Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qKMFWmJu7j8WxpEjYZHYjlPuhjM.roa
File: qKMFWmJu7j8WxpEjYZHYjlPuhjM.roa (raw, json)
Hash identifier: BwkigQZFCpvUvhnM/X0E2Jt1eFlVnmMkdWQ6rujNu6Q=
Subject key identifier: A8:A3:05:5A:62:6E:EE:3F:16:C6:91:23:61:91:D8:8E:53:EE:86:33
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 085800D4
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qKMFWmJu7j8WxpEjYZHYjlPuhjM.roa
Signing time: Tue 24 May 2022 18:12:13 +0000
ROA not before: Tue 24 May 2022 18:12:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64199
IP address blocks: 31.25.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139985108 (0x85800d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: May 24 18:12:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8a3055a626eee3f16c691236191d88e53ee8633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b5:89:b7:43:39:47:3c:0d:76:1d:96:f5:30:
7d:60:8e:94:92:ed:14:fc:f2:e5:e4:0f:f2:50:9c:
1e:1c:49:63:46:e2:23:4f:fc:61:3c:11:90:6d:1c:
5f:2b:83:fb:6c:26:65:24:27:29:97:a0:1c:aa:e7:
3c:86:04:c1:17:eb:47:58:be:6f:5e:2a:6c:dc:28:
da:4b:3a:4e:74:20:1b:ad:2f:7f:29:24:72:de:0d:
42:dd:8a:ef:3c:fe:81:8e:78:ea:2f:65:0a:e3:77:
63:08:58:fd:0c:94:89:88:67:c8:83:d9:d5:d0:20:
31:54:af:33:69:30:a3:95:81:cd:47:3f:34:b9:bb:
98:d3:18:86:da:5a:96:69:59:68:35:44:38:88:30:
83:37:83:60:a1:7d:4b:65:05:f7:3d:a4:56:6d:27:
28:74:46:c4:d8:71:c2:59:4e:8d:78:96:7b:55:3c:
3f:fe:32:8a:2d:d7:85:57:1c:39:65:79:b3:40:28:
1d:cd:14:29:81:83:bc:dc:87:13:29:41:72:99:fc:
31:ab:d6:1d:f1:7b:02:b4:cf:7e:86:61:0b:13:80:
c6:93:62:ec:43:93:c3:2d:60:1f:55:f0:14:dd:f2:
87:cd:ea:ff:af:7c:df:c3:16:e2:98:39:dc:da:a0:
26:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A3:05:5A:62:6E:EE:3F:16:C6:91:23:61:91:D8:8E:53:EE:86:33
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/qKMFWmJu7j8WxpEjYZHYjlPuhjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.11.0/24
Signature Algorithm: sha256WithRSAEncryption
87:4d:67:67:be:38:9e:72:0a:99:2e:e8:10:a4:62:d8:78:6b:
95:15:ef:d9:9c:33:30:4d:14:b1:42:50:3b:8a:aa:0b:84:37:
2c:c4:6a:93:63:c6:a4:7f:70:54:84:16:4c:4b:9f:2b:4a:bc:
c9:59:e3:aa:41:de:80:71:1a:43:01:c5:23:85:f3:02:e4:61:
3c:d8:93:77:29:ce:78:87:e9:32:16:03:38:11:da:67:ff:bb:
dd:21:27:6d:a9:96:db:de:2a:64:b5:81:43:92:49:53:cd:c8:
b9:35:80:4a:23:ac:27:a3:8f:af:ff:6f:12:2a:2f:ea:e2:76:
09:22:36:07:19:0d:c5:5f:c0:dd:71:56:4c:7d:f9:e1:cd:6b:
56:96:57:d3:01:bf:b0:3f:89:72:2e:a4:a6:ad:4d:b6:5f:52:
df:ce:ac:7c:c9:b7:54:a1:40:eb:45:64:47:bf:bd:9b:d5:28:
c5:07:14:15:9e:0c:a4:c0:7c:ad:12:fb:dc:23:bc:a9:e1:f0:
c6:c7:36:77:54:0e:23:1a:d0:1e:6f:73:b5:7a:80:79:b6:53:
13:79:dd:bd:60:3a:52:f6:80:09:16:c2:c1:2c:2a:99:45:43:
6c:1f:50:28:ed:68:82:b2:d1:c6:e3:b0:69:ac:bc:9e:fd:5b:
88:0e:03:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org