Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/NUJq80c9enmmSOYmGkVzkC62cbE.roa
File: NUJq80c9enmmSOYmGkVzkC62cbE.roa (raw, json)
Hash identifier: Q+XXMLO7whwW+h7n/WMewpBare60EhqiXAC++90sd+s=
Subject key identifier: 35:42:6A:F3:47:3D:7A:79:A6:48:E6:26:1A:45:73:90:2E:B6:71:B1
Certificate issuer: /CN=41068161a132379cb86a3dd390f7e1f69d93c1f1
Certificate serial: BB0471
Authority key identifier: 41:06:81:61:A1:32:37:9C:B8:6A:3D:D3:90:F7:E1:F6:9D:93:C1:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQaBYaEyN5y4aj3TkPfh9p2TwfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/NUJq80c9enmmSOYmGkVzkC62cbE.roa
Signing time: Sat 01 Jan 2022 11:56:59 +0000
ROA not before: Sat 01 Jan 2022 11:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57271
IP address blocks: 31.222.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12256369 (0xbb0471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41068161a132379cb86a3dd390f7e1f69d93c1f1
Validity
Not Before: Jan 1 11:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35426af3473d7a79a648e6261a4573902eb671b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fc:9b:55:eb:e1:48:b1:36:8e:82:6e:0f:ca:
12:c1:22:d8:96:6d:ad:c0:19:07:b5:f6:75:b6:53:
48:55:0e:b1:c4:41:de:60:0a:ae:5f:65:14:83:93:
52:7f:ad:1d:45:91:0d:fd:0d:c1:5b:87:95:2b:8e:
13:46:09:07:53:41:ba:57:ef:ac:40:ed:d5:f4:66:
8d:96:ae:c7:99:bf:b0:cf:7b:cc:ef:8f:6f:70:ff:
9f:0a:12:dd:5a:1a:f1:1b:45:5a:12:4b:1d:92:e7:
29:72:3e:5e:df:51:eb:e1:87:db:41:b1:d9:54:ff:
a0:41:d3:01:95:a7:de:5a:19:a9:05:a3:dd:30:08:
6f:73:81:21:99:60:54:67:1a:db:d3:f4:a3:58:f0:
e6:7f:32:58:a8:3c:06:1a:10:f9:a9:c8:5c:cf:9d:
a0:ea:c5:6a:bf:d7:aa:67:ba:44:3a:2b:38:fe:26:
92:1c:14:66:fd:0d:ef:af:d6:71:2e:24:56:13:8b:
88:53:6b:25:c6:98:a8:cc:c8:af:9d:89:5a:4d:ba:
00:52:53:2e:5f:40:a3:69:3c:cf:e8:9f:2f:6d:ed:
7f:0c:07:eb:1d:6c:ed:99:e6:71:e2:12:24:36:28:
f1:20:6a:bc:3d:d1:6c:a9:b3:36:18:b2:23:31:47:
00:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:42:6A:F3:47:3D:7A:79:A6:48:E6:26:1A:45:73:90:2E:B6:71:B1
X509v3 Authority Key Identifier:
keyid:41:06:81:61:A1:32:37:9C:B8:6A:3D:D3:90:F7:E1:F6:9D:93:C1:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQaBYaEyN5y4aj3TkPfh9p2TwfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/NUJq80c9enmmSOYmGkVzkC62cbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/24587a-f619-45b5-91fb-71dd6f299a61/1/QQaBYaEyN5y4aj3TkPfh9p2TwfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.249.0/24
Signature Algorithm: sha256WithRSAEncryption
21:de:f8:e0:ff:45:94:b3:8b:a1:91:16:6c:86:4f:fa:9e:e8:
0c:36:84:d9:95:c0:d0:ea:4b:1f:a4:31:93:cf:35:b6:8c:eb:
b1:0f:d3:36:41:5d:c0:8a:f3:06:84:b1:b5:9a:bc:e4:34:b9:
af:c1:d1:b2:70:0d:3d:94:00:08:d1:85:16:6e:2c:66:49:d5:
83:75:46:b0:84:be:8f:62:aa:53:83:7f:0a:cb:0a:1d:3a:e6:
c4:8a:e6:63:83:cf:bb:f7:5a:6f:60:be:1e:d6:a4:ce:78:48:
67:0f:dc:e4:28:3f:4a:94:8c:b1:79:7e:55:92:12:55:34:b7:
d1:2f:73:dd:fd:49:08:cf:79:44:12:67:70:a1:64:98:67:a0:
8e:0a:d7:a8:57:d6:62:5a:81:6e:45:4b:f3:9d:d3:fd:c3:bc:
c6:70:3a:22:4c:b9:86:45:93:97:a6:01:78:d4:7b:90:ca:48:
21:72:fb:72:ef:c5:26:32:c5:14:80:56:59:f3:3b:ed:d8:f9:
b5:82:eb:6e:ac:b8:91:f6:e6:b8:21:4b:8b:6b:76:13:e7:4e:
6c:9b:5a:4b:e9:41:e5:a0:47:ff:7f:b6:c5:84:a8:47:01:97:
cf:db:e6:64:4f:8b:56:9f:84:9a:99:0c:b5:11:a3:84:c0:54:
21:88:43:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:40 2023 by rpki-client on console-fra.rpki-client.org