Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/4M1VwU8zBryWN1PJidJDxMlHdgw.roa
File: 4M1VwU8zBryWN1PJidJDxMlHdgw.roa (raw, json)
Hash identifier: jAasmsarzyR5fJzy71yTBOHDoOBX6TS0LktgMld+Ko0=
Subject key identifier: E0:CD:55:C1:4F:33:06:BC:96:37:53:C9:89:D2:43:C4:C9:47:76:0C
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 02C06965
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/4M1VwU8zBryWN1PJidJDxMlHdgw.roa
Signing time: Thu 05 May 2022 04:01:28 +0000
ROA not before: Thu 05 May 2022 04:01:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63213
IP address blocks: 31.223.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46164325 (0x2c06965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: May 5 04:01:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0cd55c14f3306bc963753c989d243c4c947760c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:12:bf:e1:93:a3:0a:db:b6:13:12:2d:f2:9d:
1b:fb:e9:e1:03:f8:91:86:59:8c:41:a4:b3:a2:41:
bf:98:32:e6:4d:26:3f:f7:a6:a3:c5:2f:c8:92:b6:
07:de:f7:e4:a8:96:47:0a:4c:d9:f1:c0:41:90:2f:
d4:ea:1e:b3:8a:6c:a1:ee:69:88:de:90:8e:11:7d:
9d:47:15:c0:b9:08:4a:40:15:c7:11:a6:ac:1c:9a:
0c:25:7b:f0:39:68:f3:53:d5:39:4d:d3:14:59:1c:
bf:64:1b:10:31:bf:a2:92:60:95:5e:bf:f2:2a:3e:
5b:6e:f6:5d:4b:c8:ba:0d:7d:25:32:49:d7:e8:45:
1c:db:11:bf:0e:17:5f:5d:99:30:b2:b4:d9:38:a4:
c7:8f:dc:96:89:b9:bd:a3:f9:0b:9d:00:a9:bf:a9:
42:dc:c7:4a:04:2b:d6:46:40:a2:25:48:78:97:d9:
11:63:67:26:3a:bc:94:51:85:4f:b2:63:da:d5:a1:
e2:4a:48:89:e6:0a:3e:8f:b6:14:09:88:b9:8a:74:
9d:29:a8:a3:30:07:1c:a6:6b:c9:ff:b0:e0:08:09:
ed:ba:13:b4:76:99:8d:ce:61:0d:d0:88:8b:b4:be:
08:2f:08:fc:82:48:ce:59:ce:03:6b:e0:62:d7:f5:
83:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CD:55:C1:4F:33:06:BC:96:37:53:C9:89:D2:43:C4:C9:47:76:0C
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/4M1VwU8zBryWN1PJidJDxMlHdgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:36:b5:78:6c:35:69:8a:67:5c:d5:87:53:1e:dd:ab:84:bb:
b0:f9:b0:b2:21:be:76:8c:52:e9:05:04:5a:7f:36:6a:66:95:
f7:1e:f4:62:75:4d:01:b6:ec:0b:27:04:72:2f:6e:b5:95:98:
35:31:41:1a:06:d0:a3:59:a4:ec:e4:87:86:48:38:b1:5d:c0:
bf:9f:b0:e3:20:62:21:ed:b8:f7:3d:3e:3b:49:a2:3a:56:18:
c2:f1:73:51:0e:24:d7:81:54:82:aa:f4:42:51:31:c0:fb:de:
8f:9c:18:b3:ea:57:51:ee:e6:99:51:ab:9f:91:f3:12:cf:d0:
f1:7d:af:7c:a2:dd:55:94:4e:5c:25:97:a9:bc:78:fc:5c:4b:
51:89:56:c6:1c:a1:f2:a7:64:7f:f8:5c:72:40:b7:8e:2f:a4:
b9:ef:c6:4b:40:e3:5f:be:5c:24:6c:42:c1:7b:5d:d0:d8:ea:
73:f8:e7:3d:d8:7d:8d:f9:69:c0:5b:56:eb:b9:d6:7d:39:01:
b7:a7:f6:14:8d:e5:d5:13:8f:6e:10:6d:3a:90:3c:7e:fa:03:
93:31:0b:81:10:ad:1e:ea:7c:cf:35:d0:6f:4e:2a:0b:c1:1d:
4e:a9:71:23:f9:13:03:8c:c1:0d:44:2a:7b:32:c5:3b:bb:7c:
b9:a3:90:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:25 2024 by rpki-client on console-fra.rpki-client.org