Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/5cmStQP5wQtkNLU9HTv1Q0z4vHU.roa
File: 5cmStQP5wQtkNLU9HTv1Q0z4vHU.roa (raw, json)
Hash identifier: L/IZ5lRG1tj/kuKDoF48EaXFG7acaXq3uQr/CGuW3Os=
Subject key identifier: E5:C9:92:B5:03:F9:C1:0B:64:34:B5:3D:1D:3B:F5:43:4C:F8:BC:75
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: D037A5
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/5cmStQP5wQtkNLU9HTv1Q0z4vHU.roa
Signing time: Sat 01 Jan 2022 12:04:43 +0000
ROA not before: Sat 01 Jan 2022 12:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13645733 (0xd037a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jan 1 12:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5c992b503f9c10b6434b53d1d3bf5434cf8bc75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9f:16:8e:f9:af:05:7e:84:19:8c:f0:73:a3:
46:9a:97:77:fc:93:e5:a4:e9:5e:38:25:02:d8:31:
22:51:59:94:52:18:74:5a:82:e3:36:3b:13:2e:e0:
b3:05:9d:3d:e9:88:12:8a:74:0b:92:58:9a:d1:06:
8e:a4:23:3b:16:c2:3e:b1:02:4c:df:d4:45:e1:41:
fa:f6:41:ce:eb:7a:75:b3:bf:e5:0c:de:20:9f:a8:
80:c4:37:e9:ef:4b:a5:4c:5f:2a:3c:7c:20:1c:50:
2b:e4:e0:bf:20:a2:2b:39:9f:47:e1:90:dc:f9:0f:
5e:f4:46:5b:13:b0:ac:62:99:d8:c4:6c:d8:37:00:
d1:ae:fc:7c:ab:28:4f:6f:58:65:0d:a5:82:df:b7:
d0:d6:1f:98:2a:5a:ed:95:34:8c:97:dc:a2:6b:bc:
22:a3:42:db:ad:ba:86:f9:48:aa:c3:7c:9b:52:ea:
f3:80:74:64:c1:69:23:0f:ec:c0:78:68:07:bd:ce:
0a:34:2a:d7:3d:98:02:56:96:e9:28:3c:ba:af:0d:
b2:d1:03:b1:fe:7a:15:d6:de:88:3b:7e:fa:5f:fe:
8b:74:1f:b1:7d:1e:aa:eb:9e:53:01:0d:62:dc:a2:
64:3d:e7:c6:b5:df:09:41:ef:50:6a:83:fa:a4:40:
c3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C9:92:B5:03:F9:C1:0B:64:34:B5:3D:1D:3B:F5:43:4C:F8:BC:75
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/5cmStQP5wQtkNLU9HTv1Q0z4vHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c0:78:6a:3f:ba:3f:66:9e:c2:72:5e:7a:67:bb:b2:9a:31:
f6:26:d7:04:9f:29:09:98:48:3a:c6:a7:7b:61:cf:e7:80:ad:
7c:f5:bc:4e:e5:6c:c8:ba:0f:52:a3:e1:56:cb:dd:74:36:de:
36:b3:3e:56:cd:59:1c:37:da:da:e0:ee:73:a8:f7:ba:4f:de:
42:37:73:98:07:84:16:f9:58:a5:ce:7a:82:4f:f6:de:33:04:
7d:b7:cd:0a:97:de:94:2c:3d:fa:ea:f5:d3:32:df:5f:6c:9f:
1c:2e:e5:74:46:5e:b0:26:49:70:82:98:34:4a:df:36:ef:96:
58:b0:a4:7a:66:25:db:01:f1:f0:a9:77:ba:ef:45:b2:7f:b1:
24:2b:db:1b:b3:61:32:7c:32:7a:62:f0:5c:7c:3d:db:a5:5a:
c0:30:a1:c8:57:e3:0e:1e:d2:3a:d5:8b:8a:1c:25:9d:ea:69:
60:d4:77:16:a7:61:6b:2f:02:77:6b:46:af:c0:6a:0f:61:85:
a2:b6:6a:b2:89:58:24:2a:c3:90:33:22:35:f8:70:42:1b:06:
b6:ae:fb:3e:85:07:45:f6:4e:93:55:2c:ff:11:3d:97:6a:d8:
be:51:2c:6e:16:ec:75:70:5b:04:84:f0:d0:44:64:a9:35:33:
3a:5b:e9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:32 2023 by rpki-client on console-ams.rpki-client.org