Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/9zBJqQ0kUDrKqQhuqz7lkwCD9yw.roa
File: 9zBJqQ0kUDrKqQhuqz7lkwCD9yw.roa (raw, json)
Hash identifier: eUaDHEQMgM9FIJghREWj3sHNbHr9iqsJZCo0aL9Sr3g=
Subject key identifier: F7:30:49:A9:0D:24:50:3A:CA:A9:08:6E:AB:3E:E5:93:00:83:F7:2C
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 0761A878
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/9zBJqQ0kUDrKqQhuqz7lkwCD9yw.roa
Signing time: Mon 14 Feb 2022 08:52:37 +0000
ROA not before: Mon 14 Feb 2022 08:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123840632 (0x761a878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Feb 14 08:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f73049a90d24503acaa9086eab3ee5930083f72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1b:d2:66:59:a7:c7:09:2d:eb:0a:f5:a7:b6:
a5:69:07:25:cd:02:7c:d0:d7:18:36:7f:7d:d7:08:
3a:a5:d8:a8:11:50:38:03:1f:c2:db:a9:28:26:fe:
63:88:32:5e:04:16:05:d2:d0:29:3c:70:4f:23:4f:
73:86:48:2a:eb:8d:c5:1f:e9:ee:a2:4f:1a:96:9f:
17:75:6b:dd:b9:35:55:e4:bd:9b:e5:d1:03:0d:26:
be:62:02:2e:43:2b:9a:2a:af:e9:7e:51:0d:c3:6d:
94:69:72:18:1e:e9:14:28:f0:9b:aa:82:8b:d6:3a:
e3:a8:aa:d7:fe:11:e2:20:ab:42:dc:06:c6:20:30:
87:d1:2e:fc:97:76:09:d8:2a:96:13:39:c9:f4:ec:
52:07:93:b8:30:90:26:e7:07:2a:ca:aa:ba:e7:2d:
02:14:10:0f:5b:f6:7a:f6:27:cf:28:34:e1:67:3f:
06:27:0e:73:e8:a8:c4:76:f8:31:41:d1:07:30:6c:
be:35:80:71:ee:8c:82:f5:02:fd:1a:5f:0c:d7:6b:
5e:2b:88:7e:8a:3d:3f:83:1d:99:65:8a:9a:ce:01:
00:a5:5b:13:a1:d6:6c:ac:34:c7:0b:58:5e:19:93:
b8:b1:b7:cc:dc:f4:8f:05:14:e7:e4:f4:52:99:07:
e2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:30:49:A9:0D:24:50:3A:CA:A9:08:6E:AB:3E:E5:93:00:83:F7:2C
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/9zBJqQ0kUDrKqQhuqz7lkwCD9yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:77:66:9f:49:88:b7:c8:4f:a9:b7:0e:37:08:63:90:f6:b6:
4d:8c:09:54:7b:f0:b4:1a:79:50:61:08:c6:91:58:e0:25:b7:
47:5e:cd:96:88:9b:20:08:86:79:97:77:28:fa:4d:15:be:c8:
96:ae:e2:f2:d8:b6:d3:4a:fa:ea:9b:3e:a9:97:e7:45:48:e6:
91:94:63:a1:5f:91:79:3c:8b:ba:ac:52:c2:d7:20:ad:ab:1f:
59:de:61:5f:e4:05:2b:24:77:35:d7:bd:85:84:d9:a1:1d:a7:
ff:f7:9d:2d:e6:c1:2f:e4:81:f5:30:0c:98:7e:23:83:8c:3f:
06:c2:93:4a:f4:7b:e0:74:f9:34:ba:28:2e:32:d8:c0:a6:37:
72:73:70:9b:6f:08:c9:76:5e:73:8b:bc:3e:33:81:92:38:48:
6b:9f:9c:85:65:b8:2a:35:f1:09:9f:b3:eb:78:55:82:50:a3:
92:a2:9e:63:5a:20:bb:27:4e:2c:f6:2d:7b:55:4a:bc:c3:60:
49:25:25:ea:17:ba:ba:0c:30:20:3e:58:b7:d1:42:40:0a:bf:
c5:6e:aa:34:bd:1d:67:b2:4c:a1:8e:53:c3:04:a3:fc:0e:81:
c6:be:ad:72:0c:94:92:9c:d1:73:13:41:ee:59:12:da:f3:b0:
58:02:65:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org