Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/ZxmjOSLJ9aUF2pK3fL6f856j_Y0.roa
File: ZxmjOSLJ9aUF2pK3fL6f856j_Y0.roa (raw, json)
Hash identifier: /PYidr4Hv3fT152+s8fAP+t2xRJYnpuyF6yKcBSCEPo=
Subject key identifier: 67:19:A3:39:22:C9:F5:A5:05:DA:92:B7:7C:BE:9F:F3:9E:A3:FD:8D
Certificate issuer: /CN=83bce35561f541bda97e777e6879a1d704e7b42f
Certificate serial: 0348DB58
Authority key identifier: 83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/ZxmjOSLJ9aUF2pK3fL6f856j_Y0.roa
Signing time: Sat 01 Jan 2022 08:54:47 +0000
ROA not before: Sat 01 Jan 2022 08:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44527
IP address blocks: 31.44.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55106392 (0x348db58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bce35561f541bda97e777e6879a1d704e7b42f
Validity
Not Before: Jan 1 08:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6719a33922c9f5a505da92b77cbe9ff39ea3fd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d8:38:61:a3:ec:52:57:05:2a:15:ea:2c:63:
65:63:e4:db:71:e2:c3:b8:fc:a0:4e:41:2d:5c:80:
3f:6a:eb:b6:d0:49:f9:e2:54:fb:d1:27:37:ba:1b:
b8:7c:83:53:bc:6a:52:d5:dd:a7:f3:cd:be:f2:3e:
86:83:77:45:21:c6:01:23:2e:4d:bc:e3:ea:92:86:
a9:6b:f8:ab:88:4e:cd:b4:70:65:5a:c9:1b:a5:d2:
7f:6d:e4:54:da:0d:41:e8:f5:a8:6c:c9:ca:36:6b:
92:7d:9f:98:85:98:e9:4e:06:5a:ce:fa:3f:46:cc:
d7:fc:e2:0d:9c:db:14:de:d1:2d:b6:d2:62:36:d3:
f9:b0:4b:ce:83:a3:e7:89:b9:c3:b2:d0:18:28:bd:
25:9b:c9:20:ec:b7:13:7b:08:37:5a:d4:cf:7b:ed:
a2:e7:de:99:b8:f2:f9:22:f4:3f:f7:c3:bd:3d:23:
1c:53:7f:d4:16:08:6d:4b:14:b0:2f:61:05:21:f3:
af:b0:c6:03:3e:62:cf:4e:ef:58:7e:c5:49:ca:b3:
4b:f6:86:27:59:ef:ef:f4:e9:6b:74:90:f7:a2:d5:
a6:04:34:93:1e:c4:21:26:92:53:f8:4a:28:95:a5:
77:c7:75:73:9c:9c:3e:93:52:d7:0f:34:5f:e1:a4:
78:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:19:A3:39:22:C9:F5:A5:05:DA:92:B7:7C:BE:9F:F3:9E:A3:FD:8D
X509v3 Authority Key Identifier:
keyid:83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/ZxmjOSLJ9aUF2pK3fL6f856j_Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.214.0/23
Signature Algorithm: sha256WithRSAEncryption
80:e2:92:ec:fb:29:8f:bb:77:71:47:79:e9:c4:c5:cc:a8:ce:
43:bc:69:be:44:f1:47:3a:ef:74:ca:2e:07:a7:30:28:9b:fa:
23:71:0b:36:3e:3e:54:ae:af:5d:f0:77:6c:25:de:14:70:41:
7f:95:e4:e6:5b:2c:9a:78:2f:44:6c:0e:c8:a1:a5:96:1f:ae:
83:65:51:18:12:8d:3b:28:bf:ac:e1:95:6b:59:99:85:78:06:
00:16:cd:fd:bd:fc:26:1c:ff:62:30:01:9e:ac:ae:4b:1f:6f:
5c:4b:7a:ab:ef:f6:7a:68:90:dc:dd:b3:0d:c5:93:e3:51:1b:
03:e6:c4:f7:a5:58:ac:88:dc:04:f6:4f:19:1d:46:48:5f:23:
d2:e7:9c:de:32:8e:9b:52:f6:12:ff:49:2e:10:52:46:39:33:
f4:54:7d:1d:b2:43:48:82:42:52:28:63:1d:71:44:40:7a:07:
0a:3f:a3:90:d0:4c:8f:0e:bf:e5:f0:99:f5:e9:94:09:6b:db:
bb:27:3a:9c:ab:fb:25:87:f9:38:f9:6e:28:13:70:93:c3:52:
65:5d:1c:c4:9b:a3:11:df:ff:f8:55:56:08:ec:af:da:a4:98:
82:b6:f0:c3:a2:ac:bc:63:44:4c:d5:cf:06:1a:2c:5c:26:8c:
48:b7:9b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:05 2025 by rpki-client