Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iIXr_gv6kcxZ7nU249XgnO9ZW1A.roa
File: iIXr_gv6kcxZ7nU249XgnO9ZW1A.roa (raw, json)
Hash identifier: EpV4qM72+/jW6hAx5upt+0D/j1nAdtFuvdwGEVXkamE=
Subject key identifier: 88:85:EB:FE:0B:FA:91:CC:59:EE:75:36:E3:D5:E0:9C:EF:59:5B:50
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2798EE79
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iIXr_gv6kcxZ7nU249XgnO9ZW1A.roa
Signing time: Sat 01 Jan 2022 16:08:23 +0000
ROA not before: Sat 01 Jan 2022 16:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44975
IP address blocks: 31.148.1.0/24 maxlen: 24
31.148.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664333945 (0x2798ee79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8885ebfe0bfa91cc59ee7536e3d5e09cef595b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:36:04:84:da:75:65:6a:e4:3e:b6:00:6a:4e:
a6:5e:6b:b9:2b:ac:1f:49:1a:81:6e:55:d2:0d:4c:
6c:d6:ad:26:75:8f:ab:33:4b:f8:96:51:7b:e0:15:
a2:03:4a:72:39:81:b2:fb:e9:9c:ba:65:96:a9:75:
90:ce:6a:b1:31:b1:9e:1b:60:12:4d:49:56:f5:f1:
83:96:fa:9b:93:ea:59:9f:93:6b:98:bc:4c:0d:ae:
e6:75:49:b4:0c:cb:f6:d2:42:74:cf:a9:5e:58:db:
16:8f:87:43:85:40:d5:93:06:f4:43:24:f8:48:c7:
20:6c:18:f5:d0:4a:2b:69:06:59:fa:c8:e0:34:c9:
6a:13:d3:53:9d:d9:f0:e4:9a:5e:b6:5b:8f:c7:24:
e1:d6:df:ee:64:60:6f:5e:2f:73:30:83:e0:b4:3f:
bb:59:ff:5f:dc:34:4c:85:92:5b:f0:87:be:20:e1:
e4:39:44:85:c5:66:54:76:6f:77:f0:25:24:75:4a:
6b:2d:f5:65:6f:5c:f9:f0:8b:e5:e0:57:8e:41:24:
15:63:2d:6e:ae:e1:ec:e6:be:97:ed:cb:38:02:72:
20:21:8b:be:63:af:2b:c7:15:f9:27:55:59:27:94:
5d:d7:13:45:aa:3c:82:3c:89:cf:1a:2d:1b:94:3b:
fc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:85:EB:FE:0B:FA:91:CC:59:EE:75:36:E3:D5:E0:9C:EF:59:5B:50
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/iIXr_gv6kcxZ7nU249XgnO9ZW1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.1.0/24
31.148.204.0/24
Signature Algorithm: sha256WithRSAEncryption
22:40:98:16:8f:5f:de:ad:85:bf:83:50:7f:d8:98:1b:70:f8:
ad:0d:ea:04:96:f2:e1:19:85:e2:97:e4:ab:01:7c:d0:5a:ef:
1e:37:44:51:cd:4d:b8:2b:f8:f0:2d:38:6d:cf:9f:c9:cb:e0:
8c:a7:38:86:0f:54:6a:74:a0:3a:15:08:98:79:0e:4d:e5:bb:
20:e8:c2:18:52:57:d1:13:eb:63:7f:59:f6:55:26:66:3e:b0:
78:9a:e8:47:0d:ed:15:84:83:fb:ef:1d:e7:98:f3:70:e2:41:
e3:6f:11:38:30:bc:63:4f:64:d8:05:79:fc:45:af:6a:60:4b:
98:f6:cf:cd:9c:2e:97:39:fa:d2:d7:57:00:bc:93:db:a6:e0:
ab:cb:35:d5:15:ef:ff:f2:16:32:bb:64:30:30:ab:98:9f:25:
8e:20:b7:d7:26:b1:01:3d:c5:57:a2:a9:78:93:72:51:04:9f:
57:57:02:e8:04:41:0a:c8:40:29:8b:b4:50:da:c1:d2:a5:a1:
81:6c:11:62:7a:be:01:be:d3:df:1a:bf:b5:b6:be:ca:32:91:
c6:ce:0f:f4:a2:8b:cc:2e:5b:6e:6a:ff:f7:06:5d:5c:1e:19:
98:87:82:1b:49:bc:13:b2:2f:38:b2:61:f5:00:6c:27:d5:8c:
f1:c4:81:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org