Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/AulA6t_rzyWBdy4-P52vAR1Xqug.roa
File: AulA6t_rzyWBdy4-P52vAR1Xqug.roa (raw, json)
Hash identifier: 3ImIHa49bhKkTTVlzUeEDgFrWMZCimGfZvJM3tASRHw=
Subject key identifier: 02:E9:40:EA:DF:EB:CF:25:81:77:2E:3E:3F:9D:AF:01:1D:57:AA:E8
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0181EE0EB607FA40C5DA5940FED45D1B3AA6
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/AulA6t_rzyWBdy4-P52vAR1Xqug.roa
Signing time: Mon 11 Jul 2022 16:19:10 +0000
ROA not before: Mon 11 Jul 2022 16:19:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61185
IP address blocks: 109.238.168.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ee:0e:b6:07:fa:40:c5:da:59:40:fe:d4:5d:1b:3a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jul 11 16:19:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02e940eadfebcf2581772e3e3f9daf011d57aae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c2:df:e5:a1:f0:d9:ce:8d:53:f8:90:1b:b3:
49:6a:b5:23:87:00:d3:ed:68:a3:a2:2d:35:ce:cd:
e5:4b:ae:44:54:e5:29:07:a1:0d:97:aa:41:16:6f:
d1:97:1a:67:b7:b7:d8:b7:84:c4:60:0c:1c:29:e6:
51:27:8a:83:ef:dd:5e:3f:19:01:f9:21:95:84:17:
ce:e2:3e:88:90:e9:16:a8:4a:a0:5c:2c:6f:d0:d0:
bb:9f:bb:af:7b:b7:ea:5e:50:da:63:96:7f:55:52:
52:0b:2f:d6:ca:4f:1d:19:da:c5:92:01:52:33:13:
ea:3a:15:57:54:16:81:04:f0:67:fb:ee:c2:1a:39:
af:6d:ec:e6:58:c6:a6:53:28:5a:ed:22:a6:7d:e1:
be:14:5b:84:74:9a:15:33:3b:ab:6e:43:f6:58:2e:
2c:cf:b3:31:d4:f6:63:34:e9:e7:da:54:3a:12:1f:
3e:a6:d3:4f:8a:09:78:cf:b0:f9:39:89:3e:b4:cd:
49:d0:d2:29:84:73:63:2e:98:6d:e7:de:fd:72:c5:
be:60:9f:e8:6a:7e:51:b0:83:c4:61:61:66:0c:2a:
fe:ec:5c:82:cc:1c:b7:9c:7f:6f:52:46:ab:66:9c:
a2:b7:00:3e:f9:98:1b:ff:f6:16:a9:be:ee:ac:f2:
84:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E9:40:EA:DF:EB:CF:25:81:77:2E:3E:3F:9D:AF:01:1D:57:AA:E8
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/AulA6t_rzyWBdy4-P52vAR1Xqug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/21
109.238.168.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:9f:d9:cd:e0:39:c9:97:39:b4:20:62:db:f6:4f:a2:bc:0b:
88:d9:03:06:a7:1a:81:97:da:40:3e:4c:90:59:71:44:66:b2:
ba:34:c6:dd:bf:af:08:51:38:2f:74:bb:0e:dc:22:f6:a2:c0:
a6:a1:62:4c:43:73:a2:78:3e:5d:01:ac:53:0a:49:f5:71:81:
29:60:04:5d:b1:17:42:ca:e9:34:e9:7e:bb:8c:94:cc:6b:cc:
86:a6:c4:f0:98:e0:f5:78:b5:d7:04:c3:20:25:95:4b:ce:81:
c1:11:e7:1f:df:82:42:74:d8:e3:c3:1d:9a:04:75:4c:76:b8:
13:e5:00:9a:3f:68:78:c7:7d:d7:5a:11:2c:2a:b3:1b:a3:2d:
ea:8c:4d:c9:17:98:48:79:db:4d:50:30:9a:d1:6a:fd:f0:21:
b7:d7:56:c4:97:e2:1c:a5:d3:6e:06:59:5f:10:2c:26:2b:4c:
8b:67:49:ec:06:3c:2a:50:f4:4a:ec:bc:8c:07:e4:9c:4d:25:
ce:d9:34:fd:d8:70:6a:d0:b2:26:3d:ca:48:40:9f:dd:66:90:
5b:1c:e1:f3:40:44:9e:f1:1a:bf:a4:9a:0d:43:59:23:04:89:
93:b6:45:17:c6:4f:84:b4:c5:39:f8:29:36:ed:d8:5b:bb:e5:
52:68:30:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org