Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/ZoVnDrP9-eUt04NNZVaLh-TqVKY.roa
File: ZoVnDrP9-eUt04NNZVaLh-TqVKY.roa (raw, json)
Hash identifier: 2qvCyQvm+ykbfArhRZw5cLrp8jasyiumq9SecgxtnJw=
Subject key identifier: 66:85:67:0E:B3:FD:F9:E5:2D:D3:83:4D:65:56:8B:87:E4:EA:54:A6
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 078E8020
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/ZoVnDrP9-eUt04NNZVaLh-TqVKY.roa
Signing time: Tue 01 Mar 2022 22:16:51 +0000
ROA not before: Tue 01 Mar 2022 22:16:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126779424 (0x78e8020)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Mar 1 22:16:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6685670eb3fdf9e52dd3834d65568b87e4ea54a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5d:0c:5d:56:f2:8b:f5:c1:94:af:6f:ce:8e:
14:1b:5b:31:b6:48:59:7b:2f:5d:57:e2:55:b8:b4:
02:79:9a:67:83:e4:74:9c:b8:49:b5:d6:38:83:a5:
ae:25:47:b0:62:03:d6:66:f8:24:62:76:8c:81:46:
bd:92:de:32:9b:3b:bd:f9:ab:0e:ee:c1:20:c2:3c:
50:30:bf:84:6c:ab:76:7e:01:47:36:c6:1a:c7:6c:
0f:cb:f5:c5:c2:18:cc:07:9e:8a:9a:a3:df:df:9e:
28:68:b9:d5:a6:b5:2b:3c:e7:f7:92:fe:83:e8:76:
9b:69:56:2b:ff:8a:11:96:2d:ce:ee:45:40:87:43:
32:3c:34:33:a6:de:ce:d3:23:8e:2c:21:de:5f:ac:
ac:0c:36:80:77:e4:30:a7:6d:49:27:36:b6:d9:9b:
3e:2c:3e:3c:6a:c1:a9:d8:a6:b8:c1:95:a7:20:b5:
2a:70:a3:3f:27:21:04:4c:82:50:05:d9:96:87:a5:
e1:48:d1:fe:a0:12:c4:41:b6:58:c9:a4:86:2a:1b:
f6:7d:0a:13:24:f1:74:81:d7:c2:9a:f4:f4:9a:31:
9f:5f:09:35:7a:ab:f8:d5:33:4c:4e:e6:80:25:3c:
78:fa:35:e3:28:71:2e:ec:51:59:97:23:a7:eb:10:
03:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:85:67:0E:B3:FD:F9:E5:2D:D3:83:4D:65:56:8B:87:E4:EA:54:A6
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/ZoVnDrP9-eUt04NNZVaLh-TqVKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
42:0f:db:b1:be:77:47:8b:ec:85:2e:6a:c1:c3:e8:35:c7:d2:
2f:c0:b9:f8:ed:07:98:1e:37:e9:b0:a4:55:9a:0e:89:25:1a:
4a:34:b4:ff:a2:19:11:a9:60:47:b0:be:1d:12:ec:05:54:d4:
1f:bf:cc:42:36:b1:f1:96:f1:1d:47:87:79:e5:ed:3c:53:7c:
73:c3:37:65:68:4d:08:31:ba:51:3c:27:97:89:69:e5:0d:42:
5f:c9:b4:dd:ec:28:f6:b2:d7:9d:c9:f8:9f:51:32:82:ef:47:
fc:53:23:ce:f9:81:84:2b:1f:05:48:90:25:53:d3:20:af:a9:
39:a2:ce:53:e9:c9:57:65:5f:67:3b:bf:ed:b6:7b:49:e4:21:
e4:0c:64:ee:ef:e5:c7:95:64:42:8a:7c:9a:e2:92:32:6d:e1:
53:2a:28:52:31:bc:f8:c3:28:75:33:9c:bb:ad:22:58:a0:2d:
2d:9f:21:e9:b7:2c:64:ac:cb:bd:9f:16:08:09:e0:e8:57:ec:
7e:c7:99:89:83:a1:a3:ad:97:3d:34:ea:5f:74:b0:ab:ab:08:
ea:12:1a:6a:e9:a6:fb:95:dc:ba:ab:91:56:b3:ae:4a:c9:6c:
4b:1c:9f:2d:b1:2e:23:55:04:d9:bb:7a:9b:9e:81:de:f6:5e:
f7:ec:3d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org