Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/e4e89f-0aad-4707-865a-40012c82979b/1/GZ8quQq94Y_u-9Myj8qi25p4gAs.roa
File: GZ8quQq94Y_u-9Myj8qi25p4gAs.roa (raw, json)
Hash identifier: 5JXjTxmdlQrYzMhD8YXV3z5QvueATX9jWcHAMDvldq4=
Subject key identifier: 19:9F:2A:B9:0A:BD:E1:8F:EE:FB:D3:32:8F:CA:A2:DB:9A:78:80:0B
Certificate issuer: /CN=32ee1bcd8ce393d98a7583ac13f1425d4faf27c9
Certificate serial: 05E20558
Authority key identifier: 32:EE:1B:CD:8C:E3:93:D9:8A:75:83:AC:13:F1:42:5D:4F:AF:27:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mu4bzYzjk9mKdYOsE_FCXU-vJ8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/e4e89f-0aad-4707-865a-40012c82979b/1/GZ8quQq94Y_u-9Myj8qi25p4gAs.roa
Signing time: Mon 10 Jan 2022 11:16:10 +0000
ROA not before: Mon 10 Jan 2022 11:16:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 31.171.211.0/24 maxlen: 24
31.171.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98698584 (0x5e20558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32ee1bcd8ce393d98a7583ac13f1425d4faf27c9
Validity
Not Before: Jan 10 11:16:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=199f2ab90abde18feefbd3328fcaa2db9a78800b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:fb:6b:05:97:9f:cf:60:66:63:c4:45:49:
68:b3:0c:4c:36:c1:e1:c2:4f:6e:26:7f:22:72:01:
7e:72:67:09:23:1a:bf:15:cc:2a:57:2f:42:24:30:
84:be:e3:f3:99:aa:3d:a4:c9:e5:aa:ce:36:de:2a:
ce:3d:36:e8:14:1c:9d:38:9b:d4:e9:ec:17:b5:70:
fc:d0:46:bb:5b:df:b7:2d:26:39:d4:c6:cf:cf:91:
cd:d2:d1:dd:fb:18:f6:b9:3d:10:9b:4e:78:46:06:
bd:17:60:8b:d3:5f:11:97:54:9c:d7:e2:84:de:db:
e1:a7:5c:f2:6a:78:9c:b9:9b:30:a0:c3:21:20:ab:
b6:b1:2f:6e:e8:fc:91:ee:57:13:b7:05:08:62:fa:
11:80:fe:42:e2:82:cf:7d:8b:e6:15:a7:65:b3:9a:
3a:2a:31:69:2b:35:e6:5c:5c:ce:b0:49:3b:cf:c4:
25:94:78:8b:fc:c6:57:6f:13:2f:60:a1:75:e7:2c:
c1:57:b0:14:74:5f:e9:09:f2:f6:fd:30:ba:a8:40:
41:84:44:25:ac:06:b2:bc:80:70:d9:9d:45:0e:61:
64:db:06:19:b3:e6:ec:b2:26:dd:0d:03:66:16:31:
b2:bf:9b:72:97:a2:d9:d2:dd:e6:b0:69:ea:ac:1d:
94:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9F:2A:B9:0A:BD:E1:8F:EE:FB:D3:32:8F:CA:A2:DB:9A:78:80:0B
X509v3 Authority Key Identifier:
keyid:32:EE:1B:CD:8C:E3:93:D9:8A:75:83:AC:13:F1:42:5D:4F:AF:27:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mu4bzYzjk9mKdYOsE_FCXU-vJ8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e4e89f-0aad-4707-865a-40012c82979b/1/GZ8quQq94Y_u-9Myj8qi25p4gAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/e4e89f-0aad-4707-865a-40012c82979b/1/Mu4bzYzjk9mKdYOsE_FCXU-vJ8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.211.0-31.171.212.255
Signature Algorithm: sha256WithRSAEncryption
03:44:7a:e7:74:ed:33:fe:f4:53:39:19:da:0e:44:e3:68:21:
98:43:da:b2:af:9b:44:6b:9b:3e:d2:a7:4b:48:a6:16:7f:fc:
6b:a7:e5:6c:16:37:a7:28:87:b2:86:35:57:36:e7:9d:fc:b2:
5e:fb:8b:3e:f6:2f:80:3d:c1:4e:ad:12:91:0f:cf:5c:3f:e9:
8c:2d:87:37:49:fc:9e:7d:71:ce:e4:67:4f:8c:f7:7e:b6:5c:
f0:fa:6b:f0:fd:63:db:d6:78:cb:e5:13:94:f0:62:fc:6a:d9:
f4:66:e4:cf:59:21:3b:1d:d1:19:97:ea:34:22:96:f1:22:f0:
ed:5d:f5:04:b8:7d:84:55:ca:d2:ee:10:de:fa:13:71:80:0a:
60:b8:39:d4:fd:2c:8b:d9:2f:26:86:a6:a6:df:33:47:0b:96:
d3:f6:69:e4:2c:ec:bd:a5:c9:aa:53:38:38:95:58:de:8b:c1:
ba:50:c7:5a:30:88:e5:fe:a0:84:9d:37:d4:c7:aa:e4:f3:89:
a8:87:03:dd:5d:d1:41:1c:d8:03:b0:a3:68:f6:5a:36:3b:99:
d0:04:ea:5c:54:fd:e8:9a:6a:18:e1:e9:24:0e:cc:5c:36:71:
1c:4b:a4:3e:58:92:18:fa:de:a9:60:fe:3a:46:1c:f9:3e:26:
e6:bc:db:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:06 2023 by rpki-client on console-ams.rpki-client.org