Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/uRnmRv4A-2CNbm8pVsFDoNP5_5U.roa
File: uRnmRv4A-2CNbm8pVsFDoNP5_5U.roa (raw, json)
Hash identifier: ZUrnUY1rdaSKODELK8SFlr0KTUvgiXIvoIbdTNCpJ2U=
Subject key identifier: B9:19:E6:46:FE:00:FB:60:8D:6E:6F:29:56:C1:43:A0:D3:F9:FF:95
Certificate issuer: /CN=73ff5366be0050d3dbee36f20e540065ca6a8e51
Certificate serial: D2F7CA
Authority key identifier: 73:FF:53:66:BE:00:50:D3:DB:EE:36:F2:0E:54:00:65:CA:6A:8E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_9TZr4AUNPb7jbyDlQAZcpqjlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/uRnmRv4A-2CNbm8pVsFDoNP5_5U.roa
Signing time: Sat 01 Jan 2022 13:01:21 +0000
ROA not before: Sat 01 Jan 2022 13:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 31.222.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13825994 (0xd2f7ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ff5366be0050d3dbee36f20e540065ca6a8e51
Validity
Not Before: Jan 1 13:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b919e646fe00fb608d6e6f2956c143a0d3f9ff95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:28:a2:1d:e9:cb:43:c9:14:c5:bd:a7:6b:1c:
0a:d8:23:7b:64:5b:02:e9:3e:c2:ba:8b:63:00:f4:
9e:a8:10:37:80:55:c8:99:f5:94:4c:48:bd:c6:80:
a8:31:de:2f:df:8b:bc:6d:2d:45:cf:ec:af:eb:a2:
b1:a4:69:e5:10:a7:72:83:e9:c8:8e:b5:1e:28:42:
e4:cb:89:49:08:36:df:5b:e8:44:8e:a1:fb:79:b7:
16:ff:85:53:fa:39:fd:97:dc:39:ae:b2:f2:d3:ea:
dc:a7:04:df:cc:87:cd:80:96:8b:82:dd:96:dc:d2:
d9:e3:a3:ea:6b:51:12:d3:5f:af:8b:cd:31:66:5c:
af:e9:19:8b:c1:03:74:79:4f:54:25:5e:c0:bc:74:
13:07:fc:fc:6f:7f:09:e9:86:23:b8:54:20:7c:19:
03:d8:56:3d:9c:04:72:f1:08:cd:de:52:40:22:12:
2d:00:47:7c:a1:be:e8:a6:10:23:e4:f9:56:0a:8f:
75:c8:30:f7:72:56:c0:a0:a7:36:27:bf:f0:4c:e9:
10:a1:68:65:4b:8f:31:3c:df:ee:a2:22:27:ee:12:
7d:1a:79:5c:44:5a:bb:95:81:a7:28:3c:be:73:58:
a2:6a:ac:5c:3a:e8:6c:85:fb:ea:a2:a2:b5:5a:a9:
c5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:19:E6:46:FE:00:FB:60:8D:6E:6F:29:56:C1:43:A0:D3:F9:FF:95
X509v3 Authority Key Identifier:
keyid:73:FF:53:66:BE:00:50:D3:DB:EE:36:F2:0E:54:00:65:CA:6A:8E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_9TZr4AUNPb7jbyDlQAZcpqjlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/uRnmRv4A-2CNbm8pVsFDoNP5_5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/ed6589-272c-4120-9adc-ee8ae6638f12/1/c_9TZr4AUNPb7jbyDlQAZcpqjlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.230.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:72:6d:92:b0:fd:df:1c:7f:b6:03:f0:c1:85:10:12:19:c7:
70:62:cd:1d:c4:3e:b5:30:69:9f:66:03:75:6a:77:40:69:8d:
39:0c:65:c7:f5:3e:c6:70:67:7b:65:8c:c8:37:1f:c2:4e:91:
aa:50:be:04:2c:29:65:6f:bf:41:61:d6:90:ed:27:f9:87:16:
9c:f4:59:dc:eb:90:55:37:08:49:4e:93:10:b1:11:08:6e:94:
4d:7c:46:67:4f:74:bb:75:ae:f4:e9:7b:f8:d7:79:ef:61:5e:
46:41:9b:25:d9:a5:a3:39:77:eb:24:2a:f1:8e:be:42:b9:18:
9e:e4:66:6d:4f:42:33:5c:29:7c:18:6b:a0:f7:f4:bc:3b:67:
56:17:2e:4a:cd:d4:c7:cb:03:3c:e5:67:70:cb:f5:c6:1c:d8:
e2:9b:2c:86:e5:84:8d:86:c8:7b:6b:a0:6c:fb:a9:46:6e:17:
af:96:85:11:2a:a0:6d:47:7f:40:c8:55:5e:25:63:12:82:b9:
13:95:89:6b:6e:f5:f4:15:b6:c4:a2:b2:f1:ac:ff:62:b4:40:
ec:31:f7:5a:8b:e2:72:c0:a5:0e:82:39:45:23:f5:06:c2:e3:
81:4c:96:e1:50:3a:21:d7:90:76:81:40:d1:57:c6:f9:ba:a8:
a9:dd:6f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:57 2023 by rpki-client on console-fra.rpki-client.org