Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/zI-LHKEHiaQN6ghvxtmpTUywGxA.roa
File: zI-LHKEHiaQN6ghvxtmpTUywGxA.roa (raw, json)
Hash identifier: xJsjCVUoyCxJKitpuy7BkeuSVJRq5Brld6MHTFkGv3s=
Subject key identifier: CC:8F:8B:1C:A1:07:89:A4:0D:EA:08:6F:C6:D9:A9:4D:4C:B0:1B:10
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 015461AF
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/zI-LHKEHiaQN6ghvxtmpTUywGxA.roa
Signing time: Tue 12 Apr 2022 09:45:38 +0000
ROA not before: Tue 12 Apr 2022 09:45:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 31.41.255.0/24 maxlen: 24
31.134.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22307247 (0x15461af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Apr 12 09:45:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc8f8b1ca10789a40dea086fc6d9a94d4cb01b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:b5:9b:db:02:cc:ee:34:3c:29:5d:89:c4:
68:6d:b9:63:e0:99:9a:9f:13:26:42:9f:f8:95:a5:
d5:31:ea:b2:f1:99:f2:b4:37:17:70:df:2d:ba:1e:
45:e6:97:ad:b2:3e:6b:30:51:a0:a4:96:c2:c7:35:
05:64:35:2c:d6:1c:66:d9:82:58:b6:c2:52:1e:b9:
f9:c4:c0:a4:af:2b:6f:eb:85:70:f7:2c:ec:48:3c:
ad:59:4e:82:c4:98:90:d2:d4:f6:aa:2a:54:72:64:
fe:b5:a1:16:0d:0f:15:cc:1b:cc:77:57:d9:33:f5:
9f:a3:b4:39:8e:b2:41:6f:c9:ce:91:eb:86:b8:c8:
3c:cd:d3:fc:73:5b:83:1d:b7:1f:4a:5b:42:34:f1:
e8:06:4e:c5:98:0f:ba:7a:46:b4:70:a0:e8:07:af:
56:fd:5c:a4:15:8c:42:e5:48:a3:3d:3e:45:b9:1f:
4f:67:4c:b8:54:b2:f8:cd:cf:65:2b:60:1d:19:70:
c8:9f:ac:15:d5:c9:fa:1d:8b:1b:c5:2b:c2:31:c7:
91:b4:88:67:c8:21:82:1d:cb:52:f5:ac:05:31:bd:
e3:d6:7b:14:91:5b:2c:78:0f:93:6e:3d:c9:93:6d:
b1:cc:3e:e9:00:13:e9:53:65:fc:1f:ba:cb:ef:ae:
7c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8F:8B:1C:A1:07:89:A4:0D:EA:08:6F:C6:D9:A9:4D:4C:B0:1B:10
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/zI-LHKEHiaQN6ghvxtmpTUywGxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.255.0/24
31.134.200.0/21
Signature Algorithm: sha256WithRSAEncryption
98:88:8d:e4:80:91:1b:f9:3b:71:98:51:30:e0:cc:5e:5e:da:
76:8f:fc:a4:62:dc:49:db:b6:e6:68:4d:67:98:47:2e:ad:df:
1a:07:36:26:70:d7:e5:b2:6b:c7:2d:39:c7:38:91:15:e0:91:
68:be:8c:14:ca:2d:59:92:ac:4f:9a:24:61:85:b5:e5:d5:dd:
1b:f0:05:91:ce:24:e7:a0:7a:77:59:5c:67:c6:03:ae:97:14:
f9:3b:52:a5:1f:7b:30:03:a2:f6:c0:c8:70:a5:ac:fd:cc:90:
98:7f:59:49:e4:cb:0d:34:9c:da:e6:80:16:e7:39:7b:88:5a:
e9:48:55:f8:de:b4:df:60:1c:c6:5c:3f:6f:85:ab:ea:7b:c8:
5e:db:05:47:59:16:79:76:e3:77:ff:1c:21:2e:44:65:70:57:
96:00:88:90:05:51:31:b6:18:2b:c4:4c:3b:fd:40:be:82:52:
42:af:45:b2:b0:99:14:53:18:2b:50:53:4d:79:35:4e:f8:e5:
a0:ce:ef:06:ef:43:5b:7d:10:a7:58:25:3d:43:e4:8f:e2:5c:
17:17:5e:6f:4b:9b:dc:14:b6:29:09:bc:18:77:dc:6b:12:d8:
30:18:0d:d0:f7:85:5e:55:d6:48:e3:af:e4:79:ae:fa:05:dc:
f0:cf:22:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:21 2023 by rpki-client on console-fra.rpki-client.org