Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/408e83-530d-4462-b1c9-df324c4c6eed/1/mttftu7ojQguY475uu52w23rNV4.roa
File: mttftu7ojQguY475uu52w23rNV4.roa (raw, json)
Hash identifier: TLHt00ATdo+YWg/TZb1Q4lt/DTCJzaMovWcDncB39Ag=
Subject key identifier: 9A:DB:5F:B6:EE:E8:8D:08:2E:63:8E:F9:BA:EE:76:C3:6D:EB:35:5E
Certificate issuer: /CN=a2cbe9aba1ff7564d913ed78672e3371b7f35824
Certificate serial: 0852D48B
Authority key identifier: A2:CB:E9:AB:A1:FF:75:64:D9:13:ED:78:67:2E:33:71:B7:F3:58:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osvpq6H_dWTZE-14Zy4zcbfzWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/408e83-530d-4462-b1c9-df324c4c6eed/1/mttftu7ojQguY475uu52w23rNV4.roa
Signing time: Tue 01 Mar 2022 15:00:01 +0000
ROA not before: Tue 01 Mar 2022 15:00:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39741
IP address blocks: 31.25.240.0/21 maxlen: 24
185.234.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139646091 (0x852d48b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2cbe9aba1ff7564d913ed78672e3371b7f35824
Validity
Not Before: Mar 1 15:00:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9adb5fb6eee88d082e638ef9baee76c36deb355e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:94:c0:51:94:de:f8:95:33:e2:ca:c4:d1:60:
b1:23:26:4f:a6:79:7b:1d:e0:a1:84:d3:15:2f:a4:
1d:9a:07:be:c1:94:e6:0f:d1:4d:e9:6d:0c:ab:45:
86:fb:18:d5:59:32:62:b4:e3:98:cf:29:91:9a:f9:
6a:32:1e:47:1d:0a:82:89:d8:37:23:a6:33:58:7b:
1a:1e:91:3a:04:74:e1:17:23:05:43:72:d6:76:78:
a1:c7:a1:d9:7e:9f:c0:ac:43:1b:c8:0b:ab:d2:3f:
0e:29:ac:a4:75:12:45:b9:a3:f1:1c:ef:66:a5:9f:
88:2f:91:5c:24:46:2e:87:20:fa:4e:4f:44:3f:b2:
76:b3:67:39:3d:d4:5f:30:ab:16:2a:af:fe:ef:ed:
cc:85:27:e0:98:09:ee:c6:20:55:44:d0:df:52:3f:
d9:60:dc:88:8f:88:95:57:38:ee:dd:d0:cb:4c:27:
18:e5:05:0f:25:f5:b2:24:27:1f:05:b0:de:7b:35:
68:15:06:1d:5a:6c:70:0d:9b:5e:20:d2:74:7f:ec:
1e:f3:49:76:f0:e2:85:5d:81:a2:fa:25:51:a0:d8:
79:0b:7e:95:e9:0a:a0:4a:7b:f0:43:4f:7f:23:a1:
f6:e5:bb:fb:52:0f:63:20:d0:4e:cc:a5:7c:ce:a9:
ea:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:DB:5F:B6:EE:E8:8D:08:2E:63:8E:F9:BA:EE:76:C3:6D:EB:35:5E
X509v3 Authority Key Identifier:
keyid:A2:CB:E9:AB:A1:FF:75:64:D9:13:ED:78:67:2E:33:71:B7:F3:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osvpq6H_dWTZE-14Zy4zcbfzWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/408e83-530d-4462-b1c9-df324c4c6eed/1/mttftu7ojQguY475uu52w23rNV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/408e83-530d-4462-b1c9-df324c4c6eed/1/osvpq6H_dWTZE-14Zy4zcbfzWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.240.0/21
185.234.116.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6b:4c:24:a8:c2:2a:8a:91:6e:57:70:35:1f:2d:7e:4e:62:
d5:22:34:05:08:1f:38:b6:26:00:ad:73:f2:5c:a8:06:d4:c1:
10:10:f5:b1:77:87:db:46:fb:4b:91:e4:49:cc:8a:3c:8f:28:
67:37:44:86:0f:0c:b0:52:ae:1c:52:b3:b1:34:de:30:a0:7a:
d1:7a:a1:c6:a0:0d:41:53:30:e7:b8:bd:0a:73:cf:ec:05:61:
60:f4:3e:1e:86:09:73:3e:a7:22:ea:04:62:36:6f:e7:64:15:
17:96:04:0c:e3:a3:89:3c:4d:05:0a:4e:22:12:1e:91:21:e2:
9d:06:82:78:e7:93:f1:f4:f3:05:0d:29:b3:41:e8:cd:9c:aa:
be:f9:4d:08:b3:db:67:c1:8f:d7:aa:88:6c:fb:b7:28:88:e2:
18:52:b2:90:0f:c1:e9:d0:53:98:11:b1:5d:fa:ec:ed:e4:ea:
89:6d:76:6a:7e:d0:f5:e9:71:8c:b7:85:91:83:55:38:64:95:
bb:32:17:a7:6a:4a:fd:fb:2a:2a:e7:a4:47:15:82:e3:c3:19:
ae:f3:94:cd:0d:37:c8:0b:c1:ce:ac:aa:95:72:0a:05:36:23:
9d:86:42:96:46:3d:6f:e4:86:97:e7:6f:8d:3c:22:5c:5a:15:
a1:30:ec:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-ams.rpki-client.org