Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Cl10YzMqeW4XQv6ZUNwjd2FBqH4.roa
File: Cl10YzMqeW4XQv6ZUNwjd2FBqH4.roa (raw, json)
Hash identifier: A1BOwTmcnBmclMR/XHeasbKNalSy6ML2xo0cuBb8KRk=
Subject key identifier: 0A:5D:74:63:33:2A:79:6E:17:42:FE:99:50:DC:23:77:61:41:A8:7E
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 0913BB12
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Cl10YzMqeW4XQv6ZUNwjd2FBqH4.roa
Signing time: Mon 28 Feb 2022 18:05:39 +0000
ROA not before: Mon 28 Feb 2022 18:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209720
IP address blocks: 92.118.134.0/24 maxlen: 24
31.40.166.0/24 maxlen: 24
31.40.167.0/24 maxlen: 24
31.40.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152288018 (0x913bb12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Feb 28 18:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a5d7463332a796e1742fe9950dc23776141a87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:71:88:af:92:3e:1f:a3:ea:d6:af:18:28:40:
a6:78:b9:34:c2:81:1e:65:5c:d0:63:65:1a:84:83:
3b:64:8a:74:dc:b9:fb:84:10:46:6c:5d:d9:93:24:
61:7d:7f:21:9a:28:eb:a7:0c:0a:52:e2:71:9d:aa:
11:27:1c:95:23:f8:b3:33:be:b2:ba:01:1f:25:86:
6a:ee:41:0b:20:2f:2f:8b:43:4d:ab:3d:7b:b9:bd:
5b:3b:dc:5a:57:26:f2:49:7b:26:1c:48:bc:e8:e6:
ad:3b:ec:06:a6:22:24:d4:c0:99:c9:4a:cf:cb:bb:
2e:e1:83:25:bf:8f:38:f5:7e:b5:fa:e0:38:c4:7e:
b1:84:1b:ff:7a:be:36:bd:6f:fd:62:41:5b:8c:78:
f9:7d:df:ba:5e:34:bc:40:2f:8e:29:65:8d:78:72:
9b:a3:87:34:e9:dd:61:12:2c:3c:a4:96:22:20:d3:
74:a6:ef:55:af:5f:a5:6f:c3:ab:c5:2a:4e:d5:eb:
10:1a:2c:2e:af:9a:7f:0c:4e:27:ff:97:c4:87:bf:
e0:8b:9c:56:6a:98:1d:dc:78:69:2a:47:0e:03:44:
24:f7:15:2d:22:b1:4b:be:c9:6d:d2:de:ec:a1:8e:
fd:e0:34:0a:4d:0c:f3:20:d0:b2:6a:0f:da:1a:5c:
e1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5D:74:63:33:2A:79:6E:17:42:FE:99:50:DC:23:77:61:41:A8:7E
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Cl10YzMqeW4XQv6ZUNwjd2FBqH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.166.0/23
92.118.134.0/24
Signature Algorithm: sha256WithRSAEncryption
54:c3:fb:96:08:d1:cb:ee:11:85:e7:7e:6b:b1:ac:79:54:e8:
16:53:b0:67:fb:04:d9:7a:54:93:4e:f0:a9:e7:af:96:15:14:
6f:4a:f7:47:6e:d3:fa:40:e1:f2:e3:db:4e:b2:55:f9:5c:97:
43:5a:67:4e:17:32:b2:eb:08:ec:03:80:41:62:28:cb:71:9c:
98:4e:b9:8b:f8:a1:f4:c5:24:bc:36:e0:58:3d:3e:bb:05:71:
18:6e:9c:f6:69:a2:b9:52:c2:b3:3e:60:8b:83:00:69:b8:22:
d3:7b:5f:33:ba:40:db:ae:c9:de:da:45:75:27:da:ea:c9:77:
e3:68:0e:e9:ab:5f:b2:18:fa:66:e9:82:5f:0a:50:94:a4:e2:
54:db:bd:a5:e9:85:f3:16:14:46:6f:ff:8e:c4:65:91:37:d1:
46:7f:ba:bf:bb:ef:31:fb:61:1f:c9:5a:13:f1:b0:cb:17:01:
83:bf:18:a6:83:3b:52:50:b3:eb:e4:e6:37:7b:53:b9:42:72:
43:4f:5d:0f:89:87:dc:2d:47:aa:22:d0:b2:dd:3e:c1:c7:64:
63:ec:98:ed:23:2e:f9:76:90:92:20:38:b5:63:5d:3e:79:17:
a0:07:58:5b:b0:3a:92:f9:99:2b:4d:b1:89:b1:62:81:9e:a6:
cd:4b:c0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:55 2025 by rpki-client