Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/B8bWf1sIUNpmjW4aFQLAUcdcsqc.roa
File: B8bWf1sIUNpmjW4aFQLAUcdcsqc.roa (raw, json)
Hash identifier: N7yQBBoO6GbvpgkQjgAvYRsiQTEpaQXKrpiirOcBLy8=
Subject key identifier: 07:C6:D6:7F:5B:08:50:DA:66:8D:6E:1A:15:02:C0:51:C7:5C:B2:A7
Certificate issuer: /CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Certificate serial: CF2FC0
Authority key identifier: 7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/B8bWf1sIUNpmjW4aFQLAUcdcsqc.roa
Signing time: Sat 01 Jan 2022 12:04:42 +0000
ROA not before: Sat 01 Jan 2022 12:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 31.222.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13578176 (0xcf2fc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b0a9ea086d81eed4d29de463d6029088fe3bec1
Validity
Not Before: Jan 1 12:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07c6d67f5b0850da668d6e1a1502c051c75cb2a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:81:08:b4:21:cb:c8:d7:bb:ce:cb:9a:73:1a:
6d:73:2c:39:05:62:08:7b:ac:14:46:c9:18:89:9d:
16:2b:45:50:cd:ca:f6:03:ba:7c:b1:e2:bf:a2:9a:
3d:6a:b9:ea:ad:46:f5:c2:69:c8:f4:08:c9:fc:f4:
b8:81:f6:98:d3:8b:0c:9f:2c:47:23:ba:2e:8c:a4:
7e:94:5b:90:92:62:85:8f:4a:3a:62:ef:47:e2:ce:
0f:91:71:24:b0:cc:99:2c:e0:7a:23:4d:c6:87:6b:
76:00:9b:0f:2e:77:3b:b5:99:ef:94:a9:45:2c:04:
8c:02:e2:70:52:70:2c:db:8a:68:3c:d0:6c:bb:bc:
7a:58:18:8a:b1:3f:de:fe:e6:b5:5a:67:6f:0c:01:
b4:cd:aa:4c:d8:e6:3d:14:0d:f4:9e:b3:05:66:99:
18:cf:bc:e8:46:8a:b0:c2:f1:34:f5:e9:8e:97:f4:
18:bf:29:51:85:ed:fb:90:8a:e3:49:b2:52:85:c2:
e4:94:65:b0:39:14:73:c8:8c:6e:28:89:0a:8c:e7:
99:77:82:91:e1:f9:98:3a:5e:52:fb:c8:f2:52:4e:
af:35:eb:3e:7e:29:ea:75:d8:2b:21:5a:d1:77:6e:
74:33:2b:ae:01:66:3e:21:19:71:6b:30:e5:74:e7:
1c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C6:D6:7F:5B:08:50:DA:66:8D:6E:1A:15:02:C0:51:C7:5C:B2:A7
X509v3 Authority Key Identifier:
keyid:7B:0A:9E:A0:86:D8:1E:ED:4D:29:DE:46:3D:60:29:08:8F:E3:BE:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewqeoIbYHu1NKd5GPWApCI_jvsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/B8bWf1sIUNpmjW4aFQLAUcdcsqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4b97c4-de0c-45d7-8f17-5d0ae14563d7/1/ewqeoIbYHu1NKd5GPWApCI_jvsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.228.0/24
Signature Algorithm: sha256WithRSAEncryption
76:92:09:4f:57:e7:a8:b1:bf:45:42:2f:81:46:71:cb:00:43:
5b:b6:6d:0e:2e:2d:9c:b4:1f:82:3f:27:02:cf:c7:e0:3e:60:
ec:13:d1:c0:74:d4:ae:52:7f:18:95:b2:99:3b:62:dd:a9:10:
ea:72:3d:ae:a7:09:70:5b:ac:f5:65:4f:15:be:22:66:e8:a2:
27:6f:1e:2b:13:1a:7b:1e:4c:f7:ec:de:f3:5f:5e:0c:58:9b:
b9:43:4a:6d:b0:a1:37:6a:76:1b:df:e9:8c:5a:a0:6d:3a:22:
5f:e0:12:04:01:d7:e8:b2:ed:bf:3f:d0:6d:b8:b5:bc:69:d8:
04:a0:93:92:7c:27:4d:ce:70:df:38:67:f7:58:94:8a:82:64:
c3:18:08:a3:5b:82:b2:eb:f6:86:ff:22:07:fe:63:c3:5c:12:
aa:65:b2:ed:76:79:53:79:b9:78:cd:35:fa:f8:eb:64:ab:95:
98:b5:02:d8:f3:64:c7:72:a1:cd:ed:c7:25:cd:4e:9a:4f:1e:
ca:33:2b:da:35:bb:a9:8c:4e:37:07:22:af:fa:f9:b4:2f:a7:
ba:02:f5:e8:84:11:bd:d0:67:59:d6:86:e1:85:27:5b:2b:5a:
2a:4a:f1:99:f0:2e:00:83:89:36:a2:b5:26:80:9c:aa:29:f1:
9d:01:82:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org