Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/BIIfXd9GcjTn3tkEm8CmKdw0B6Q.roa
File: BIIfXd9GcjTn3tkEm8CmKdw0B6Q.roa (raw, json)
Hash identifier: o2JpkrApNo1xhrr/16Xg9noFi8+r0waZpK7YcX4EzLQ=
Subject key identifier: 04:82:1F:5D:DF:46:72:34:E7:DE:D9:04:9B:C0:A6:29:DC:34:07:A4
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 08874085
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/BIIfXd9GcjTn3tkEm8CmKdw0B6Q.roa
Signing time: Sat 01 Jan 2022 14:59:59 +0000
ROA not before: Sat 01 Jan 2022 14:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59823
IP address blocks: 31.40.129.0/24 maxlen: 24
31.40.128.0/23 maxlen: 23
31.40.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143081605 (0x8874085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 1 14:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04821f5ddf467234e7ded9049bc0a629dc3407a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:09:d2:97:ac:f4:9f:af:82:88:78:cf:14:74:
53:7c:71:6e:68:60:67:95:10:53:1a:dc:9c:7d:99:
58:17:a0:f9:4c:46:69:96:fb:c1:3d:3d:16:90:30:
09:a0:22:29:32:b9:a0:dc:47:13:e1:20:98:dd:39:
a5:bc:c5:5f:a8:10:1f:55:43:e5:69:5b:41:14:17:
58:a1:c7:d5:11:72:79:a4:c2:9d:80:94:a6:a7:85:
05:bc:7e:68:23:75:f6:ce:7c:a8:46:d6:cd:4d:97:
95:2e:a7:1a:28:13:4b:21:35:77:07:ed:12:e3:d7:
b4:f2:02:4b:52:17:aa:78:c8:97:1e:44:f8:bf:f1:
ef:79:eb:57:b6:4f:84:65:db:1a:d8:54:e3:cc:65:
e0:39:f8:74:0b:10:5b:cf:35:04:43:63:01:9f:af:
4c:8d:f5:58:53:fb:7c:99:3e:86:e8:b4:df:2b:82:
27:7f:77:42:28:b6:f9:2d:03:c1:7b:c6:9f:27:86:
a7:18:f8:d0:4e:70:61:93:0a:37:7d:3e:1d:74:bc:
73:32:c8:71:02:4c:a5:e4:4b:08:95:31:59:37:8f:
38:b8:2f:67:e9:65:b6:00:1c:ee:cc:6e:d9:58:71:
ec:c0:a7:b2:76:12:51:c8:ff:79:79:8a:8e:4b:21:
26:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:82:1F:5D:DF:46:72:34:E7:DE:D9:04:9B:C0:A6:29:DC:34:07:A4
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/BIIfXd9GcjTn3tkEm8CmKdw0B6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.128.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:5e:2f:db:6f:cc:f7:48:6a:0a:64:ec:71:14:96:f9:f2:01:
84:62:ee:8a:e5:f3:57:cb:f0:d9:a5:91:24:1c:8b:94:e1:0d:
a0:f6:ef:64:c5:d6:7a:0a:cc:c7:1f:b2:7d:4a:77:bc:06:0f:
c4:ca:1f:b3:b3:fa:ee:04:d1:e6:7c:e1:be:f5:5c:ed:58:1a:
d2:ed:9d:60:27:26:29:e5:21:03:02:96:c3:54:a7:94:c7:55:
6a:1a:dd:27:c1:63:0b:c2:45:8b:3d:42:84:bb:44:fc:bd:20:
19:71:df:66:57:1e:74:67:55:2f:ae:51:bf:c8:c4:c5:a8:a4:
33:e7:8a:8f:f1:13:d9:66:32:9c:a4:16:86:22:6b:7e:62:3d:
37:b3:ec:9a:32:10:4a:0d:89:28:ea:16:28:91:bd:28:2a:e6:
10:48:23:a7:4d:b9:03:2d:b2:87:4e:44:05:9a:13:6b:e2:ad:
e7:a3:67:22:9b:66:20:98:71:9f:fa:dd:a3:c6:ef:dd:c1:0d:
8b:f9:ec:1d:28:01:ea:7d:bf:47:cc:58:e6:53:24:b1:51:2e:
73:82:ee:67:5f:f6:b2:e2:ae:38:97:28:90:5b:05:7f:81:b9:
3e:85:50:9f:90:dc:60:c1:37:5d:e6:7e:ce:4e:8c:13:06:67:
29:b2:c8:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-ams.rpki-client.org