Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/z83R9bTdcZqPTbn6M8KjAx22bBs.roa
File: z83R9bTdcZqPTbn6M8KjAx22bBs.roa (raw, json)
Hash identifier: b9u6COpgy/SzAIEKbu3lgwPx0w2NeqKs74oyUi+NWME=
Subject key identifier: CF:CD:D1:F5:B4:DD:71:9A:8F:4D:B9:FA:33:C2:A3:03:1D:B6:6C:1B
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1C926BD5
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/z83R9bTdcZqPTbn6M8KjAx22bBs.roa
Signing time: Tue 17 May 2022 15:00:09 +0000
ROA not before: Tue 17 May 2022 15:00:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41370
IP address blocks: 31.172.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479357909 (0x1c926bd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: May 17 15:00:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfcdd1f5b4dd719a8f4db9fa33c2a3031db66c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ee:83:e5:6c:00:d3:e0:9b:43:74:73:eb:f9:
ee:65:72:f1:d9:9a:52:0f:4c:68:47:69:a7:c7:69:
1f:67:2a:c8:ed:dc:79:ed:4f:a6:b4:e2:54:0a:ff:
0c:4b:82:de:99:86:71:f8:55:2d:24:ba:3f:04:82:
d5:da:5d:48:a9:70:d8:01:21:b2:9a:5a:6a:79:ee:
7a:e7:52:cc:de:20:4d:97:50:bf:c0:aa:c9:06:4a:
a5:7b:95:f6:83:4d:6d:80:e2:73:01:4c:44:82:a1:
ad:e9:d6:af:a2:63:ea:0e:f0:4e:17:c9:a9:ee:1e:
b1:73:01:c7:ab:2e:65:d2:05:92:07:0a:23:6e:5f:
e3:43:a6:2b:c9:61:ac:51:c3:c9:ca:49:fa:e9:fc:
60:d5:df:98:cf:85:63:c6:ee:69:cf:0a:51:bb:03:
f4:c2:c6:01:cb:ae:2f:bf:0b:07:e6:27:4d:7b:3b:
1a:18:85:72:33:53:10:98:bf:5b:3b:e2:7f:b7:27:
ad:fa:dd:07:79:26:98:cb:1f:a6:fb:34:cd:cd:c3:
fb:b0:01:b9:69:d0:a3:ce:71:be:9c:00:8b:7a:14:
7a:d5:01:39:dc:49:91:9c:2e:c0:60:39:6f:c9:5b:
4d:ca:f1:1d:74:a2:90:c4:54:90:55:77:77:ce:f5:
e3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CD:D1:F5:B4:DD:71:9A:8F:4D:B9:FA:33:C2:A3:03:1D:B6:6C:1B
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/z83R9bTdcZqPTbn6M8KjAx22bBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.161.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c9:9b:15:1e:6d:05:e7:74:b7:92:0e:43:48:e7:a7:cf:3f:
39:23:d5:31:05:ee:f1:48:3d:03:fc:7c:a9:ff:d6:4d:f9:6c:
d8:6a:77:1c:43:93:d9:c0:4e:8e:a7:e5:d6:ac:19:93:b6:cb:
2e:12:ee:a8:b2:63:27:0e:42:24:5c:43:fa:fe:7e:65:69:84:
24:b5:06:6c:75:4e:fa:f5:d8:20:83:45:f6:db:fe:f3:d8:4d:
bd:33:4f:a2:3d:a8:1f:c2:98:08:46:a4:5f:3f:d3:cd:b4:b9:
ce:3d:47:d7:1f:f3:73:f7:b5:61:c9:9d:3a:61:77:b2:af:f3:
82:1a:7d:71:f9:5f:40:35:83:6f:a2:eb:0b:72:99:e9:df:bb:
c3:d2:b2:87:b5:1f:99:83:a2:c4:d4:e3:c5:23:5d:92:78:a1:
71:d8:ca:d2:17:85:2a:22:58:e1:4b:39:44:e3:03:c0:ca:4b:
95:09:44:6b:19:6e:32:0c:49:5b:3b:1a:0c:5a:e4:c0:d7:f8:
66:8f:32:52:66:33:df:a5:e7:a4:2b:76:bf:ae:b4:4d:5d:73:
62:05:81:17:c3:ee:ec:2a:91:d2:38:d9:07:97:28:34:64:27:
dd:ea:c2:93:a4:f6:e9:02:32:ee:c8:c5:a7:9d:fc:45:47:49:
89:6e:2b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:50 2023 by rpki-client on console-ams.rpki-client.org