Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/MFRdQU8pHRD0ybWPi6zSd6NoclI.roa
File: MFRdQU8pHRD0ybWPi6zSd6NoclI.roa (raw, json)
Hash identifier: VD6rPSMLgYtMIWDwDlNxVE+MLeFAhB6k6jH+qKjtPXE=
Subject key identifier: 30:54:5D:41:4F:29:1D:10:F4:C9:B5:8F:8B:AC:D2:77:A3:68:72:52
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0316F043
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/MFRdQU8pHRD0ybWPi6zSd6NoclI.roa
Signing time: Sat 11 Jun 2022 17:34:02 +0000
ROA not before: Sat 11 Jun 2022 17:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61185
IP address blocks: 31.223.200.0/21 maxlen: 24
109.238.168.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51834947 (0x316f043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jun 11 17:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30545d414f291d10f4c9b58f8bacd277a3687252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:3b:0e:b5:a8:6f:6b:33:b4:43:e8:25:ab:
07:82:99:fc:bd:f9:60:d9:32:f0:14:a8:b1:7e:3b:
5c:de:d6:20:23:35:30:23:b8:3f:c9:34:80:a4:54:
61:d6:90:cb:d4:bc:e7:44:38:62:7c:d1:86:ea:4a:
b6:25:cf:36:40:82:6c:fa:37:a0:83:47:31:9e:23:
9b:32:85:cd:48:6f:05:98:3d:23:28:2d:db:c4:4e:
59:1e:8f:e5:bd:8d:51:c9:cb:91:dd:6b:e4:ad:5c:
ec:70:bf:53:2e:62:1c:39:e0:bd:32:a6:33:f3:1a:
ac:77:13:07:15:db:64:b8:93:1a:55:14:74:3e:0e:
85:7b:d7:fa:1e:cb:0a:3a:11:ed:fd:00:7d:b9:5e:
79:f7:23:f7:88:20:8f:29:d8:ce:e9:2d:5a:02:54:
96:59:5f:5a:22:31:bf:c6:9e:c9:ca:45:13:5e:85:
2c:b7:b9:0c:48:99:c6:2d:5d:92:61:10:6e:02:f5:
0f:01:00:d7:bc:52:a5:dc:14:cc:0a:33:15:d8:7c:
90:3f:90:08:e2:f8:72:35:17:bd:f2:80:14:e0:62:
9f:f7:67:ec:42:97:11:7d:bc:f4:93:d2:98:37:b1:
14:19:dd:6f:58:b5:33:7b:14:a7:fc:bd:df:bd:55:
2c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:54:5D:41:4F:29:1D:10:F4:C9:B5:8F:8B:AC:D2:77:A3:68:72:52
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/MFRdQU8pHRD0ybWPi6zSd6NoclI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/20
109.238.168.0/21
Signature Algorithm: sha256WithRSAEncryption
96:9d:d2:3e:b3:f2:9d:b8:30:16:24:89:a6:1c:de:a9:e0:fb:
e0:17:cf:f1:86:e3:d2:99:cd:f1:6a:76:30:cc:fb:c0:1e:0b:
99:b5:5f:da:e2:0b:84:a9:a4:0e:2b:f0:65:cf:d6:f2:e6:34:
9d:6c:a8:40:c0:44:71:13:ab:b5:97:fb:32:27:7b:97:7f:3b:
b3:c4:fa:28:c4:a5:9b:c8:d6:4c:83:84:38:67:fc:e9:0d:d4:
63:df:0d:e8:1e:00:83:54:be:c9:db:d1:4b:19:c3:33:68:69:
b5:d9:47:a6:4d:cf:aa:2e:5c:31:b9:38:b7:8e:06:dc:4a:15:
6f:f2:f6:e4:16:6b:5a:f0:af:0f:91:29:f9:fe:3a:11:6e:b5:
e1:dd:94:ac:84:82:31:29:66:4b:16:d3:e2:6a:05:3c:ff:e5:
41:92:26:4b:02:1f:39:21:c6:8b:4a:ac:8a:2a:b7:08:be:13:
93:7a:96:cb:09:99:2e:39:c8:8b:7a:0a:74:8f:ae:28:e8:6b:
2c:9e:91:05:60:26:68:e6:0f:19:16:91:54:16:d4:ad:e2:89:
82:6a:0e:70:9c:70:ce:45:f1:c1:61:80:8b:3d:9a:d7:f2:27:
35:b1:ae:26:54:ea:61:7a:33:90:94:fa:8b:fc:f9:37:7b:33:
0f:0a:1f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:25 2024 by rpki-client on console-fra.rpki-client.org