e2:e1:1b:8d:93:dc:8c:f0:b6:53:62:92:31:c5:29:
bb:50:eb:e1:b5:8d:35:37:ca:b7:a1:05:92:a3:da:6f:43:f7:
f7:0e:30:38:34:70:88:5f:56:48:3c:1f:d5:8e:56:89:b2:1c:
5c:33:d4:3b:4c:b0:42:83:24:77:6d:5d:78:90:29:bd:cf:8a:
97:5b:c8:d8:37:b0:a0:41:e7:13:0a:21:f9:5b:25:fd:37:2b:
d4:bd:59:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:21 2025 by rpki-client