Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/Hit-6mWYchNLzTmphqJb3attd8A.roa
File: Hit-6mWYchNLzTmphqJb3attd8A.roa (raw, json)
Hash identifier: FZIpkXGCf2YmWj629E2H6vhI11vp9XJAWKJJGmnSc98=
Subject key identifier: 1E:2B:7E:EA:65:98:72:13:4B:CD:39:A9:86:A2:5B:DD:AB:6D:77:C0
Certificate issuer: /CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Certificate serial: 04DFD677
Authority key identifier: C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/Hit-6mWYchNLzTmphqJb3attd8A.roa
Signing time: Sat 01 Jan 2022 03:53:26 +0000
ROA not before: Sat 01 Jan 2022 03:53:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47448
IP address blocks: 31.222.60.0/24 maxlen: 24
31.222.62.0/24 maxlen: 24
31.222.61.0/24 maxlen: 24
31.222.63.0/24 maxlen: 24
93.191.192.0/24 maxlen: 24
93.191.193.0/24 maxlen: 24
93.191.196.0/24 maxlen: 24
93.191.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81778295 (0x4dfd677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Validity
Not Before: Jan 1 03:53:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e2b7eea659872134bcd39a986a25bddab6d77c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c9:bc:55:2a:ab:43:13:81:fa:ee:32:e0:68:
6b:96:f1:e4:aa:7e:1f:ac:ce:f3:6a:f3:60:0f:93:
99:99:26:cc:27:f6:91:6c:9b:90:78:7d:4b:1b:36:
35:2a:3c:72:41:2f:de:24:7f:20:45:b6:f0:8f:c3:
a6:03:b0:73:b1:ac:3d:a5:6f:c0:28:8c:14:33:ed:
8b:9c:43:ea:45:b4:c3:d3:0e:7a:a7:b6:c7:77:0f:
1c:32:ff:f5:5a:25:78:cd:9d:a8:a3:1b:06:73:6c:
af:b5:f4:17:66:57:a5:28:33:e9:71:d9:ac:72:69:
64:ce:37:9a:e6:30:e0:97:c9:49:a5:53:32:ee:6f:
26:af:21:31:3c:d0:18:01:f2:f9:19:6c:e9:20:ad:
7c:df:ab:76:28:0d:a3:f7:70:be:fe:0e:35:3a:0e:
5e:ee:e5:b4:86:80:6b:22:1e:0d:69:90:56:9f:40:
4b:ce:41:5a:c0:b5:2d:3f:01:3a:e4:a5:90:96:95:
e7:cd:66:79:3e:34:40:9c:15:35:3c:c1:aa:88:3d:
ef:af:a4:71:cc:20:f1:30:ac:5c:ec:4a:b6:0e:5e:
04:0c:8c:35:e8:14:0e:1d:e9:b3:3c:e0:c8:55:7e:
86:35:83:9e:50:df:fc:ca:91:af:c0:07:f1:4b:5b:
8f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2B:7E:EA:65:98:72:13:4B:CD:39:A9:86:A2:5B:DD:AB:6D:77:C0
X509v3 Authority Key Identifier:
keyid:C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/Hit-6mWYchNLzTmphqJb3attd8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.60.0/22
93.191.192.0/23
93.191.196.0/24
93.191.199.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6d:62:fe:75:af:47:91:83:6c:52:d7:b1:c5:00:d3:a7:53:
0b:4a:16:10:6a:06:b6:25:8d:4c:2a:e4:d7:7d:c5:6e:bb:78:
b1:8b:ac:06:9d:43:a5:8f:bd:2e:62:6a:b7:66:52:55:b6:3b:
ca:39:2d:e7:d8:4f:4f:20:47:f9:e2:85:e3:c9:09:73:f0:ca:
d5:b1:da:02:bc:9a:7b:10:3e:5d:60:ec:3e:ca:eb:d1:b2:45:
cd:78:37:fb:28:f7:f3:19:08:a6:c6:15:ba:f0:6e:ad:fe:17:
38:fe:3a:88:f3:12:51:8a:e6:da:33:89:c3:70:70:47:62:22:
69:d9:7f:e0:0f:0d:b3:36:fc:ad:b3:64:b2:63:13:61:e4:36:
38:2f:55:49:25:83:8c:5d:3d:e6:7f:50:93:3d:b3:8b:73:28:
8b:a8:c4:2f:5a:e1:dc:77:00:76:32:b2:f9:99:f0:00:a0:79:
8d:16:aa:8a:9a:20:8b:99:39:3f:30:73:ba:25:e4:fe:35:e7:
56:80:89:60:31:17:fe:c3:74:d4:1d:e1:24:10:dd:6a:f9:53:
68:58:0b:73:39:06:b4:4d:de:01:f8:a6:67:be:12:68:28:1c:
3f:8f:ac:f0:ef:3c:b8:ca:03:e0:73:1b:9e:40:54:10:4a:ee:
62:19:0f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:23 2024 by rpki-client on console-fra.rpki-client.org