Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/b7eb91-1d64-4d74-b092-43bab7ff200a/1/t7ZPvmuvd9w0B_8Z4_od-_y6Rs4.roa
File: t7ZPvmuvd9w0B_8Z4_od-_y6Rs4.roa (raw, json)
Hash identifier: vf5Q1gmPuA8znyhURongVYgBWrc1t6FzgNoq1ooZL3A=
Subject key identifier: B7:B6:4F:BE:6B:AF:77:DC:34:07:FF:19:E3:FA:1D:FB:FC:BA:46:CE
Certificate issuer: /CN=dd659982fb20ab00fa5a25ca882d638e7e032254
Certificate serial: BE9C7D
Authority key identifier: DD:65:99:82:FB:20:AB:00:FA:5A:25:CA:88:2D:63:8E:7E:03:22:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WWZgvsgqwD6WiXKiC1jjn4DIlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/b7eb91-1d64-4d74-b092-43bab7ff200a/1/t7ZPvmuvd9w0B_8Z4_od-_y6Rs4.roa
Signing time: Sat 01 Jan 2022 08:06:06 +0000
ROA not before: Sat 01 Jan 2022 08:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 31.222.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12491901 (0xbe9c7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd659982fb20ab00fa5a25ca882d638e7e032254
Validity
Not Before: Jan 1 08:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7b64fbe6baf77dc3407ff19e3fa1dfbfcba46ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:c9:ea:7b:25:93:aa:6c:b0:e4:57:41:ea:
8d:56:9a:ea:d1:96:7b:32:63:42:7f:91:31:75:67:
50:bd:19:16:56:3f:34:cb:01:fd:68:28:95:4d:64:
c9:fc:a5:3f:d7:6b:f9:74:b7:23:ad:8d:e8:33:6a:
b8:33:ba:54:a8:e0:74:b9:be:fb:23:b2:0d:91:41:
60:9a:a4:0a:8a:76:9d:66:63:fb:61:9d:e3:28:57:
74:be:22:69:d6:ea:f5:21:ed:47:f9:f9:28:b2:68:
0d:96:b6:38:f5:e2:b2:e9:ca:0d:f6:1f:9f:91:6d:
29:43:88:e0:1b:3e:36:79:c9:35:0f:e2:48:5e:55:
65:3b:3d:50:79:68:eb:c2:54:3d:68:9f:07:a4:c0:
9c:cd:b1:4c:e6:a0:a9:9e:4f:8d:66:2d:7d:b5:85:
e4:01:d9:6c:5e:54:40:52:13:4b:93:c1:60:24:52:
c7:21:26:af:ce:86:f5:20:71:bb:ac:19:20:6a:ae:
19:a0:91:65:ea:67:35:ec:21:47:2f:4c:11:c4:70:
15:1e:0a:b0:13:df:15:2a:4e:1d:5a:90:fe:ba:93:
fd:fd:79:7d:59:22:ee:e6:9f:c9:16:0c:a8:fd:75:
c7:40:7a:97:15:b2:ec:f2:04:10:50:d5:b7:9a:8f:
1e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B6:4F:BE:6B:AF:77:DC:34:07:FF:19:E3:FA:1D:FB:FC:BA:46:CE
X509v3 Authority Key Identifier:
keyid:DD:65:99:82:FB:20:AB:00:FA:5A:25:CA:88:2D:63:8E:7E:03:22:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WWZgvsgqwD6WiXKiC1jjn4DIlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b7eb91-1d64-4d74-b092-43bab7ff200a/1/t7ZPvmuvd9w0B_8Z4_od-_y6Rs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b7eb91-1d64-4d74-b092-43bab7ff200a/1/3WWZgvsgqwD6WiXKiC1jjn4DIlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.245.0/24
Signature Algorithm: sha256WithRSAEncryption
13:00:7d:77:e3:de:7d:c5:50:87:ac:5d:3a:53:95:cc:48:7b:
55:7e:c4:f9:48:2f:9b:29:4e:79:5c:d5:53:9e:43:ce:f5:40:
52:25:94:0e:7a:28:17:25:9e:44:3c:09:7b:dd:fe:e7:13:e5:
41:e9:db:e1:cf:56:40:55:1e:0c:03:e5:6b:9c:39:89:c1:7f:
8d:4f:8a:39:43:45:82:c4:94:0f:b1:ee:28:d7:01:c9:a8:61:
5c:43:f5:cc:3c:ba:2f:75:f6:35:cf:52:1d:8b:a2:48:a9:26:
b9:ba:78:2b:ce:e5:dd:10:f4:3a:62:9a:19:dd:62:3c:ae:64:
e4:41:26:f3:33:07:66:34:3e:92:7d:f7:ed:06:69:ec:28:64:
68:2d:35:7d:01:8d:da:37:7b:ab:59:4f:81:19:48:1a:85:5a:
08:fc:c3:64:1b:28:8d:a6:3d:e4:ae:e4:81:99:28:45:83:e1:
0a:bd:dc:a8:53:1f:d3:4e:53:72:fc:11:92:e4:50:79:6e:20:
c1:a1:d5:40:97:a3:84:6e:aa:e5:d4:34:b8:4f:7b:99:e0:b5:
79:82:4d:19:26:dd:53:40:02:1f:01:a7:64:e0:68:25:48:5e:
fe:e8:1c:4e:46:d8:49:0f:78:4a:6a:1d:3a:66:b7:71:dc:90:
81:99:03:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org