Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xi3dU4FYa9LhK5rZnEjSnN10zQo.roa
File: xi3dU4FYa9LhK5rZnEjSnN10zQo.roa (raw, json)
Hash identifier: Cs3qRYv1mjQdavCsx/war45o1AcCsKgd0qy7/7VkC+E=
Subject key identifier: C6:2D:DD:53:81:58:6B:D2:E1:2B:9A:D9:9C:48:D2:9C:DD:74:CD:0A
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0425BDEA
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xi3dU4FYa9LhK5rZnEjSnN10zQo.roa
Signing time: Fri 01 Apr 2022 15:01:46 +0000
ROA not before: Fri 01 Apr 2022 15:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208972
IP address blocks: 31.210.37.0/24 maxlen: 32
31.210.38.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69582314 (0x425bdea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 1 15:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c62ddd5381586bd2e12b9ad99c48d29cdd74cd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:c9:c8:63:f3:a9:02:20:b2:38:a1:5d:91:
10:b9:32:09:97:2a:d4:b9:d0:54:05:c5:5d:b8:1a:
e6:68:55:ca:4b:21:56:4c:9a:d5:92:61:36:ef:42:
b7:53:d1:47:3b:df:f4:aa:26:c6:1e:fa:10:ff:32:
57:dd:0c:5c:9d:52:e6:b7:65:02:d5:a7:a4:4b:6a:
89:45:dd:bb:07:70:d7:dd:63:67:32:a5:10:14:c7:
46:ad:65:af:c9:dd:8b:59:18:0a:bc:f6:0c:ff:32:
07:ef:2d:cf:a8:99:0c:4c:f1:fb:87:be:1a:c8:f7:
af:7c:27:ff:66:f3:e3:27:fc:77:36:17:63:42:82:
a1:1c:03:d3:40:70:90:f7:8c:ce:68:4c:94:23:22:
be:34:c8:01:e2:4f:8f:da:67:15:11:d3:f5:27:96:
75:0e:05:23:c4:36:da:3b:da:b5:d4:35:3a:11:be:
25:ef:f3:e4:4a:46:5e:b4:f8:d4:b3:01:ca:62:9d:
0a:8f:a9:0f:09:08:f2:c5:58:81:bd:a2:eb:2f:79:
da:07:7c:0b:b2:d1:22:7e:26:47:9b:21:93:30:bd:
11:3c:91:6a:3b:18:a2:44:b4:9b:c8:d0:b2:c7:d1:
c3:81:fe:26:26:55:38:83:e1:03:f7:06:30:aa:9d:
c6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2D:DD:53:81:58:6B:D2:E1:2B:9A:D9:9C:48:D2:9C:DD:74:CD:0A
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xi3dU4FYa9LhK5rZnEjSnN10zQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.37.0-31.210.38.255
Signature Algorithm: sha256WithRSAEncryption
8b:05:5c:b3:29:35:68:6d:f5:3f:02:8d:98:31:3b:dd:b5:2e:
4b:37:a9:4e:cf:72:4a:41:f8:8e:c1:36:fd:11:69:9d:d7:cf:
04:cc:fd:f4:32:12:7b:20:99:2a:23:74:d3:0b:34:a3:c3:7a:
4a:f9:24:ab:cc:e0:48:07:e4:c0:bc:d0:be:db:f2:26:d6:b3:
df:b8:ad:77:77:a6:a5:0d:02:0e:f2:68:f6:ee:0e:2c:e4:33:
46:4c:d5:ee:f3:5f:0a:a3:68:85:36:51:bc:01:96:c4:a1:21:
73:99:b8:8a:18:f3:48:47:07:91:72:62:c6:91:41:62:1a:a3:
7d:59:5c:c2:49:b8:12:b3:02:4a:05:fa:07:89:f1:96:68:1d:
6e:d5:f9:18:a1:ba:d8:33:9c:18:c1:c4:d7:fd:e9:05:b6:73:
05:7a:35:7c:12:47:11:6c:8d:b5:8a:02:8e:74:f2:8d:61:29:
cc:0a:92:80:88:46:9f:26:9d:65:2b:69:88:e5:5d:84:09:eb:
4d:40:27:8c:e7:ac:3c:8e:ff:ee:ee:7b:78:95:a9:d6:6f:2b:
75:89:19:19:14:68:cb:28:0f:a5:61:87:b8:51:3a:d3:0b:83:
c5:3c:79:7e:be:fb:6d:a2:c0:4b:71:9e:18:55:d1:e7:cc:da:
4f:17:3e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org