Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/91e882-ba8a-44c5-9b0d-275242aa6775/1/JoWh7mRPukcMPn16ohQ71VaJTA0.roa
File: JoWh7mRPukcMPn16ohQ71VaJTA0.roa (raw, json)
Hash identifier: xCzx/VLjoHeNGFAdgdt2AJmJ/hqCNl8FYp3ENgE4yKE=
Subject key identifier: 26:85:A1:EE:64:4F:BA:47:0C:3E:7D:7A:A2:14:3B:D5:56:89:4C:0D
Certificate issuer: /CN=ab91d5262561a9dd713dfa39163dec849fee4636
Certificate serial: 3AF98528
Authority key identifier: AB:91:D5:26:25:61:A9:DD:71:3D:FA:39:16:3D:EC:84:9F:EE:46:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5HVJiVhqd1xPfo5Fj3shJ_uRjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/91e882-ba8a-44c5-9b0d-275242aa6775/1/JoWh7mRPukcMPn16ohQ71VaJTA0.roa
Signing time: Sat 01 Jan 2022 05:02:03 +0000
ROA not before: Sat 01 Jan 2022 05:02:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197943
IP address blocks: 31.211.168.0/22 maxlen: 22
31.211.172.0/24 maxlen: 24
2a03:7360:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 989431080 (0x3af98528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab91d5262561a9dd713dfa39163dec849fee4636
Validity
Not Before: Jan 1 05:02:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2685a1ee644fba470c3e7d7aa2143bd556894c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1a:74:63:1f:6c:f3:22:af:5c:56:dc:02:91:
c6:10:c1:bb:2f:74:5b:3b:42:31:ef:17:17:8c:a1:
dd:88:05:85:ac:8e:32:32:3d:5c:c8:ac:12:24:b8:
6c:b0:9e:b2:03:3a:f3:07:16:38:b9:97:09:1f:62:
78:50:5e:df:d0:53:bf:1a:ef:2c:a1:e9:32:8b:45:
5a:c5:d6:2a:54:c6:16:1d:1a:7a:17:50:73:6d:b9:
8d:cd:b7:95:4d:4d:b6:fe:d5:83:32:75:1d:6b:d5:
a3:30:fe:f0:f0:9e:69:04:17:c5:dd:35:b2:55:6f:
e4:8b:a9:32:e9:ba:6f:f8:e1:a4:fa:58:21:e9:a1:
33:56:1e:d0:50:85:fa:c2:07:7d:c4:88:5d:c3:2f:
9a:bf:68:78:5e:30:a8:45:84:2d:eb:7d:5a:a6:b6:
16:b4:1a:39:e5:c5:5a:7e:39:06:b2:f1:c1:cb:d4:
25:13:da:40:08:3e:65:de:f9:84:d2:b0:f2:93:5d:
ac:0e:d0:6f:2b:55:87:28:24:fa:9c:d7:f6:ae:db:
05:31:7f:cb:6c:83:39:97:8c:76:53:22:55:b1:e3:
2f:90:2d:7c:99:82:48:c9:fa:a5:e4:70:7b:71:6b:
6b:c3:74:6e:ec:8d:0f:59:f6:86:02:e9:00:93:66:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:85:A1:EE:64:4F:BA:47:0C:3E:7D:7A:A2:14:3B:D5:56:89:4C:0D
X509v3 Authority Key Identifier:
keyid:AB:91:D5:26:25:61:A9:DD:71:3D:FA:39:16:3D:EC:84:9F:EE:46:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5HVJiVhqd1xPfo5Fj3shJ_uRjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91e882-ba8a-44c5-9b0d-275242aa6775/1/JoWh7mRPukcMPn16ohQ71VaJTA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91e882-ba8a-44c5-9b0d-275242aa6775/1/q5HVJiVhqd1xPfo5Fj3shJ_uRjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.211.168.0-31.211.172.255
IPv6:
2a03:7360:1::/48
Signature Algorithm: sha256WithRSAEncryption
03:62:08:80:56:22:30:cb:17:09:93:7c:ab:13:7a:4b:be:a3:
04:87:1e:2f:fd:cc:e5:25:eb:53:40:ad:03:e3:64:11:8d:32:
e5:db:51:d6:a4:03:89:b2:04:86:9e:78:1c:30:90:11:0a:93:
87:6a:ce:33:ab:73:b0:f0:73:10:58:28:65:52:86:78:e1:62:
0a:14:35:b7:87:c8:11:4f:ba:97:a8:7b:6f:8e:a6:db:65:d1:
d7:b7:a8:d1:5e:54:47:b2:4c:85:dd:84:7b:f3:da:e7:b5:41:
92:38:e4:c2:4f:2d:ce:03:0f:6b:a6:f6:b2:cf:c6:08:4b:69:
08:0a:06:76:60:99:8e:a3:b6:94:4a:36:59:43:b1:08:d5:17:
88:5d:63:a8:57:b9:fa:64:e3:26:a4:23:16:30:4e:38:b7:3a:
05:bd:ba:9d:7f:1d:7e:b0:e0:04:99:4a:10:95:d7:b6:21:76:
44:51:c8:b3:6f:6b:52:c4:c0:97:cf:34:9e:d9:a7:3e:b5:5b:
41:cd:77:a6:1b:73:b7:c2:b2:86:63:5e:fe:cf:61:c5:db:f8:
5a:22:e5:15:a0:8d:97:a2:44:c0:f4:b1:2a:21:bd:1b:4d:03:
1c:c3:a7:a5:bb:67:b4:21:79:c9:3d:e9:ed:aa:cf:7f:93:0d:
6b:4e:c3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:25 2024 by rpki-client on console-fra.rpki-client.org