Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8c51a0-7272-4e12-bbc4-882572ad9833/1/uDlMIS3_Ts1VXFmHz6X_RsVjli4.roa
File: uDlMIS3_Ts1VXFmHz6X_RsVjli4.roa (raw, json)
Hash identifier: e1tL63qRbrPl2NOEUAHtnkHCa0jK94X89MT+XVA2guQ=
Subject key identifier: B8:39:4C:21:2D:FF:4E:CD:55:5C:59:87:CF:A5:FF:46:C5:63:96:2E
Certificate issuer: /CN=b6721c64a39da3370247319ef0bb053ce6ddc71e
Certificate serial: C06169
Authority key identifier: B6:72:1C:64:A3:9D:A3:37:02:47:31:9E:F0:BB:05:3C:E6:DD:C7:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tnIcZKOdozcCRzGe8LsFPObdxx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8c51a0-7272-4e12-bbc4-882572ad9833/1/uDlMIS3_Ts1VXFmHz6X_RsVjli4.roa
Signing time: Sat 01 Jan 2022 06:54:24 +0000
ROA not before: Sat 01 Jan 2022 06:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 31.222.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12607849 (0xc06169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6721c64a39da3370247319ef0bb053ce6ddc71e
Validity
Not Before: Jan 1 06:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8394c212dff4ecd555c5987cfa5ff46c563962e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e8:43:ef:67:7f:60:a9:a0:59:bd:5b:6f:f5:
12:c5:d2:a9:4b:3f:1a:34:51:b0:13:57:95:94:cb:
55:c4:7d:c0:e1:13:f3:3e:f9:78:b4:53:fd:5d:df:
01:4a:7a:25:4a:f8:ef:cd:80:32:e1:34:19:b7:1b:
6d:92:2d:97:64:26:09:12:c0:2b:9e:0d:e8:ab:d8:
6e:15:90:19:b3:0b:44:fa:92:bc:52:f6:5a:13:a2:
a2:b0:42:c9:08:27:84:87:4f:b5:ed:58:3d:5f:ff:
3e:6d:4f:79:60:5a:7b:c7:4b:65:7d:d2:40:e6:99:
37:d9:44:fb:e6:ec:28:ce:2e:26:4d:1e:e8:1e:af:
d2:62:be:f3:e6:43:33:52:18:17:cd:f6:48:fc:50:
98:50:17:e7:ca:87:b0:ef:ba:b2:21:61:91:3f:2c:
74:38:be:ad:d8:c6:74:66:b2:f2:84:cf:35:4e:c9:
ad:1a:69:50:a8:3b:09:e1:49:a7:72:87:e1:55:cf:
52:9c:aa:e0:ce:ef:1d:f1:a8:2b:9e:47:1d:47:12:
f5:07:f0:21:39:cd:b0:f0:88:52:1e:af:66:c8:98:
6e:9f:c9:3d:d0:a6:5a:2a:6d:5b:90:31:b6:71:9a:
ea:95:52:47:25:b3:08:02:4b:10:de:01:f3:c2:a3:
6d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:39:4C:21:2D:FF:4E:CD:55:5C:59:87:CF:A5:FF:46:C5:63:96:2E
X509v3 Authority Key Identifier:
keyid:B6:72:1C:64:A3:9D:A3:37:02:47:31:9E:F0:BB:05:3C:E6:DD:C7:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tnIcZKOdozcCRzGe8LsFPObdxx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8c51a0-7272-4e12-bbc4-882572ad9833/1/uDlMIS3_Ts1VXFmHz6X_RsVjli4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8c51a0-7272-4e12-bbc4-882572ad9833/1/tnIcZKOdozcCRzGe8LsFPObdxx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.253.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ed:66:59:c5:f7:98:54:0a:b6:60:af:de:bb:7a:86:c9:98:
c6:0a:f3:80:d1:1d:e1:53:4d:76:46:54:28:4c:0f:51:6c:24:
29:ed:d3:30:e0:1d:fd:a1:83:7b:88:96:73:40:13:a7:bf:dc:
a6:57:8a:f1:a4:c7:30:12:74:c7:4a:e5:b0:c7:d2:77:54:56:
1e:b7:23:98:53:af:c5:4d:80:03:3f:e5:fb:e9:3a:76:e4:46:
28:d8:91:78:92:85:52:f7:b0:a1:33:e3:bd:71:77:42:b5:63:
5a:26:85:b1:bd:37:f8:7e:58:b5:6b:d5:c3:c1:7b:a6:c6:05:
bf:90:05:4d:23:ca:16:50:16:cf:8d:5b:2d:d7:85:1c:5c:f5:
e4:be:c0:65:23:98:b4:22:8d:f5:d2:59:ac:01:79:cb:87:a9:
53:f0:1e:6a:2e:0c:25:59:81:0f:4d:10:3d:d1:f5:d6:cb:c4:
a6:98:f3:84:09:f5:78:bd:1a:a9:c8:7a:f9:ed:6f:da:c8:5f:
ef:c7:7e:66:d5:02:d4:2a:2f:42:11:d2:89:9f:7b:a2:6c:de:
8d:44:21:c7:c5:cc:bb:5c:3e:5d:ce:c1:97:c0:b2:ab:fe:d2:
bb:43:a3:07:73:0e:3f:fa:28:13:d2:b8:35:16:0a:2c:91:ae:
59:62:97:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:06 2023 by rpki-client on console-fra.rpki-client.org