Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/roNZEnf-rCKxzz5fzNkTMCSKUIk.roa
File: roNZEnf-rCKxzz5fzNkTMCSKUIk.roa (raw, json)
Hash identifier: 1PdrNQ369QRKdh8qIe7FS2WPUyqOJ6sTI1+jXIWCtWc=
Subject key identifier: AE:83:59:12:77:FE:AC:22:B1:CF:3E:5F:CC:D9:13:30:24:8A:50:89
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1B5CD597
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/roNZEnf-rCKxzz5fzNkTMCSKUIk.roa
Signing time: Sat 01 Jan 2022 10:56:01 +0000
ROA not before: Sat 01 Jan 2022 10:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57694
IP address blocks: 31.172.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459068823 (0x1b5cd597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Jan 1 10:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae83591277feac22b1cf3e5fccd91330248a5089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d4:0d:81:28:91:0c:a4:ae:f6:f2:ba:4a:8d:
e5:78:ce:26:2d:f9:55:02:dc:91:7f:76:c8:5e:87:
51:33:5d:04:52:41:1c:a3:0a:72:43:95:f0:5d:3e:
90:ee:fd:f4:8d:30:e9:18:8c:df:b6:ab:73:1c:d8:
0a:78:7f:7d:5e:b6:ac:4b:f3:a3:8f:16:ef:f0:50:
cc:d4:ed:96:db:ce:7b:28:aa:fb:e2:79:ee:ba:5a:
2d:73:08:eb:ed:33:93:b7:96:19:a1:e6:75:13:96:
91:3b:e0:b1:f9:75:64:e0:28:23:65:d5:32:09:86:
d6:d8:40:cf:e6:17:e5:ba:e7:24:57:5b:c1:fb:75:
7d:0f:b6:ce:96:a3:46:9d:5c:d3:97:e0:75:2b:c9:
0b:f4:bf:7a:c1:6f:7e:47:43:80:67:f2:c0:29:0d:
41:13:81:f6:5a:3d:eb:17:3d:b3:65:f9:85:c9:8d:
fc:cc:c6:d6:85:b2:27:95:47:12:09:40:2a:aa:46:
e3:15:c9:84:d8:1c:a4:af:c1:70:d3:0c:d3:69:50:
b3:62:12:b2:92:08:47:ef:48:40:4c:27:ae:c6:ff:
d8:c7:6a:c4:7c:eb:b0:78:99:f4:7b:bb:75:86:00:
87:64:7d:f8:4e:45:3c:79:72:1c:ff:a5:9b:15:8b:
a7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:83:59:12:77:FE:AC:22:B1:CF:3E:5F:CC:D9:13:30:24:8A:50:89
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/roNZEnf-rCKxzz5fzNkTMCSKUIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b1:94:cf:ba:16:e6:3b:bc:01:83:d4:38:1a:86:e5:0f:7f:
67:d1:e4:c1:12:81:47:32:1d:1e:79:76:87:e5:37:56:7e:15:
6c:49:45:74:bc:bf:4d:c1:15:e1:2c:36:b5:09:db:21:84:6a:
f1:6d:05:23:91:e2:09:41:5c:4a:a9:19:30:aa:06:2d:24:fd:
1e:6a:ea:e4:76:ef:88:6e:d2:05:a3:41:01:92:e9:49:b3:6d:
ce:47:ef:0b:61:9c:de:ce:e7:fd:75:4f:ee:f4:d9:7d:39:b2:
66:62:23:b7:29:5e:4d:09:6b:82:fb:4d:02:40:28:5f:ec:21:
9e:eb:4c:27:8b:ed:59:af:29:34:3f:ea:b3:a2:42:ad:1d:6e:
aa:e8:f2:1d:fb:b2:72:68:c3:e9:fb:ce:3a:81:10:53:63:8f:
e1:35:34:36:d4:eb:de:73:92:c2:0a:26:68:33:1d:01:a4:fd:
81:54:5c:23:75:3a:88:26:07:b3:db:60:21:73:c0:43:ca:38:
08:d7:a6:4c:47:a3:42:90:c3:57:90:aa:36:16:f1:29:e3:96:
ff:dd:69:50:3f:3e:45:c6:b9:33:3f:84:8d:4c:68:78:4a:db:
80:98:2f:64:ad:39:19:37:3e:f9:27:d7:43:62:d6:70:9a:fb:
93:e1:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org