Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rFznDOP7TsoimYTnV4otNqx73Pw.roa
File: rFznDOP7TsoimYTnV4otNqx73Pw.roa (raw, json)
Hash identifier: xlAIQw/wey4U11lqIJb5SpRQiay+ZlOY11yohdQcB5I=
Subject key identifier: AC:5C:E7:0C:E3:FB:4E:CA:22:99:84:E7:57:8A:2D:36:AC:7B:DC:FC
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 051113B6
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rFznDOP7TsoimYTnV4otNqx73Pw.roa
Signing time: Wed 29 Jun 2022 14:01:03 +0000
ROA not before: Wed 29 Jun 2022 14:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208287
IP address blocks: 31.210.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85005238 (0x51113b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 29 14:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac5ce70ce3fb4eca229984e7578a2d36ac7bdcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:21:49:bf:df:87:f8:c4:8a:4d:05:db:1e:6d:
d4:d5:fb:f3:21:f2:18:00:6b:d4:6b:44:3c:88:5f:
e4:ed:80:93:4e:7d:9e:a3:b1:be:b6:3a:eb:2f:c8:
25:9b:db:a5:37:3e:a0:7d:36:fa:17:2b:58:a7:dd:
7f:46:74:f0:f3:b1:d5:5f:c5:a1:e7:79:c1:2b:3d:
38:8e:4c:6e:0a:a4:33:b6:21:ce:a1:5b:77:fc:c2:
21:cb:42:a7:f8:c8:3d:5c:b7:43:27:24:db:a5:c8:
fa:6d:28:94:ca:e2:bf:f6:ed:1e:59:a3:cb:08:c0:
2e:91:0b:28:c7:1d:a2:a2:c4:e7:77:2e:f7:c5:27:
ea:66:f9:29:42:e4:9b:3b:0c:c2:34:83:c7:1e:25:
14:87:07:5d:3b:b7:77:e6:51:88:d4:c2:53:e0:9f:
4d:b3:dc:21:8e:d3:9c:35:06:40:0b:44:d5:78:73:
78:7a:4a:d0:4e:f5:0e:f9:6a:02:0e:68:b8:23:eb:
21:f3:90:a5:15:66:ff:9f:bf:af:59:b1:67:d3:a0:
9e:14:f1:a6:06:b2:8e:89:24:70:2f:70:ab:3c:0a:
2e:ce:e9:47:15:e3:cd:0d:25:6a:cd:6c:17:b0:8e:
c1:a8:93:f9:11:69:55:ce:a7:f4:e1:aa:33:cd:b2:
64:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5C:E7:0C:E3:FB:4E:CA:22:99:84:E7:57:8A:2D:36:AC:7B:DC:FC
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/rFznDOP7TsoimYTnV4otNqx73Pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.39.0/24
Signature Algorithm: sha256WithRSAEncryption
90:fd:7e:a9:34:48:7a:0c:33:31:a7:88:01:86:1f:3d:7e:90:
10:b1:7b:0c:50:6e:ae:09:22:02:13:a4:5e:0d:cc:cc:d6:0c:
ea:7f:b3:e1:8d:57:65:13:4b:ac:d1:5e:58:ed:b9:d8:43:e0:
87:66:36:18:62:d0:dd:d4:b1:83:62:b2:9c:43:30:fc:4d:4d:
9d:98:28:ce:9f:3a:08:98:86:aa:60:0e:4f:39:78:2c:a2:e2:
5a:6a:74:75:b6:11:23:32:48:c5:be:a3:00:70:0d:0b:97:ca:
14:29:c0:6d:4a:63:70:1e:50:c6:52:60:14:a8:70:8f:ab:45:
6e:a9:80:bc:fe:bc:63:08:ba:46:e2:58:2a:8e:88:85:0d:c3:
fa:7c:f4:cd:81:d8:31:33:c6:3a:27:7b:0c:f5:db:10:60:98:
c8:9d:ea:4f:2e:27:fa:f7:4f:6e:6b:ad:98:d3:bd:2d:92:55:
b6:53:c3:0f:88:dc:67:a7:1d:b6:97:1f:be:76:a6:c4:f9:fe:
a2:18:08:96:56:20:ad:c9:7b:9f:bc:da:85:35:39:49:6d:7b:
0a:9c:7c:1b:4b:33:a7:12:eb:ab:a7:78:7b:cd:9b:14:2c:9a:
dd:46:07:9a:2e:9b:b5:d1:9d:ad:2a:ad:77:28:5e:b1:f1:2d:
05:3b:c9:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org