Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Fy0P2bHizdmV1cAawMevoLUtAAg.roa
File: Fy0P2bHizdmV1cAawMevoLUtAAg.roa (raw, json)
Hash identifier: 9vLB4dm+yjxNgGh74yeWp956eqsNFI9oB0xNt0LwGPI=
Subject key identifier: 17:2D:0F:D9:B1:E2:CD:D9:95:D5:C0:1A:C0:C7:AF:A0:B5:2D:00:08
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 283C2620
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Fy0P2bHizdmV1cAawMevoLUtAAg.roa
Signing time: Sat 01 Jan 2022 16:09:53 +0000
ROA not before: Sat 01 Jan 2022 16:09:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207228
IP address blocks: 31.148.48.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 675030560 (0x283c2620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172d0fd9b1e2cdd995d5c01ac0c7afa0b52d0008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:67:6a:d8:0f:f6:47:fb:23:1a:a2:4a:b8:b2:
ac:50:f6:13:b5:24:35:bc:7e:34:9f:8e:d5:85:b9:
16:c0:ab:32:dc:d0:72:86:77:e1:6f:f2:e5:0e:a2:
3d:2f:30:99:8f:54:f5:a0:7e:af:16:d6:c9:91:90:
e9:86:2b:18:14:a2:1f:e3:80:ad:b1:41:35:3b:b1:
e6:09:a5:5c:97:8e:de:a0:8f:e3:fd:33:e4:8a:75:
59:d9:41:8d:10:b1:87:b2:5b:77:11:81:e7:61:6b:
fc:82:47:f1:4c:2f:a1:12:64:77:3d:47:67:ed:3d:
11:27:67:08:4b:28:e0:24:82:20:63:05:73:13:fd:
cd:4b:80:fd:05:b9:67:35:b8:97:41:96:c5:dc:31:
15:ec:5a:e9:7c:e6:f3:82:bd:ff:5b:11:3a:1a:86:
19:08:86:6a:31:b5:5e:b9:5f:72:03:f1:ed:ce:c1:
16:ca:26:b7:bb:4a:68:b9:2c:45:4c:02:de:b8:27:
59:fb:13:35:33:0a:de:6b:78:bb:02:d5:34:5c:91:
e3:2f:52:6c:4e:8e:f0:32:6e:1f:1d:13:66:92:80:
f1:38:95:89:54:7c:d3:d3:60:2b:5f:29:09:fb:55:
7a:d8:b5:e0:52:60:47:da:96:d3:f0:e1:38:02:1f:
63:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2D:0F:D9:B1:E2:CD:D9:95:D5:C0:1A:C0:C7:AF:A0:B5:2D:00:08
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Fy0P2bHizdmV1cAawMevoLUtAAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.48.0/23
Signature Algorithm: sha256WithRSAEncryption
60:37:98:ad:6b:c7:d9:a4:14:c5:89:47:20:e9:2b:d2:10:b8:
5a:6a:7f:89:d4:03:36:32:33:d9:0a:00:c3:26:90:49:cb:1e:
09:02:e1:9e:4e:14:6d:d2:c8:d1:a8:5d:96:e8:b7:ff:51:c5:
91:02:d7:ad:30:27:5b:65:2c:39:f7:eb:51:24:94:b5:2f:10:
c7:67:77:90:0e:e0:8a:6c:51:de:5f:5a:62:75:97:22:c7:ac:
5c:78:1a:31:f7:e6:6b:aa:bc:de:42:a8:fd:b0:cf:49:74:76:
9a:2e:38:1b:79:51:84:ee:92:00:97:73:c1:17:f9:ae:43:1f:
79:a2:a0:97:dc:28:89:ab:e6:79:b7:7c:ea:86:c1:3a:b6:03:
21:8e:94:46:66:26:7c:e0:92:e2:cb:b8:af:09:a6:ec:da:2a:
a1:dd:66:a5:8f:d0:0d:47:2b:2c:95:6b:e2:df:bc:98:05:9c:
2c:d2:bc:34:12:39:d8:ed:8d:59:da:df:5a:33:b1:ed:58:ac:
e6:0f:88:31:1e:f8:ac:96:8e:db:93:0a:56:d8:db:c3:60:4b:
db:2b:62:69:4f:66:d0:25:60:50:45:6a:74:43:27:6c:80:45:
47:39:5d:00:8f:78:39:1c:ec:16:2c:5c:51:01:de:74:d8:ff:
76:10:ed:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:39:13 2025 by rpki-client