Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/p4ztugWN_oJFPi4ZYYy1oOTMuBE.roa
File: p4ztugWN_oJFPi4ZYYy1oOTMuBE.roa (raw, json)
Hash identifier: wKEzHYMw0fLwSlIDdE5ZcoX0rIjc4+gFSDioeD8MCjE=
Subject key identifier: A7:8C:ED:BA:05:8D:FE:82:45:3E:2E:19:61:8C:B5:A0:E4:CC:B8:11
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 0185701EDD6AD9F2E9F5F8F847DBA30A8D22
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/p4ztugWN_oJFPi4ZYYy1oOTMuBE.roa
Signing time: Mon 02 Jan 2023 01:35:48 +0000
ROA not before: Mon 02 Jan 2023 01:35:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199608
IP address blocks: 31.210.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:dd:6a:d9:f2:e9:f5:f8:f8:47:db:a3:0a:8d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Jan 2 01:35:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a78cedba058dfe82453e2e19618cb5a0e4ccb811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:5c:9e:bc:e4:af:4d:fc:72:be:67:d9:65:be:
8d:76:5d:9e:bd:08:b3:77:cf:d7:59:bd:8f:12:c3:
48:b1:f8:6e:43:95:05:20:d6:e5:80:88:b7:2a:5f:
46:88:a2:05:43:8f:dd:b4:2b:13:2b:56:00:90:44:
1e:90:81:39:7e:e0:cb:8c:75:48:27:5a:53:bf:68:
24:b3:fb:c5:bb:2d:1d:1a:98:8b:34:84:8c:9a:b6:
33:c7:af:95:05:a9:1a:c1:f8:39:12:cc:7c:45:4d:
47:93:e2:d5:35:52:60:cf:b9:38:dc:be:9b:36:1e:
dc:a8:9f:39:41:ea:0b:85:e1:ea:74:e0:dd:f5:dc:
f0:d3:61:f0:4c:62:5f:fb:9b:79:70:be:d0:28:4f:
cb:5c:4f:d1:8e:49:29:85:0b:22:c7:a8:6f:28:91:
af:58:a3:3b:bf:a4:87:72:d5:26:39:d9:83:fc:e8:
02:5d:b6:75:0a:25:5e:1f:32:37:93:2f:40:ad:f3:
ae:08:e8:77:40:04:47:cf:43:07:e4:03:bc:5f:dd:
a3:98:1f:65:55:8c:c1:3e:8d:6f:cc:a8:69:1b:39:
6f:d3:e3:a1:20:35:67:2b:af:e5:57:2c:68:55:d1:
34:0a:b6:e9:cd:de:19:74:1c:15:4a:6d:25:92:c4:
2f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8C:ED:BA:05:8D:FE:82:45:3E:2E:19:61:8C:B5:A0:E4:CC:B8:11
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/p4ztugWN_oJFPi4ZYYy1oOTMuBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.156.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:bf:02:09:bd:dc:d5:95:0a:3d:68:e6:1f:18:b9:6c:5b:58:
1e:41:2a:79:d9:ed:e5:e7:0f:22:bb:12:d4:2c:b8:4b:80:e2:
2a:5e:6d:16:3e:2d:a1:d2:c6:b5:68:c9:8b:8c:a3:bc:31:a1:
f9:72:38:fa:e7:07:57:1f:cd:70:8a:71:96:50:b4:74:3b:59:
9e:4f:92:71:26:72:52:86:f8:9a:e7:91:0d:8b:25:3a:5e:ab:
e9:b7:fe:51:4c:a0:0a:94:cc:bb:fd:cc:9c:1e:85:63:3a:95:
f8:3b:7d:45:1b:14:e9:30:72:13:e8:02:61:8a:68:e9:47:01:
6b:f5:51:2f:70:73:ca:97:fa:7c:bd:55:38:4c:59:d5:50:2a:
f7:b6:c9:74:7e:f8:9e:4a:27:c5:35:c2:8a:a8:1d:cc:f1:b2:
27:32:b6:e3:2b:11:0f:0e:7c:af:63:bc:b1:33:8d:5d:cb:80:
de:b9:9c:3c:c7:ae:e3:89:ce:b7:f2:31:65:b4:18:7a:21:b7:
75:da:6b:24:3c:a5:7e:4d:e5:e8:35:5d:38:fd:bf:a5:c3:cd:
b0:9d:65:c7:cb:dc:88:be:ef:c5:b3:e2:2c:ad:a1:ad:d9:d2:
49:66:f7:a2:d3:15:0c:2e:b3:be:2d:0b:04:a8:ad:77:75:36:
e5:75:09:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 08:05:24 2025 by rpki-client