Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f1af29-7f09-4f9c-acd6-694d78b32d20/1/U_UkD1eIwRLRUMJcgGFKGU--9is.roa
File: U_UkD1eIwRLRUMJcgGFKGU--9is.roa (raw, json)
Hash identifier: tH2KOd1AobacaUf6+bC+0ovVw/Dpv683kpiFn/hAFKM=
Subject key identifier: 53:F5:24:0F:57:88:C1:12:D1:50:C2:5C:80:61:4A:19:4F:BE:F6:2B
Certificate issuer: /CN=b1f713cf20552d6c5c23f09e7b37669846f9ca50
Certificate serial: 37062C89
Authority key identifier: B1:F7:13:CF:20:55:2D:6C:5C:23:F0:9E:7B:37:66:98:46:F9:CA:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sfcTzyBVLWxcI_CeezdmmEb5ylA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f1af29-7f09-4f9c-acd6-694d78b32d20/1/U_UkD1eIwRLRUMJcgGFKGU--9is.roa
Signing time: Thu 14 Apr 2022 12:55:26 +0000
ROA not before: Thu 14 Apr 2022 12:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199095
IP address blocks: 31.31.128.0/19 maxlen: 24
2a11:bfc0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 923151497 (0x37062c89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f713cf20552d6c5c23f09e7b37669846f9ca50
Validity
Not Before: Apr 14 12:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53f5240f5788c112d150c25c80614a194fbef62b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c4:3a:72:44:6b:f7:a5:dd:c1:c1:f9:2d:f8:
13:3d:a7:95:cf:c1:72:1e:0b:b2:a1:01:42:5a:36:
a2:33:4c:96:bb:aa:b6:cc:f2:45:63:cc:10:d9:a4:
af:4a:8d:30:b9:b7:e3:a9:3b:0b:92:36:2b:66:c6:
17:9e:ea:ba:05:fb:e4:0a:93:e2:25:36:f5:49:ad:
0e:1b:f1:a7:97:2f:25:f6:f7:c2:a0:53:0f:f8:22:
55:fa:5e:a0:87:ad:d0:92:3c:58:a5:2b:64:b4:24:
b1:34:a4:b6:30:ab:83:19:57:91:6b:cc:0c:ff:9c:
f5:bd:51:6e:4e:6f:3d:2b:fe:09:b3:84:1b:5d:dc:
ff:f1:83:04:02:a8:79:68:25:80:bc:6e:d8:9a:08:
f1:7c:03:84:d3:28:ae:80:d1:bd:8a:d0:45:ab:50:
16:c0:8b:33:e1:d5:de:7e:c9:33:5a:c1:ee:4c:68:
4e:d5:87:11:4f:dc:a5:a7:6f:1f:a3:2f:95:68:5d:
ef:60:bb:a7:65:e8:66:dc:56:53:ef:b1:62:e6:ba:
d9:4a:d5:0c:f7:43:c9:c1:2c:af:25:8f:30:92:cb:
ce:8f:52:45:06:30:8a:d0:2e:57:90:11:0f:a8:71:
67:be:4e:ed:bc:e5:fc:ac:f4:bf:01:77:61:09:e2:
44:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F5:24:0F:57:88:C1:12:D1:50:C2:5C:80:61:4A:19:4F:BE:F6:2B
X509v3 Authority Key Identifier:
keyid:B1:F7:13:CF:20:55:2D:6C:5C:23:F0:9E:7B:37:66:98:46:F9:CA:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sfcTzyBVLWxcI_CeezdmmEb5ylA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f1af29-7f09-4f9c-acd6-694d78b32d20/1/U_UkD1eIwRLRUMJcgGFKGU--9is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f1af29-7f09-4f9c-acd6-694d78b32d20/1/sfcTzyBVLWxcI_CeezdmmEb5ylA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.128.0/19
IPv6:
2a11:bfc0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:ec:a0:76:d4:2f:2d:fe:71:24:0c:11:3a:f5:e6:9c:de:66:
5b:63:c1:54:3a:3d:3e:e4:18:fb:c2:64:48:1f:10:14:a8:aa:
cf:d6:48:87:bc:96:44:f0:8b:d3:e8:b6:07:92:08:95:f9:7e:
25:ab:77:27:70:5e:51:31:20:af:70:4c:4d:18:4b:83:7b:82:
db:13:50:3c:18:fe:56:a2:4f:f1:f0:48:14:85:e2:08:59:0b:
73:d4:58:fd:f4:5b:6f:d1:fc:85:98:8d:2d:37:a7:2c:88:cd:
25:b2:2f:27:07:3f:ef:52:c6:85:cc:5d:3a:1c:18:58:ff:81:
9e:c2:20:60:a7:e1:52:a4:0f:8f:cc:3b:ed:93:61:ac:02:4c:
95:44:15:ad:0c:87:e7:3d:f7:30:f8:45:18:00:92:12:cc:ea:
c1:32:b3:da:57:59:41:e6:88:4e:43:9e:e6:93:df:85:10:7f:
f8:50:aa:a0:d1:a9:6f:1d:0e:f6:2f:c2:2d:be:c5:3e:4c:e6:
30:8c:72:55:e2:f3:c3:5f:71:90:30:53:c6:34:1e:0a:07:91:
1c:e9:ef:ec:3c:14:a4:a1:1f:b3:b4:1c:5a:df:20:23:72:94:
e1:52:91:47:5b:0f:93:c8:6b:f8:bf:d5:13:10:62:e9:3b:fd:
b5:c7:b0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:19 2024 by rpki-client on console-fra.rpki-client.org