Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/sU1U3awhxrf-uJNNmJ-eWG5nTkg.roa
File: sU1U3awhxrf-uJNNmJ-eWG5nTkg.roa (raw, json)
Hash identifier: BKnCmKsEUWqFOYGtXjlXh0y/dA23ZZxTlk6u38E40mw=
Subject key identifier: B1:4D:54:DD:AC:21:C6:B7:FE:B8:93:4D:98:9F:9E:58:6E:67:4E:48
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018726B51E1CF5762720555BCACCADEFD099
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/sU1U3awhxrf-uJNNmJ-eWG5nTkg.roa
Signing time: Tue 28 Mar 2023 05:33:36 +0000
ROA not before: Tue 28 Mar 2023 05:33:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 31.12.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:26:b5:1e:1c:f5:76:27:20:55:5b:ca:cc:ad:ef:d0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Mar 28 05:33:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b14d54ddac21c6b7feb8934d989f9e586e674e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:40:b3:56:23:7a:22:7a:7b:c0:e7:dd:15:
01:da:7b:e9:de:8c:a6:d3:e4:92:67:ab:93:4a:61:
e5:8d:48:48:0e:06:19:bd:92:34:58:f4:01:b1:f9:
41:c5:ef:97:a5:ad:bf:c7:6d:85:58:b6:50:65:46:
1e:83:b7:43:0d:ed:92:d6:67:a1:cf:08:16:e9:61:
24:28:dd:c7:f9:56:12:21:b1:ce:74:87:48:6b:a3:
be:f8:54:d9:04:2e:c4:0b:da:b3:74:84:ed:e7:14:
2a:f8:a0:d5:c8:bb:98:aa:fa:28:00:58:fa:05:91:
54:95:b6:ba:7f:d8:b6:c8:75:bd:7b:73:59:99:5b:
79:15:4d:35:78:88:51:ab:8d:1d:2a:04:df:64:61:
80:19:4f:74:4f:39:71:19:42:9b:8a:bb:fe:4a:fb:
a9:f7:8c:3d:0c:90:c1:27:41:98:c5:5d:ab:18:05:
ca:5c:95:04:76:d4:fa:30:ec:62:a5:7f:0b:d8:e1:
65:3e:2e:94:05:ed:d8:6f:f1:56:d1:4c:09:c0:e2:
4f:dc:72:18:b6:c8:ef:28:87:85:6e:ab:9f:e7:ad:
c8:d3:a6:53:ac:e9:ea:78:21:27:eb:a8:31:83:8e:
90:42:81:f2:9c:07:6b:49:6a:b1:4b:62:44:19:8e:
9d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:54:DD:AC:21:C6:B7:FE:B8:93:4D:98:9F:9E:58:6E:67:4E:48
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/sU1U3awhxrf-uJNNmJ-eWG5nTkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.12.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:33:84:7a:0a:79:eb:a8:50:b9:25:92:08:a9:9b:4f:29:40:
33:52:d8:6c:5c:ab:4e:f9:3c:81:98:d6:09:c9:e2:1f:b0:0e:
07:88:6a:fa:40:14:db:e8:ab:e3:87:c3:75:69:b8:f3:9d:4d:
f5:7c:90:82:e2:15:1b:f2:3f:f8:e3:7f:60:e0:04:28:78:bf:
76:8b:b0:69:d6:33:14:3e:7f:f4:56:b8:0d:03:e3:ef:84:6a:
ad:d6:d6:e8:9a:49:eb:33:08:90:35:07:e9:27:7a:77:61:99:
c1:27:83:d4:66:22:de:6e:f1:d1:f3:cc:91:2d:44:8f:cb:51:
9f:58:43:6a:75:23:8a:ac:b6:5a:a5:fc:d6:03:35:ac:0e:98:
8f:8e:54:5f:30:0b:d9:75:bb:b6:0d:d7:6c:78:5d:61:3a:15:
b2:c3:ef:6c:b6:5b:63:9b:c8:a8:a6:a5:7e:d4:7a:5e:ce:3c:
70:40:48:0d:a9:3e:3b:ad:13:12:30:dd:a0:5d:bb:7a:b4:cd:
1f:9d:80:09:13:bc:88:00:53:bf:c6:a4:6c:d8:70:76:0a:25:
3a:de:23:4d:92:85:c5:74:c6:1f:76:99:f9:7a:5b:68:b4:4e:
33:74:f4:5f:c4:0f:a8:2d:b2:32:54:2d:75:ef:45:ae:e2:15:
ec:b9:3e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:20 2025 by rpki-client