Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7BcrDMAna9HZqedYf3hr50J2cVI.roa
File: 7BcrDMAna9HZqedYf3hr50J2cVI.roa (raw, json)
Hash identifier: 7OSPXzT/I8kE8k9fwbhcsjWK8ANSefgIsZx6KNi7eCU=
Subject key identifier: EC:17:2B:0C:C0:27:6B:D1:D9:A9:E7:58:7F:78:6B:E7:42:76:71:52
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0184E1D737D6DAD3CE3840C4DAB9D03172DD
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7BcrDMAna9HZqedYf3hr50J2cVI.roa
Signing time: Mon 05 Dec 2022 10:31:28 +0000
ROA not before: Mon 05 Dec 2022 10:31:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 31.133.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:d7:37:d6:da:d3:ce:38:40:c4:da:b9:d0:31:72:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Dec 5 10:31:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec172b0cc0276bd1d9a9e7587f786be742767152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:7a:d7:c2:da:d4:f9:ca:8e:3d:b0:b8:c5:
dd:c8:95:63:bf:6d:ab:b9:5e:c6:08:3b:b2:72:6c:
ef:31:08:71:3b:40:e0:49:47:72:b6:4f:27:62:f0:
46:05:df:3f:1c:69:a8:4c:b5:0f:10:81:a0:bb:50:
f3:59:bb:f6:a1:fc:50:2a:eb:9d:d1:26:9a:61:b0:
9a:47:07:37:91:35:37:e4:81:ba:a3:15:36:7f:aa:
e5:ce:53:df:ae:4a:2b:cd:1c:aa:37:d7:f0:1f:81:
81:af:19:65:fe:2b:d7:fd:53:01:91:c1:46:81:4d:
df:4b:2e:c3:1c:65:f6:14:54:32:b3:46:49:9f:f1:
3d:58:65:92:ed:4c:3a:d4:1f:ae:34:c4:2c:48:1b:
da:85:1b:2e:82:e4:c7:9a:5d:f3:be:06:47:dc:d9:
0c:7b:d9:e9:81:b0:d6:b4:a4:94:5d:a7:e1:8e:4f:
7c:46:3a:56:ab:db:d4:c2:e5:41:16:c9:30:1d:2a:
a3:85:b3:dd:38:b0:0a:15:89:cc:49:5b:03:33:04:
cf:f3:18:c7:99:0b:d4:04:9e:96:c3:7a:36:a6:71:
9f:ab:23:df:80:99:50:90:dc:b0:1b:ae:a4:b8:8d:
81:19:69:99:33:6e:e5:ce:b0:1d:74:0f:48:c4:33:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:17:2B:0C:C0:27:6B:D1:D9:A9:E7:58:7F:78:6B:E7:42:76:71:52
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/7BcrDMAna9HZqedYf3hr50J2cVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.92.0/22
Signature Algorithm: sha256WithRSAEncryption
26:c4:99:28:4a:cf:46:89:6c:5d:13:20:26:a8:c3:ee:37:d5:
0f:9d:31:bb:59:eb:2a:b3:c6:31:b7:b3:15:89:d8:a8:7d:42:
25:8d:4e:b4:a6:5b:a8:26:6a:44:1d:2f:e0:21:d4:d1:5a:98:
26:de:8a:ef:19:96:92:83:66:50:10:3a:2a:0c:b1:b1:88:40:
d7:38:23:43:04:9c:1e:74:18:01:43:72:65:c1:88:16:e8:6b:
a2:e5:03:c7:b7:d1:8e:32:60:2e:d9:d7:9a:cf:ee:03:da:a9:
bf:6a:94:5d:9e:4e:9f:f3:03:8b:f9:97:b7:71:85:66:1d:ce:
d4:6a:90:7f:0e:55:14:8d:9a:ed:a6:05:f3:9a:c1:fa:45:e6:
b2:51:e4:87:4e:e1:b8:ae:25:5f:5c:e2:83:c6:37:30:7e:58:
bd:c3:03:e4:a0:33:79:ed:e8:5a:f6:17:0f:b9:51:07:ee:09:
2a:d9:7a:d6:ad:2a:e3:ad:50:3e:e5:cf:f5:b9:a4:68:de:75:
23:29:76:46:62:f6:c1:1f:fb:68:b9:af:7d:ea:22:00:47:01:
b7:ac:f9:1f:b7:2c:24:33:7c:64:4e:2c:26:16:76:7b:f0:3d:
0f:23:c9:64:ee:7e:86:4f:1a:f0:10:3d:c8:c2:f9:b4:9a:a9:
41:a5:7f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org