Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/jE5bHottYaeJIqNL2A40mQSUM8A.roa
File: jE5bHottYaeJIqNL2A40mQSUM8A.roa (raw, json)
Hash identifier: wvgyaIk19qJ128yNYzzew4lFfiexoT7krw5A6QI7e/k=
Subject key identifier: 8C:4E:5B:1E:8B:6D:61:A7:89:22:A3:4B:D8:0E:34:99:04:94:33:C0
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 07434E44
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/jE5bHottYaeJIqNL2A40mQSUM8A.roa
Signing time: Thu 03 Feb 2022 08:34:31 +0000
ROA not before: Thu 03 Feb 2022 08:34:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121851460 (0x7434e44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Feb 3 08:34:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c4e5b1e8b6d61a78922a34bd80e3499049433c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:44:ef:a6:36:a9:26:2c:cf:24:72:b2:3c:
f5:d9:d9:21:6a:05:a8:b7:c6:42:32:d7:d4:a7:f4:
9f:f3:92:d4:38:5b:ac:68:a2:f8:39:30:86:4a:6b:
74:d7:06:f5:61:3b:cb:e0:53:99:a5:00:96:fd:c3:
11:8c:57:65:6d:3e:64:a9:7e:60:c9:46:69:7d:83:
75:f7:5b:6d:ed:43:d2:aa:36:51:a6:81:d6:31:dd:
42:ac:ec:a6:cd:23:c9:8b:0d:e9:21:65:a4:7a:bb:
c5:48:cf:21:a0:2a:c4:81:da:be:6a:90:6e:e9:70:
12:74:4f:c4:49:2f:e4:29:73:06:ec:d3:18:2a:12:
ad:a0:cd:62:21:9c:99:f6:61:5b:8a:fb:c0:d3:c0:
37:9f:30:ae:3c:7a:8b:7a:dc:72:92:e8:4a:c1:c0:
15:ca:4c:ff:01:ae:29:85:9d:e1:47:e6:7e:e4:53:
89:ac:0e:e5:e4:b8:42:c7:1d:2c:b0:5b:dd:2d:3f:
3d:f7:e4:22:3b:20:a4:1f:0f:3a:22:b6:05:2d:38:
db:2a:fd:34:20:5b:a1:ff:7f:4a:a0:fc:07:94:07:
e3:9d:47:62:99:62:b5:a4:b1:f0:0d:c7:d8:7b:e4:
9e:fb:48:1d:a5:a1:cd:dc:61:62:a3:74:18:df:4d:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4E:5B:1E:8B:6D:61:A7:89:22:A3:4B:D8:0E:34:99:04:94:33:C0
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/jE5bHottYaeJIqNL2A40mQSUM8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:3a:96:67:95:27:84:79:ff:f0:66:67:c3:30:34:3d:23:ed:
f8:ce:b5:ff:78:23:3c:96:62:36:3f:c4:56:cd:c6:5a:b1:09:
7a:99:e1:39:59:52:e8:3c:86:46:de:8d:8c:8c:bb:2a:70:b6:
4b:00:70:8a:95:3c:87:36:a1:13:0e:9a:7e:84:53:66:d9:65:
c8:1d:da:d9:b3:bb:a1:4b:9b:f3:5e:d6:4f:42:9f:75:ad:26:
b2:bf:7e:95:c2:63:18:24:7e:8a:f2:b7:f3:cf:8f:a6:c1:4d:
cb:57:25:f5:46:1b:1e:c6:1c:64:d1:94:59:03:47:51:c6:cb:
b5:2f:a1:df:2b:f1:ba:ff:66:a1:2f:35:ab:fa:bf:0e:85:58:
8d:ea:f6:7c:b1:0e:30:69:bd:8f:14:91:2f:82:a3:f2:0e:b0:
1f:4d:f0:47:8b:9d:e5:9d:3b:21:e9:28:f8:10:ff:44:a2:2d:
b3:e8:3a:1a:0a:69:43:63:1d:58:4d:02:d2:45:ce:63:6c:af:
0e:a1:78:93:02:92:c7:ef:55:6e:8e:1a:a1:bb:e2:ad:cb:8a:
16:a5:49:c0:0c:28:a8:11:89:7a:26:a0:d0:e0:60:a2:6a:f7:
dd:97:0f:32:5d:21:84:3f:c8:9c:75:61:a5:69:d7:96:3a:bb:
bc:92:03:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org