Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cPDfCvVPoc0Cp7EpvAWrWN-LeyA.roa
File: cPDfCvVPoc0Cp7EpvAWrWN-LeyA.roa (raw, json)
Hash identifier: S6kTZhEb0NBOmhhdnuSk7mE+wrl76SBMdV+oqk8EWTQ=
Subject key identifier: 70:F0:DF:0A:F5:4F:A1:CD:02:A7:B1:29:BC:05:AB:58:DF:8B:7B:20
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 747AF1
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cPDfCvVPoc0Cp7EpvAWrWN-LeyA.roa
Signing time: Sat 01 Jan 2022 00:56:36 +0000
ROA not before: Sat 01 Jan 2022 00:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 31.41.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7633649 (0x747af1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Jan 1 00:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70f0df0af54fa1cd02a7b129bc05ab58df8b7b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:b8:76:6e:07:7d:a8:cd:ec:17:f7:4e:f1:
c4:66:01:ce:2c:16:b4:ba:e5:e1:24:f3:24:5e:fb:
13:91:20:d2:0a:e7:af:4b:c7:8e:1c:f6:14:fc:f2:
06:2f:65:f0:0d:65:ca:54:ae:75:45:7b:8a:01:04:
20:54:86:f5:3b:af:49:fe:05:f6:83:66:f0:26:2a:
2d:ef:07:9c:ff:b6:8c:e3:e6:04:c8:9e:01:e9:67:
48:75:06:68:b9:45:7b:e6:02:e7:ef:c4:60:11:62:
83:a7:38:16:b4:a3:75:4d:d8:01:15:30:2c:6c:c0:
ad:93:b0:d3:ad:02:38:31:f2:3a:32:9c:17:84:04:
f2:90:8c:2f:6b:e2:d7:7a:38:81:1b:68:19:ba:8a:
6a:22:a4:b2:73:d2:b1:97:87:a7:ed:99:03:30:7a:
33:bb:69:60:0f:e4:e1:c4:f9:39:fe:33:a4:91:40:
37:f4:38:f8:d4:00:b1:c7:d0:81:d2:0c:05:13:01:
19:0c:9d:82:5e:e7:cf:5b:f2:7d:6c:4d:af:ee:66:
30:53:b3:fd:20:20:ac:f8:89:95:05:59:56:0b:82:
16:06:4f:87:42:24:60:1f:ad:3d:28:f9:13:62:c5:
9e:c0:a5:b7:02:cb:0e:43:a5:67:c5:05:4c:16:2f:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F0:DF:0A:F5:4F:A1:CD:02:A7:B1:29:BC:05:AB:58:DF:8B:7B:20
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/cPDfCvVPoc0Cp7EpvAWrWN-LeyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.255.0/24
Signature Algorithm: sha256WithRSAEncryption
07:8f:ed:1c:0b:ce:25:67:30:dd:38:7d:d9:95:44:0a:e7:ff:
b8:53:8d:19:2c:e3:be:c2:0e:59:99:5f:35:d5:33:0b:50:cc:
90:f0:0a:39:d2:2b:fe:f9:67:7b:06:8a:33:ee:ca:98:50:69:
db:92:18:bd:34:c4:92:4b:21:ac:38:78:cb:bb:36:a9:66:a3:
60:1b:14:6d:fc:a3:2a:b6:ba:96:b5:91:1e:13:62:a7:c2:37:
4c:a1:0e:f5:9f:1d:bd:c4:be:ca:f9:8c:fc:3c:4f:d2:b9:3b:
49:d4:3a:8b:20:d5:eb:ba:55:df:e9:45:c8:8a:2e:35:cc:e4:
ac:91:82:c0:f3:0f:9f:b9:b2:61:01:08:9d:18:00:d2:56:77:
f1:00:96:96:33:44:a1:9c:a1:29:85:82:d3:b2:27:87:38:2d:
e5:9f:ad:03:b0:d6:0c:67:70:26:51:3c:6c:59:67:3d:73:5f:
8d:23:c4:25:ad:98:ff:c9:3a:c8:9f:39:5c:4d:aa:21:07:3e:
60:16:e0:68:f4:e4:9a:bc:a4:c6:15:f0:a9:06:be:ed:c4:0e:
aa:b5:b3:99:f1:85:0e:b8:9d:30:a2:09:c4:3d:46:80:59:45:
ce:14:95:2b:b6:71:b4:56:13:61:46:b4:10:04:f3:01:bb:5a:
56:3f:8e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net