Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LL7upxhmwtf2-s5F0P5IVq_Bu_o.roa
File: LL7upxhmwtf2-s5F0P5IVq_Bu_o.roa (raw, json)
Hash identifier: iSwdWGoewbMqqG1KwrlUyviJR1wVOCsQ8cwdZsbc0r8=
Subject key identifier: 2C:BE:EE:A7:18:66:C2:D7:F6:FA:CE:45:D0:FE:48:56:AF:C1:BB:FA
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0181EE0EB4C7FE4F05E9CAC59D4BA7BDE85F
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LL7upxhmwtf2-s5F0P5IVq_Bu_o.roa
Signing time: Mon 11 Jul 2022 16:19:09 +0000
ROA not before: Mon 11 Jul 2022 16:19:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 31.223.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ee:0e:b4:c7:fe:4f:05:e9:ca:c5:9d:4b:a7:bd:e8:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jul 11 16:19:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cbeeea71866c2d7f6face45d0fe4856afc1bbfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a0:dd:a8:94:ed:44:fe:c1:83:ec:23:58:0d:
a5:0f:56:f4:41:f9:de:5d:dc:79:47:2e:9c:a8:6e:
a7:98:e9:5b:05:37:d5:c7:a0:fa:02:b6:8f:b7:93:
29:53:37:93:33:c4:a1:36:ff:ba:0c:88:a4:0e:f2:
8b:1d:37:09:5b:70:4b:76:b6:1e:56:d2:f5:19:bb:
f5:8a:80:e7:21:ad:8e:0b:95:6c:d9:ff:4a:ee:99:
fc:e5:8c:72:4b:46:84:3d:fe:14:46:ad:bd:b1:06:
4e:09:cd:6c:79:05:3b:11:d6:06:b4:28:dd:2c:de:
a1:ef:79:ab:e5:a4:76:d7:c1:76:fe:1a:9a:db:e8:
3e:ed:d6:27:3b:4e:13:5b:c5:c0:9d:f4:8e:b3:e2:
03:4c:b9:30:30:9c:a5:92:c3:1e:37:5d:35:29:f9:
c9:03:c9:44:3e:66:24:4c:78:14:91:e3:71:eb:26:
86:45:7c:99:56:ae:8e:74:f9:57:29:08:59:c1:93:
2b:1a:9e:08:2a:45:3e:5c:95:55:80:17:84:0f:fe:
f5:96:58:18:42:cb:9b:9e:0e:fd:8a:fd:7b:42:7e:
06:f0:b0:e2:60:be:c7:5c:83:d8:a1:25:53:68:45:
8b:87:a9:db:c2:c6:65:9c:9f:e1:87:64:64:3f:6c:
00:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BE:EE:A7:18:66:C2:D7:F6:FA:CE:45:D0:FE:48:56:AF:C1:BB:FA
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/LL7upxhmwtf2-s5F0P5IVq_Bu_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.200.0/21
Signature Algorithm: sha256WithRSAEncryption
35:33:2d:df:65:a5:e6:b1:06:7b:e7:75:6c:d0:7f:1d:4c:b2:
b8:c3:59:37:a9:b1:32:c4:62:ef:d2:42:1a:6e:4f:56:6a:c6:
e6:3c:1e:17:bf:21:9a:33:7f:6a:47:ac:79:aa:af:a0:78:c6:
06:10:56:ae:db:41:dc:ae:94:42:ef:78:5d:db:cb:8a:dc:82:
8a:3b:8d:07:8a:f6:3c:d2:07:5d:7b:17:78:09:22:e6:da:f4:
b3:72:fb:43:fa:24:45:18:3d:52:69:9a:eb:48:75:a5:01:d7:
86:1a:f8:45:8c:75:39:87:e9:69:04:b1:33:5d:c6:52:c1:58:
04:5c:ac:d6:13:32:fb:68:82:19:e0:f0:5c:1b:5f:25:52:d5:
cd:59:22:dc:a0:ae:b2:6c:30:d2:03:c7:6d:08:3c:48:67:f1:
99:e6:ac:a1:df:15:c9:17:21:12:90:da:8f:2b:a4:77:73:0a:
b6:81:84:37:2f:3a:1b:d2:05:e9:77:6f:96:33:75:0f:48:79:
1b:f1:3e:0f:4a:a5:2b:99:c5:2d:35:70:6d:aa:51:af:d8:97:
32:6b:26:75:a9:b0:f2:5a:c4:f0:4f:37:e9:91:cb:bb:e8:0b:
e2:ed:48:30:fe:82:10:61:46:0e:dc:45:68:af:c2:1e:88:5f:
0d:83:3c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:06 2023 by rpki-client on console-fra.rpki-client.org