Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/ioT9pgoXHZUI_5ZQJjd656EGTiQ.roa
File: ioT9pgoXHZUI_5ZQJjd656EGTiQ.roa (raw, json)
Hash identifier: tqIK/gVzvpf4BKS1uLM1gxOoUXi1PzgsLP86wjG4aCQ=
Subject key identifier: 8A:84:FD:A6:0A:17:1D:95:08:FF:96:50:26:37:7A:E7:A1:06:4E:24
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 0183D5E9DC555EC153E209945B3DCBF1A22E
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/ioT9pgoXHZUI_5ZQJjd656EGTiQ.roa
Signing time: Fri 14 Oct 2022 09:53:36 +0000
ROA not before: Fri 14 Oct 2022 09:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 31.133.80.0/22 maxlen: 22
31.133.84.0/22 maxlen: 22
176.103.224.0/22 maxlen: 22
31.133.88.0/22 maxlen: 22
176.103.228.0/22 maxlen: 22
176.103.232.0/22 maxlen: 22
176.103.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:e9:dc:55:5e:c1:53:e2:09:94:5b:3d:cb:f1:a2:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Oct 14 09:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a84fda60a171d9508ff965026377ae7a1064e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e9:50:ee:97:b1:28:87:29:25:4f:b3:40:92:
ee:40:bd:ad:d6:26:d8:13:7e:6c:68:38:a0:3e:9c:
ed:5a:2e:7c:10:ba:c1:bf:ed:a7:4f:a2:07:ac:75:
11:d6:83:b7:68:16:98:7b:a1:11:08:81:72:07:ba:
be:37:8b:07:83:4c:30:93:f9:43:22:69:17:53:8c:
32:61:b1:d6:22:81:d0:b2:dd:05:6b:a7:94:09:93:
df:a0:92:7e:aa:6a:ad:59:9d:24:db:97:9b:04:17:
80:64:0e:c7:1b:0d:67:23:59:b0:8e:06:c9:02:05:
f8:70:7e:50:44:52:70:33:85:3d:5c:30:b9:79:cc:
8f:66:c4:6a:2f:b6:68:1e:ef:d3:17:a5:f5:62:57:
a5:94:6b:f4:dc:9e:67:56:e6:a8:b2:ce:69:95:60:
b0:96:85:ba:e1:21:06:7a:b1:c4:6d:b3:a1:e5:4a:
57:47:e3:27:67:27:2f:5b:b3:37:54:49:06:f5:71:
0d:b5:11:78:44:38:8c:2f:b5:e0:97:2d:52:00:d3:
04:65:4b:47:8e:49:ad:51:41:eb:f7:3e:bf:4e:26:
92:d1:4e:9b:e1:65:f8:10:75:de:73:06:c3:22:54:
67:5c:35:df:22:d4:ef:27:f6:de:7d:de:a0:f3:73:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:84:FD:A6:0A:17:1D:95:08:FF:96:50:26:37:7A:E7:A1:06:4E:24
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/ioT9pgoXHZUI_5ZQJjd656EGTiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.80.0-31.133.91.255
176.103.224.0/20
Signature Algorithm: sha256WithRSAEncryption
57:4a:c2:53:8b:aa:90:e5:2d:55:7c:09:ff:d5:97:2f:42:31:
2f:d0:9f:6a:47:75:d6:d5:8d:7d:19:75:76:97:e5:01:81:b9:
0d:57:ee:10:c1:6e:06:72:39:7f:77:f1:9e:34:ef:ea:f5:79:
1b:13:c6:11:e4:31:fa:a5:83:6d:ac:83:56:04:fb:c7:da:18:
0e:9b:44:06:3e:4e:65:65:2e:de:83:1c:d1:3e:97:2b:76:4e:
37:ee:03:03:c8:7a:ab:30:27:34:72:35:02:96:d7:8b:91:86:
92:e7:36:90:76:ef:73:70:03:00:f3:69:48:a8:96:0f:0d:93:
c0:61:df:d2:c6:80:6e:56:a6:da:7b:b4:56:ba:04:ec:ac:ca:
2a:3f:09:1d:0a:9a:63:5c:ee:1a:56:46:51:53:c0:e4:b9:25:
bd:c1:3f:65:a4:85:4a:82:d6:88:95:d0:c4:f0:1f:3a:cb:f4:
dd:03:47:47:9d:6c:aa:9e:d7:fb:09:1e:cb:71:2c:7d:2b:33:
27:6c:02:ce:9c:1e:98:08:6a:b4:c7:47:54:ee:72:de:7e:bd:
3e:42:fa:9f:cf:7d:ba:03:cc:c1:79:85:49:1f:03:f3:a4:2e:
e7:8a:33:23:c3:ee:c2:76:03:bb:2f:61:a4:75:45:74:2f:7e:
96:76:0c:ab
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:45 2023 by rpki-client on console-ams.rpki-client.org