Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/XQLsiGj5ml4tvaPI4Fjuj5HjOis.roa
File: XQLsiGj5ml4tvaPI4Fjuj5HjOis.roa (raw, json)
Hash identifier: 9Y97nuR/eEmWdP8s0CFPcFjjl3LhC4B5UKPRIuNLPlE=
Subject key identifier: 5D:02:EC:88:68:F9:9A:5E:2D:BD:A3:C8:E0:58:EE:8F:91:E3:3A:2B
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 0218B580
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/XQLsiGj5ml4tvaPI4Fjuj5HjOis.roa
Signing time: Sat 01 Jan 2022 09:54:19 +0000
ROA not before: Sat 01 Jan 2022 09:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207416
IP address blocks: 31.129.250.0/24 maxlen: 24
31.129.249.0/24 maxlen: 24
31.129.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35173760 (0x218b580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Jan 1 09:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d02ec8868f99a5e2dbda3c8e058ee8f91e33a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:de:33:ce:fe:a5:70:a0:74:12:fa:68:63:
55:55:98:af:81:13:aa:1f:d0:43:02:4d:a9:15:ff:
8f:4e:13:89:c1:84:a6:5c:6c:fa:0a:21:de:58:0c:
79:48:6f:82:59:b7:ae:46:2e:52:f7:07:2d:8c:a9:
79:d9:a1:ff:4c:e1:86:ca:25:d3:8f:ac:71:87:46:
4c:0f:28:23:75:d0:9d:86:10:dc:3c:5c:5c:70:c7:
53:fe:38:60:a7:29:f0:12:d8:71:78:f3:84:5f:30:
94:f7:73:b6:e1:bf:c2:0a:6a:60:e5:76:87:51:16:
e6:01:b2:1c:2d:9c:74:f5:3c:80:c1:ff:42:03:90:
b6:e8:3e:83:30:3e:43:9a:ae:4b:b7:02:05:85:2d:
84:e3:fb:6c:5a:29:9b:9c:53:35:82:d9:bc:fc:19:
6f:a7:ff:a3:3f:01:fa:48:19:ac:20:9e:f8:f6:b9:
d6:2e:94:d6:29:f8:bd:7f:9c:ff:24:41:c3:27:0f:
d6:66:86:a1:7d:68:dd:8a:49:f1:95:c0:21:33:82:
60:17:d6:83:c0:bc:99:33:90:cb:14:f0:7b:7e:07:
d2:b6:5b:3a:2e:1e:90:a5:a4:da:89:bf:f1:c9:3d:
47:c1:86:8f:a6:cb:a8:6b:22:8d:96:ee:79:6a:2f:
93:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:02:EC:88:68:F9:9A:5E:2D:BD:A3:C8:E0:58:EE:8F:91:E3:3A:2B
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/XQLsiGj5ml4tvaPI4Fjuj5HjOis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.248.0-31.129.250.255
Signature Algorithm: sha256WithRSAEncryption
87:03:42:1a:94:e6:2e:b4:02:fb:90:f7:f0:af:33:2f:71:fa:
71:0d:fa:ae:89:de:62:4a:31:4a:b3:43:b5:1b:34:7d:8c:d3:
80:60:a2:75:86:30:24:93:c5:08:fc:0f:b5:3d:5d:07:c8:23:
09:d1:de:0b:4f:92:8c:74:a1:47:82:ee:49:05:89:0b:29:90:
ef:ae:c1:f8:7f:19:be:c3:50:6d:50:1f:96:1d:76:c3:5c:b3:
e5:06:78:f0:b5:4a:a7:b4:98:bd:ad:36:5c:d8:e9:42:49:51:
ad:34:fa:cf:5f:4b:2a:86:e7:66:c9:69:d3:4a:f0:cc:2e:ee:
13:18:80:66:32:5e:e1:96:c0:db:89:ff:8c:f7:36:44:69:0a:
8e:51:e7:cc:d5:bd:3e:87:05:07:e5:7c:92:9f:23:19:7d:a6:
d9:3d:36:4a:88:22:21:af:e6:83:44:13:0c:a0:64:22:fc:be:
ef:e6:b9:75:af:5d:75:9b:93:56:a2:c2:37:6b:98:dd:f7:db:
b4:72:35:d1:4c:9d:ca:0f:94:8e:65:86:ce:4d:43:67:d6:e0:
15:0d:a7:15:b8:6f:22:fd:50:55:f0:4b:f7:04:2f:bf:a7:82:
09:b5:40:5c:9d:d9:2c:52:f2:6f:72:da:0c:d2:90:c5:f2:c5:
b1:d6:11:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:57 2024 by rpki-client on console-ams.rpki-client.org