Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wRiXjzYY8t61KPk3dZJd7PmEuOg.roa
File: wRiXjzYY8t61KPk3dZJd7PmEuOg.roa (raw, json)
Hash identifier: NbcaEDft4pBTe3+46XylO7XRnZmT+tbdb3RsNXA0Vw8=
Subject key identifier: C1:18:97:8F:36:18:F2:DE:B5:28:F9:37:75:92:5D:EC:F9:84:B8:E8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C8BC394
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wRiXjzYY8t61KPk3dZJd7PmEuOg.roa
Signing time: Sat 01 Jan 2022 01:02:52 +0000
ROA not before: Sat 01 Jan 2022 01:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208224
IP address blocks: 31.13.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478921620 (0x1c8bc394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c118978f3618f2deb528f93775925decf984b8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ca:16:02:e7:60:e5:2c:93:d8:e9:02:09:4a:
ec:0f:61:5c:e6:09:7d:ae:3a:ae:43:2f:5d:b9:c0:
cc:de:7b:ed:cd:8e:e0:12:53:a0:12:b4:ea:02:0f:
75:1d:60:1c:98:c7:bc:94:15:1b:3d:39:2e:fe:3d:
b3:b9:51:1f:9d:3f:27:73:9e:65:8b:7d:be:9c:b5:
43:79:2a:d4:86:03:71:47:e9:64:18:e5:c8:c0:ba:
79:7e:30:34:e6:3f:b5:1e:68:fd:ec:c8:5c:80:2e:
74:e1:e1:8c:bc:77:d7:25:90:ce:7e:66:bb:a6:95:
73:16:fd:ef:a5:8f:7c:ee:80:11:46:ab:75:f0:7c:
df:30:da:d4:d5:ee:d0:be:bb:7f:05:e3:e1:aa:20:
dc:06:cf:fb:d7:39:2a:85:80:49:af:b4:f8:24:59:
4c:31:09:2a:43:c5:43:86:7c:de:9d:af:5e:b4:4d:
e7:44:0c:a0:01:63:35:9f:ff:43:0a:62:34:02:d2:
e0:3f:00:7b:31:ba:64:ad:ae:21:63:2e:1d:7d:c6:
c4:b3:86:6d:77:df:f5:bf:e4:01:aa:85:74:7c:cb:
3d:36:6a:1d:fb:58:73:e7:1f:b9:53:55:00:22:84:
15:ac:13:b0:e0:22:37:f4:87:84:17:df:2e:4f:77:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:18:97:8F:36:18:F2:DE:B5:28:F9:37:75:92:5D:EC:F9:84:B8:E8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wRiXjzYY8t61KPk3dZJd7PmEuOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.246.0/24
Signature Algorithm: sha256WithRSAEncryption
83:94:ef:6c:ea:57:f1:c7:f4:ce:b8:c0:2d:f0:f8:82:2d:8e:
61:bb:2a:f9:12:ef:34:ed:b8:1c:08:f6:54:a3:c6:d2:45:1e:
6a:99:66:e9:22:15:6c:f5:da:9a:7a:63:f5:86:f1:1e:b0:82:
35:dc:63:4e:e8:c4:1a:ff:0e:7b:a1:c8:de:a5:e8:fb:06:09:
75:9c:3d:2a:05:b8:42:8a:d2:4b:93:0c:8b:05:da:a1:27:9a:
59:06:de:16:06:c4:b0:6f:ec:27:12:e6:d3:02:47:3e:29:94:
ad:4e:7e:cf:88:00:0b:b6:f7:90:23:9b:7a:72:3f:dc:50:bb:
17:38:ec:d0:f6:4b:7b:08:e3:11:de:e2:bc:62:ce:97:b0:c0:
77:38:73:e6:a7:f5:e8:94:7f:6e:c0:8c:f2:5b:70:35:2a:19:
10:10:e1:2e:22:2f:85:31:e8:cb:dd:82:ba:35:cf:42:0c:c2:
cd:19:21:00:b5:53:93:65:e8:1f:a4:d1:18:f2:76:73:22:b0:
50:7e:fc:70:74:b8:4d:06:09:f9:62:7e:d1:fd:01:fe:05:69:
75:85:0a:c2:8c:c2:55:23:4c:d6:25:e2:3d:7f:88:aa:33:38:
c9:48:1f:3c:bd:4c:bd:10:e6:b5:86:fc:5e:c7:a5:3f:b2:5f:
3a:e2:9f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:21 2024 by rpki-client on console-fra.rpki-client.org