Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/gfntVpYlICj99Xc7Ep9JVIMfaSg.roa
File: gfntVpYlICj99Xc7Ep9JVIMfaSg.roa (raw, json)
Hash identifier: zxlzyMpU3XIWsbGoS7kbJrYVl0MAJgAvar4cS+NcEa0=
Subject key identifier: 81:F9:ED:56:96:25:20:28:FD:F5:77:3B:12:9F:49:54:83:1F:69:28
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D66893
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/gfntVpYlICj99Xc7Ep9JVIMfaSg.roa
Signing time: Sat 01 Jan 2022 13:04:02 +0000
ROA not before: Sat 01 Jan 2022 13:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51621
IP address blocks: 185.71.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64383123 (0x3d66893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81f9ed5696252028fdf5773b129f4954831f6928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:78:c6:32:ec:16:06:c5:e5:06:bc:4f:e1:
13:44:16:26:e4:0a:ab:5c:6a:29:d7:53:04:51:6f:
4a:d6:c7:d0:8d:05:98:1d:88:66:e0:b0:53:88:69:
3f:d6:c9:32:d2:d5:95:de:56:c2:39:7d:80:a2:28:
da:13:47:9d:c3:5d:26:68:c8:77:30:40:0d:f9:9a:
ee:96:6f:b6:32:eb:1d:15:21:12:b3:38:d7:83:c3:
ad:ec:40:b8:15:e1:e5:73:00:5d:0c:a3:9a:a7:44:
c2:61:8e:e2:73:f0:f6:7d:56:6b:51:92:a6:42:9b:
df:cd:75:c0:54:e1:81:b2:83:4f:7b:29:e5:19:e5:
d3:6d:0b:ca:3f:9b:53:65:e0:0b:1f:1f:aa:0e:a6:
da:75:ab:7c:dc:63:01:1a:1d:52:d8:f7:8e:c6:be:
ab:b6:ce:5c:a2:c6:dd:13:44:63:63:b7:b2:45:fc:
3d:3a:81:db:2c:16:ca:92:67:a7:57:01:6b:25:06:
14:fb:e2:55:11:c8:49:c9:21:d3:c6:26:ae:f5:83:
20:71:c5:27:65:bc:fd:1d:3a:b8:7a:1d:d9:54:02:
92:62:ba:8a:5d:68:a2:72:ff:59:51:da:1a:37:46:
e3:ae:35:6b:d8:71:6f:99:a1:c5:37:52:dd:e7:a5:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F9:ED:56:96:25:20:28:FD:F5:77:3B:12:9F:49:54:83:1F:69:28
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/gfntVpYlICj99Xc7Ep9JVIMfaSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.31.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c0:06:6a:dc:bf:97:45:94:9e:6e:7d:e7:d9:ce:3f:b7:26:
35:08:6a:45:00:22:73:90:13:d7:28:22:ca:c0:11:80:32:8a:
56:94:8a:73:4c:71:d1:a0:ac:0c:5c:2f:69:89:92:d7:be:0c:
a8:5d:e3:09:07:11:45:b1:1b:e1:11:fa:2c:1d:02:6a:21:3b:
6d:9c:7d:f4:1e:f6:8c:67:b2:c6:aa:4f:3b:b1:73:22:d2:41:
73:d9:dc:2c:0f:fd:bd:79:29:72:22:a9:08:3e:9c:7e:01:f4:
a0:0c:7b:6d:6b:bf:50:f4:1f:e7:41:17:a2:d4:98:79:76:90:
6e:82:3d:22:04:6e:19:0b:00:cf:30:57:f0:ac:7a:b8:83:50:
46:02:39:d3:a0:10:77:df:e4:41:f7:91:9e:3e:40:be:09:ee:
a3:e8:c8:1d:02:13:00:a3:32:b3:63:2f:a5:c7:62:cd:4d:7a:
3f:09:b2:36:eb:87:99:5e:0c:66:15:d7:2a:0c:4a:e0:d6:07:
a2:b5:43:25:b2:d5:5c:56:d1:5d:a3:92:9e:e9:5d:b2:f2:13:
e9:c8:63:0c:65:4b:db:2a:3e:8d:fa:3d:fc:6e:ad:f4:bd:8c:
2d:99:19:f3:3a:61:86:32:85:57:9a:ee:b4:f8:44:01:fa:fe:
2f:12:7e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:35 2024 by rpki-client on console-ams.rpki-client.org