Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/LAL5qN1kuAOHoBIiV4e0eWjeb18.roa
File: LAL5qN1kuAOHoBIiV4e0eWjeb18.roa (raw, json)
Hash identifier: gYxGT9DSogOJDivOo6PIxfYbO67aEnJVBCKinOnV44Y=
Subject key identifier: 2C:02:F9:A8:DD:64:B8:03:87:A0:12:22:57:87:B4:79:68:DE:6F:5F
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 07DCEEEA
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/LAL5qN1kuAOHoBIiV4e0eWjeb18.roa
Signing time: Fri 01 Apr 2022 07:31:26 +0000
ROA not before: Fri 01 Apr 2022 07:31:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132316
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131919594 (0x7dceeea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Apr 1 07:31:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c02f9a8dd64b80387a012225787b47968de6f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:af:8b:4b:db:66:be:1b:86:bb:e1:cb:3a:
f4:0d:8d:1c:c7:f4:14:f5:d9:8b:44:2d:06:ac:9b:
21:bc:95:ae:47:36:2a:50:e7:96:60:5e:ae:d4:53:
68:f9:bb:5f:bc:3a:c7:71:a8:11:94:99:43:db:03:
1c:57:68:5d:f5:0c:aa:94:3f:ff:82:51:e8:07:34:
81:b0:e5:a8:a3:bf:9e:54:27:4e:e3:6d:00:c2:25:
1c:c3:0e:f4:33:c3:7a:26:1f:64:64:6f:5d:64:0e:
ed:b6:63:3f:30:55:30:b9:1e:81:16:6f:b9:5e:b6:
46:1c:ea:72:d4:41:21:0d:88:87:c5:c8:44:51:02:
a0:51:20:06:44:02:4a:27:0b:1d:97:f8:41:89:8a:
e8:ca:0b:cd:64:f5:18:5a:81:be:ac:fe:1d:fc:00:
97:40:42:88:f2:10:15:e3:71:22:b1:01:26:f4:4e:
2e:6e:c0:9b:f1:87:eb:32:4b:14:2b:ed:fe:dd:1b:
ac:1e:a3:37:ff:f0:ca:0e:a5:b0:80:d9:dd:de:ca:
72:65:1a:60:10:bb:9c:fd:bc:b2:69:a5:e8:4c:20:
b1:ef:4e:8f:06:54:5d:73:d6:46:3c:fc:91:ab:4d:
d0:55:0d:e1:c9:8c:0a:81:fc:71:95:4b:df:52:3f:
0a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:02:F9:A8:DD:64:B8:03:87:A0:12:22:57:87:B4:79:68:DE:6F:5F
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/LAL5qN1kuAOHoBIiV4e0eWjeb18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
78:8a:6c:f1:39:cb:e1:b0:4b:e4:90:e8:47:78:17:26:a8:a1:
69:3f:f6:1f:96:35:d3:1d:d7:7c:21:b9:46:66:08:db:4b:34:
61:d5:13:1c:74:f7:c1:8b:f9:38:f6:61:56:2f:ed:c4:03:0c:
e9:70:5d:6b:1f:00:e2:4f:c4:fa:3c:7f:20:86:88:7a:83:2e:
f7:7c:a6:f4:e2:8b:79:97:73:a2:96:8e:a7:07:9f:d3:ff:ee:
a8:d6:64:47:2c:89:a2:80:a8:34:c5:0d:f6:68:87:d0:a0:62:
20:36:b6:52:0c:eb:09:9a:3f:0f:47:b2:c7:07:37:fa:fa:11:
ad:a1:05:af:93:c0:96:82:81:49:25:a8:82:53:f5:03:6b:6f:
18:8c:ff:42:d6:ed:b7:c9:72:e4:bb:4a:05:9a:61:02:aa:7a:
71:66:7e:5f:6d:e9:37:fe:55:24:b4:74:1a:76:44:86:e4:e1:
a3:b6:79:b9:3d:56:58:86:b3:91:2d:f1:da:b5:e5:20:23:b2:
17:ed:35:af:0e:f3:8c:03:f2:f6:9d:64:3b:b3:04:f9:6e:af:
e5:47:4c:40:bc:79:45:2c:6b:73:52:82:f6:5c:9e:2d:63:18:
f9:e7:81:30:0d:1e:f8:4a:b6:07:fb:60:c4:f5:40:2a:5f:0a:
30:c3:86:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org