Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/649b17-039d-42da-90f6-3e10d1ab7408/1/aVh6VhmirxJY6riP__yJ9LYHsNY.roa
File: aVh6VhmirxJY6riP__yJ9LYHsNY.roa (raw, json)
Hash identifier: muI0nk230+8dtXRWcOApbnVZbFcRfXEx+ltLA3MCLS8=
Subject key identifier: 69:58:7A:56:19:A2:AF:12:58:EA:B8:8F:FF:FC:89:F4:B6:07:B0:D6
Certificate issuer: /CN=eed9578e49825c42f3c131b94cb0fdde5c79ad77
Certificate serial: 0458ED63
Authority key identifier: EE:D9:57:8E:49:82:5C:42:F3:C1:31:B9:4C:B0:FD:DE:5C:79:AD:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7tlXjkmCXELzwTG5TLD93lx5rXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/649b17-039d-42da-90f6-3e10d1ab7408/1/aVh6VhmirxJY6riP__yJ9LYHsNY.roa
Signing time: Sat 01 Jan 2022 10:57:33 +0000
ROA not before: Sat 01 Jan 2022 10:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202284
IP address blocks: 31.13.184.0/22 maxlen: 24
2a04:bb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72936803 (0x458ed63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eed9578e49825c42f3c131b94cb0fdde5c79ad77
Validity
Not Before: Jan 1 10:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69587a5619a2af1258eab88ffffc89f4b607b0d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fc:bf:db:6e:01:0a:8e:b3:07:0e:78:ea:e5:
24:2a:c7:26:cc:e8:bb:67:d8:47:81:81:de:93:dc:
bb:e0:b4:2f:13:99:dc:aa:12:23:08:bb:ea:e3:73:
fe:0e:6f:91:1b:b6:12:3a:88:0c:b3:59:55:77:78:
c1:69:f0:1b:4c:ea:4a:e8:11:f1:dc:c8:41:8e:be:
5c:78:e8:4b:2b:15:8c:34:68:9f:f2:58:73:d3:76:
74:d6:32:90:ca:70:fb:bd:0a:84:84:b8:8a:42:7a:
93:9d:a2:e0:b8:6e:ac:5e:61:07:aa:9d:67:5d:ad:
7a:13:e5:e0:00:a3:30:0e:ca:6b:b5:a5:45:49:b3:
5a:c1:7d:bc:61:d5:e0:2d:fd:a7:e9:52:d9:10:03:
c2:f3:3c:c7:5c:aa:0f:99:db:65:54:e7:42:a5:9f:
5e:e1:9b:35:2c:5d:da:dc:74:7e:8e:65:d5:d5:fd:
f2:70:82:41:d0:8e:ec:f2:cb:d9:98:68:a1:91:b0:
77:6a:bc:62:8b:c9:5e:8c:f0:ae:19:ba:05:32:0c:
34:dc:a7:d3:f1:b4:59:05:df:34:3e:67:0e:fd:ec:
f6:3f:48:94:b4:90:fc:7a:6c:63:02:11:79:5d:d0:
40:70:6a:f7:7d:db:09:4c:09:e7:1f:ef:8a:6e:60:
6b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:58:7A:56:19:A2:AF:12:58:EA:B8:8F:FF:FC:89:F4:B6:07:B0:D6
X509v3 Authority Key Identifier:
keyid:EE:D9:57:8E:49:82:5C:42:F3:C1:31:B9:4C:B0:FD:DE:5C:79:AD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7tlXjkmCXELzwTG5TLD93lx5rXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/649b17-039d-42da-90f6-3e10d1ab7408/1/aVh6VhmirxJY6riP__yJ9LYHsNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/649b17-039d-42da-90f6-3e10d1ab7408/1/7tlXjkmCXELzwTG5TLD93lx5rXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.184.0/22
IPv6:
2a04:bb00::/29
Signature Algorithm: sha256WithRSAEncryption
1e:c9:ef:ec:3c:86:58:dc:96:f3:e0:de:91:3f:d9:58:36:2a:
78:ff:3f:58:f6:a9:36:52:55:a7:9f:b1:21:e3:5c:69:61:99:
d9:89:c6:2c:16:30:a6:4c:a6:fd:c0:18:c0:b8:84:ef:eb:23:
f4:de:e0:3b:27:d3:80:a9:a2:2e:35:9c:e5:e0:cd:fe:6a:0f:
d4:30:3c:af:9b:54:22:7e:d3:8d:5d:e2:44:06:3e:91:41:05:
04:fd:cc:f3:05:7e:06:b4:b5:c6:08:27:5d:3f:62:3b:77:9e:
99:f7:7c:26:7c:3a:b3:ba:75:6d:26:70:79:90:29:37:17:2b:
0d:e0:84:27:c3:28:d4:03:12:9b:d2:14:a8:8f:15:53:37:2f:
64:cf:89:33:0a:e8:7a:e5:c9:a5:50:e7:e3:8d:a2:29:34:b2:
31:61:a2:06:62:36:57:d7:ca:f3:87:3c:e5:74:ee:a8:fd:f6:
d2:3e:39:bc:42:50:f8:84:e5:40:94:98:e5:9b:12:e4:22:25:
a0:ea:30:40:8c:49:37:f7:37:db:7c:af:ec:08:42:0f:a4:d6:
04:50:5f:bc:19:40:9c:31:71:1b:7c:d4:e3:68:29:6e:71:35:
22:70:17:fc:d4:e9:39:e7:2e:d4:55:67:ae:98:41:17:ea:0d:
e9:70:5a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:50 2024 by rpki-client on console-fra.rpki-client.org