Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/RooeaFqA6-CP6YMOrHaRnn0IE_s.roa
File: RooeaFqA6-CP6YMOrHaRnn0IE_s.roa (raw, json)
Hash identifier: +sGDI9M2QKpyG2iLsr1yJ8beViKmoc4P0wZYEvwAuPU=
Subject key identifier: 46:8A:1E:68:5A:80:EB:E0:8F:E9:83:0E:AC:76:91:9E:7D:08:13:FB
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 1C5E1AB0
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/RooeaFqA6-CP6YMOrHaRnn0IE_s.roa
Signing time: Sat 01 Jan 2022 11:57:34 +0000
ROA not before: Sat 01 Jan 2022 11:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39318
IP address blocks: 31.210.174.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475929264 (0x1c5e1ab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Jan 1 11:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=468a1e685a80ebe08fe9830eac76919e7d0813fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:33:bf:d3:7b:1c:21:a8:cc:a5:1d:9b:90:a2:
ba:ca:40:a1:75:d4:dd:c6:40:32:dc:8a:c1:38:c6:
30:30:8a:d2:02:2b:58:54:56:32:0e:fe:b2:44:77:
77:39:55:79:fa:12:37:8e:21:23:5a:fb:af:a8:3e:
53:c4:5f:e9:46:c9:fe:d7:43:dd:5c:63:96:9e:d5:
c6:2c:b4:19:19:59:18:92:e9:bb:d7:e0:b5:8b:b5:
9b:65:20:26:06:9a:d9:8a:38:b0:ab:7c:3b:94:da:
91:df:44:38:70:3b:d7:1d:27:4f:48:f7:1d:df:4e:
58:fa:63:ab:f3:45:c7:8c:5a:84:df:0b:98:36:b2:
d3:b9:bc:5f:98:27:47:7e:40:0a:91:1a:9a:d4:4d:
cc:cb:30:20:b7:7b:a6:71:ae:ab:21:ac:2a:73:a9:
6a:f4:fb:45:a8:a6:be:a2:75:e3:ec:ea:fc:4c:39:
e0:67:a4:1c:3a:fd:1d:51:4f:72:ba:91:f5:1d:c5:
d5:e0:30:88:b5:31:7b:53:66:d6:a6:60:fe:42:88:
bb:d3:1c:c2:0a:ef:af:b2:29:ce:ca:fc:bf:46:da:
92:77:98:52:0f:6f:36:b5:e5:01:ad:fd:d6:49:d1:
19:ae:f1:3d:28:99:7c:e3:12:86:61:e9:e3:6b:d4:
77:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8A:1E:68:5A:80:EB:E0:8F:E9:83:0E:AC:76:91:9E:7D:08:13:FB
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/RooeaFqA6-CP6YMOrHaRnn0IE_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.174.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:93:a0:6a:29:05:18:b5:83:4f:8a:ab:dd:43:9f:82:ad:ed:
05:7b:79:78:bb:a4:1d:a7:0f:02:82:cf:39:64:d8:da:bf:04:
d2:a7:c3:1a:50:ed:a4:0f:ad:9e:94:6f:ac:be:f9:57:42:63:
25:10:a5:a7:17:82:8f:d3:c5:50:2f:e3:4c:23:2b:f2:bb:0c:
3f:86:f9:23:82:25:e6:90:ba:58:0e:66:68:a0:1a:c6:c3:1b:
f5:f1:9d:9f:3e:f0:ba:6c:49:23:bc:73:27:4f:e9:03:30:6e:
37:a4:fb:e8:28:9a:50:07:9c:64:00:d0:c1:9b:0d:ad:93:02:
27:d6:49:c3:d5:a2:18:93:9d:17:36:2e:54:20:c8:01:95:ef:
63:40:83:f9:d7:26:32:7c:78:da:26:00:be:db:17:d3:47:bf:
13:07:ed:82:ea:cd:dc:45:fc:fa:39:a7:7d:48:da:ca:96:65:
3d:4b:0d:3c:60:fc:74:c7:b0:9f:83:dc:af:a0:26:27:7a:7b:
56:35:db:ec:df:ea:62:77:38:0e:d4:82:48:5c:4e:35:46:72:
d5:20:3e:62:15:ff:10:79:73:63:b7:97:16:a1:5a:c6:4d:11:
6a:72:6d:7d:b2:d0:c1:7a:43:d4:a2:a3:0d:85:6f:61:30:b1:
00:8b:e2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:05 2023 by rpki-client on console-fra.rpki-client.org